./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec3_product50.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 4fc63b2a Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec3_product50.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2 --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 0552f986eafe304f33f56d4376c7c6a56e2d691e1035259c5c13e13b2a7157c1 --- Real Ultimate output --- This is Ultimate 0.2.5-dev-4fc63b2 [2024-11-02 12:24:37,754 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-02 12:24:37,846 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-02 12:24:37,852 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-02 12:24:37,855 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-02 12:24:37,886 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-02 12:24:37,887 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-02 12:24:37,887 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-02 12:24:37,888 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-02 12:24:37,890 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-02 12:24:37,891 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-02 12:24:37,892 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-02 12:24:37,892 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-02 12:24:37,893 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-02 12:24:37,896 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-02 12:24:37,897 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-02 12:24:37,897 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-02 12:24:37,898 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-02 12:24:37,898 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-02 12:24:37,899 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-02 12:24:37,899 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-02 12:24:37,900 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-02 12:24:37,900 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-02 12:24:37,901 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-02 12:24:37,901 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-02 12:24:37,901 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-02 12:24:37,902 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-02 12:24:37,902 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-02 12:24:37,902 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-02 12:24:37,903 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-02 12:24:37,905 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-02 12:24:37,905 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-02 12:24:37,906 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-02 12:24:37,907 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-02 12:24:37,907 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-02 12:24:37,907 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-02 12:24:37,908 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-02 12:24:37,908 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-02 12:24:37,908 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-02 12:24:37,909 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-02 12:24:37,909 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-02 12:24:37,910 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-02 12:24:37,910 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-02 12:24:37,910 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-02 12:24:37,911 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-02 12:24:37,911 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-02 12:24:37,912 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-02 12:24:37,912 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2 Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 0552f986eafe304f33f56d4376c7c6a56e2d691e1035259c5c13e13b2a7157c1 [2024-11-02 12:24:38,240 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-02 12:24:38,272 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-02 12:24:38,275 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-02 12:24:38,276 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-02 12:24:38,277 INFO L274 PluginConnector]: CDTParser initialized [2024-11-02 12:24:38,278 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/../../sv-benchmarks/c/product-lines/minepump_spec3_product50.cil.c Unable to find full path for "g++" [2024-11-02 12:24:40,288 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-02 12:24:40,517 INFO L384 CDTParser]: Found 1 translation units. [2024-11-02 12:24:40,518 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/sv-benchmarks/c/product-lines/minepump_spec3_product50.cil.c [2024-11-02 12:24:40,539 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/data/0af1e9973/acef6ce801da4ad78ab44097fd7e5df7/FLAGa00611f81 [2024-11-02 12:24:40,868 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/data/0af1e9973/acef6ce801da4ad78ab44097fd7e5df7 [2024-11-02 12:24:40,871 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-02 12:24:40,874 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-02 12:24:40,878 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-02 12:24:40,878 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-02 12:24:40,884 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-02 12:24:40,885 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 02.11 12:24:40" (1/1) ... [2024-11-02 12:24:40,886 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@18ed6a2a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:40, skipping insertion in model container [2024-11-02 12:24:40,886 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 02.11 12:24:40" (1/1) ... [2024-11-02 12:24:40,943 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-02 12:24:41,301 WARN L251 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/sv-benchmarks/c/product-lines/minepump_spec3_product50.cil.c[15143,15156] [2024-11-02 12:24:41,342 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-02 12:24:41,360 INFO L200 MainTranslator]: Completed pre-run [2024-11-02 12:24:41,372 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] [2024-11-02 12:24:41,374 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [415] [2024-11-02 12:24:41,375 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [453] [2024-11-02 12:24:41,375 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [562] [2024-11-02 12:24:41,375 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [664] [2024-11-02 12:24:41,376 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [699] [2024-11-02 12:24:41,376 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [708] [2024-11-02 12:24:41,376 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [776] [2024-11-02 12:24:41,447 WARN L251 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/sv-benchmarks/c/product-lines/minepump_spec3_product50.cil.c[15143,15156] [2024-11-02 12:24:41,457 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-02 12:24:41,484 INFO L204 MainTranslator]: Completed translation [2024-11-02 12:24:41,484 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41 WrapperNode [2024-11-02 12:24:41,485 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-02 12:24:41,486 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-02 12:24:41,486 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-02 12:24:41,486 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-02 12:24:41,494 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,507 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,535 INFO L138 Inliner]: procedures = 56, calls = 100, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 213 [2024-11-02 12:24:41,536 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-02 12:24:41,536 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-02 12:24:41,536 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-02 12:24:41,537 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-02 12:24:41,545 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,546 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,548 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,548 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,554 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,558 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,560 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,561 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,564 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-02 12:24:41,570 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-02 12:24:41,570 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-02 12:24:41,570 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-02 12:24:41,571 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (1/1) ... [2024-11-02 12:24:41,584 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-02 12:24:41,597 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 [2024-11-02 12:24:41,624 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-02 12:24:41,626 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-02 12:24:41,660 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-02 12:24:41,660 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-02 12:24:41,660 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-02 12:24:41,660 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-02 12:24:41,661 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-02 12:24:41,661 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-02 12:24:41,661 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-02 12:24:41,662 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-02 12:24:41,662 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-02 12:24:41,662 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-02 12:24:41,663 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-02 12:24:41,663 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-02 12:24:41,663 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-02 12:24:41,663 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-02 12:24:41,664 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-02 12:24:41,665 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-02 12:24:41,665 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-02 12:24:41,665 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-02 12:24:41,793 INFO L238 CfgBuilder]: Building ICFG [2024-11-02 12:24:41,796 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-02 12:24:42,193 INFO L? ?]: Removed 49 outVars from TransFormulas that were not future-live. [2024-11-02 12:24:42,193 INFO L287 CfgBuilder]: Performing block encoding [2024-11-02 12:24:42,326 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-02 12:24:42,326 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-02 12:24:42,326 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.11 12:24:42 BoogieIcfgContainer [2024-11-02 12:24:42,327 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-02 12:24:42,329 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-02 12:24:42,329 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-02 12:24:42,334 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-02 12:24:42,334 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 02.11 12:24:40" (1/3) ... [2024-11-02 12:24:42,335 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@50e8cae3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 02.11 12:24:42, skipping insertion in model container [2024-11-02 12:24:42,335 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.11 12:24:41" (2/3) ... [2024-11-02 12:24:42,337 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@50e8cae3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 02.11 12:24:42, skipping insertion in model container [2024-11-02 12:24:42,337 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.11 12:24:42" (3/3) ... [2024-11-02 12:24:42,339 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec3_product50.cil.c [2024-11-02 12:24:42,358 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-02 12:24:42,358 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-02 12:24:42,425 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-02 12:24:42,431 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@4c2b282a, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-02 12:24:42,431 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-02 12:24:42,436 INFO L276 IsEmpty]: Start isEmpty. Operand has 56 states, 36 states have (on average 1.4444444444444444) internal successors, (52), 44 states have internal predecessors, (52), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-02 12:24:42,447 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-11-02 12:24:42,447 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:42,448 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:42,449 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:42,453 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:42,453 INFO L85 PathProgramCache]: Analyzing trace with hash 2141873407, now seen corresponding path program 1 times [2024-11-02 12:24:42,461 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:42,462 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [520570499] [2024-11-02 12:24:42,462 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:42,462 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:42,573 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:42,639 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-02 12:24:42,639 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:42,639 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [520570499] [2024-11-02 12:24:42,640 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [520570499] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:42,640 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-02 12:24:42,641 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-02 12:24:42,642 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1937301408] [2024-11-02 12:24:42,643 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:42,647 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-02 12:24:42,648 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:42,668 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-02 12:24:42,669 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-02 12:24:42,670 INFO L87 Difference]: Start difference. First operand has 56 states, 36 states have (on average 1.4444444444444444) internal successors, (52), 44 states have internal predecessors, (52), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-02 12:24:42,740 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:42,740 INFO L93 Difference]: Finished difference Result 110 states and 149 transitions. [2024-11-02 12:24:42,741 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-02 12:24:42,743 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-11-02 12:24:42,743 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:42,755 INFO L225 Difference]: With dead ends: 110 [2024-11-02 12:24:42,755 INFO L226 Difference]: Without dead ends: 51 [2024-11-02 12:24:42,760 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-02 12:24:42,767 INFO L432 NwaCegarLoop]: 53 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 53 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:42,768 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 53 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-02 12:24:42,788 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 51 states. [2024-11-02 12:24:42,814 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 51 to 51. [2024-11-02 12:24:42,815 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 51 states, 33 states have (on average 1.3333333333333333) internal successors, (44), 40 states have internal predecessors, (44), 11 states have call successors, (11), 7 states have call predecessors, (11), 6 states have return successors, (10), 8 states have call predecessors, (10), 10 states have call successors, (10) [2024-11-02 12:24:42,817 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 51 states to 51 states and 65 transitions. [2024-11-02 12:24:42,821 INFO L78 Accepts]: Start accepts. Automaton has 51 states and 65 transitions. Word has length 17 [2024-11-02 12:24:42,822 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:42,822 INFO L471 AbstractCegarLoop]: Abstraction has 51 states and 65 transitions. [2024-11-02 12:24:42,822 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-02 12:24:42,822 INFO L276 IsEmpty]: Start isEmpty. Operand 51 states and 65 transitions. [2024-11-02 12:24:42,824 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-11-02 12:24:42,824 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:42,825 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:42,825 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-02 12:24:42,825 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:42,826 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:42,826 INFO L85 PathProgramCache]: Analyzing trace with hash 1580889706, now seen corresponding path program 1 times [2024-11-02 12:24:42,826 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:42,827 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1737469708] [2024-11-02 12:24:42,827 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:42,829 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:42,857 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:42,965 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-02 12:24:42,966 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:42,966 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1737469708] [2024-11-02 12:24:42,966 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1737469708] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:42,966 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-02 12:24:42,967 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-02 12:24:42,967 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2036102148] [2024-11-02 12:24:42,967 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:42,970 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-02 12:24:42,971 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:42,971 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-02 12:24:42,972 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-02 12:24:42,972 INFO L87 Difference]: Start difference. First operand 51 states and 65 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-02 12:24:43,034 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:43,034 INFO L93 Difference]: Finished difference Result 79 states and 101 transitions. [2024-11-02 12:24:43,035 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-02 12:24:43,035 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2024-11-02 12:24:43,036 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:43,037 INFO L225 Difference]: With dead ends: 79 [2024-11-02 12:24:43,037 INFO L226 Difference]: Without dead ends: 43 [2024-11-02 12:24:43,037 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-02 12:24:43,039 INFO L432 NwaCegarLoop]: 39 mSDtfsCounter, 7 mSDsluCounter, 30 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 69 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:43,039 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 69 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-02 12:24:43,041 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 43 states. [2024-11-02 12:24:43,049 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 43 to 43. [2024-11-02 12:24:43,050 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 43 states, 28 states have (on average 1.3571428571428572) internal successors, (38), 35 states have internal predecessors, (38), 8 states have call successors, (8), 6 states have call predecessors, (8), 6 states have return successors, (8), 6 states have call predecessors, (8), 8 states have call successors, (8) [2024-11-02 12:24:43,051 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 43 states to 43 states and 54 transitions. [2024-11-02 12:24:43,051 INFO L78 Accepts]: Start accepts. Automaton has 43 states and 54 transitions. Word has length 18 [2024-11-02 12:24:43,051 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:43,052 INFO L471 AbstractCegarLoop]: Abstraction has 43 states and 54 transitions. [2024-11-02 12:24:43,053 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-02 12:24:43,054 INFO L276 IsEmpty]: Start isEmpty. Operand 43 states and 54 transitions. [2024-11-02 12:24:43,055 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-11-02 12:24:43,055 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:43,055 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:43,055 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-02 12:24:43,056 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:43,056 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:43,056 INFO L85 PathProgramCache]: Analyzing trace with hash 195601986, now seen corresponding path program 1 times [2024-11-02 12:24:43,057 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:43,057 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [530047308] [2024-11-02 12:24:43,057 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:43,057 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:43,102 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:43,455 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-02 12:24:43,456 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:43,456 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [530047308] [2024-11-02 12:24:43,456 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [530047308] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:43,457 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-02 12:24:43,457 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-02 12:24:43,457 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [912039988] [2024-11-02 12:24:43,457 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:43,457 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-02 12:24:43,458 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:43,458 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-02 12:24:43,459 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2024-11-02 12:24:43,459 INFO L87 Difference]: Start difference. First operand 43 states and 54 transitions. Second operand has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-02 12:24:43,637 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:43,638 INFO L93 Difference]: Finished difference Result 143 states and 182 transitions. [2024-11-02 12:24:43,638 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-02 12:24:43,638 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2024-11-02 12:24:43,639 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:43,640 INFO L225 Difference]: With dead ends: 143 [2024-11-02 12:24:43,640 INFO L226 Difference]: Without dead ends: 102 [2024-11-02 12:24:43,641 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2024-11-02 12:24:43,642 INFO L432 NwaCegarLoop]: 40 mSDtfsCounter, 67 mSDsluCounter, 90 mSDsCounter, 0 mSdLazyCounter, 67 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 130 SdHoareTripleChecker+Invalid, 78 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 67 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:43,643 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 130 Invalid, 78 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 67 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-02 12:24:43,644 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 102 states. [2024-11-02 12:24:43,664 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 102 to 87. [2024-11-02 12:24:43,664 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 87 states, 58 states have (on average 1.2758620689655173) internal successors, (74), 67 states have internal predecessors, (74), 14 states have call successors, (14), 12 states have call predecessors, (14), 14 states have return successors, (16), 13 states have call predecessors, (16), 14 states have call successors, (16) [2024-11-02 12:24:43,666 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 87 states to 87 states and 104 transitions. [2024-11-02 12:24:43,666 INFO L78 Accepts]: Start accepts. Automaton has 87 states and 104 transitions. Word has length 20 [2024-11-02 12:24:43,666 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:43,667 INFO L471 AbstractCegarLoop]: Abstraction has 87 states and 104 transitions. [2024-11-02 12:24:43,667 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-02 12:24:43,667 INFO L276 IsEmpty]: Start isEmpty. Operand 87 states and 104 transitions. [2024-11-02 12:24:43,668 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-11-02 12:24:43,668 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:43,668 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:43,668 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-02 12:24:43,669 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:43,669 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:43,669 INFO L85 PathProgramCache]: Analyzing trace with hash 235754247, now seen corresponding path program 1 times [2024-11-02 12:24:43,670 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:43,670 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [685637055] [2024-11-02 12:24:43,670 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:43,670 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:43,693 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:43,792 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-02 12:24:43,792 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:43,792 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [685637055] [2024-11-02 12:24:43,793 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [685637055] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:43,793 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-02 12:24:43,793 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-02 12:24:43,793 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1183677815] [2024-11-02 12:24:43,793 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:43,794 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-02 12:24:43,794 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:43,794 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-02 12:24:43,794 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-02 12:24:43,795 INFO L87 Difference]: Start difference. First operand 87 states and 104 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-02 12:24:43,840 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:43,840 INFO L93 Difference]: Finished difference Result 172 states and 208 transitions. [2024-11-02 12:24:43,841 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-02 12:24:43,841 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 23 [2024-11-02 12:24:43,841 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:43,842 INFO L225 Difference]: With dead ends: 172 [2024-11-02 12:24:43,842 INFO L226 Difference]: Without dead ends: 87 [2024-11-02 12:24:43,843 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-02 12:24:43,844 INFO L432 NwaCegarLoop]: 37 mSDtfsCounter, 42 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 16 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 37 SdHoareTripleChecker+Invalid, 16 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 16 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:43,845 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 37 Invalid, 16 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 16 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-02 12:24:43,846 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 87 states. [2024-11-02 12:24:43,865 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 87 to 87. [2024-11-02 12:24:43,865 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 87 states, 58 states have (on average 1.2413793103448276) internal successors, (72), 67 states have internal predecessors, (72), 14 states have call successors, (14), 12 states have call predecessors, (14), 14 states have return successors, (16), 13 states have call predecessors, (16), 14 states have call successors, (16) [2024-11-02 12:24:43,867 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 87 states to 87 states and 102 transitions. [2024-11-02 12:24:43,870 INFO L78 Accepts]: Start accepts. Automaton has 87 states and 102 transitions. Word has length 23 [2024-11-02 12:24:43,870 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:43,871 INFO L471 AbstractCegarLoop]: Abstraction has 87 states and 102 transitions. [2024-11-02 12:24:43,871 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-02 12:24:43,871 INFO L276 IsEmpty]: Start isEmpty. Operand 87 states and 102 transitions. [2024-11-02 12:24:43,872 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2024-11-02 12:24:43,872 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:43,872 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:43,872 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-02 12:24:43,873 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:43,873 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:43,873 INFO L85 PathProgramCache]: Analyzing trace with hash 1729637512, now seen corresponding path program 1 times [2024-11-02 12:24:43,873 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:43,873 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1652288372] [2024-11-02 12:24:43,874 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:43,876 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:43,907 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:43,998 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-02 12:24:43,999 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:43,999 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1652288372] [2024-11-02 12:24:43,999 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1652288372] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:44,000 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-02 12:24:44,000 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-02 12:24:44,000 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1436072316] [2024-11-02 12:24:44,000 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:44,001 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-02 12:24:44,001 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:44,001 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-02 12:24:44,002 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-02 12:24:44,002 INFO L87 Difference]: Start difference. First operand 87 states and 102 transitions. Second operand has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-02 12:24:44,119 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:44,119 INFO L93 Difference]: Finished difference Result 163 states and 199 transitions. [2024-11-02 12:24:44,122 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-02 12:24:44,123 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 26 [2024-11-02 12:24:44,123 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:44,124 INFO L225 Difference]: With dead ends: 163 [2024-11-02 12:24:44,124 INFO L226 Difference]: Without dead ends: 122 [2024-11-02 12:24:44,125 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-02 12:24:44,129 INFO L432 NwaCegarLoop]: 51 mSDtfsCounter, 34 mSDsluCounter, 32 mSDsCounter, 0 mSdLazyCounter, 32 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 34 SdHoareTripleChecker+Valid, 83 SdHoareTripleChecker+Invalid, 36 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 32 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:44,130 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [34 Valid, 83 Invalid, 36 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 32 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-02 12:24:44,131 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 122 states. [2024-11-02 12:24:44,159 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 122 to 120. [2024-11-02 12:24:44,160 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 120 states, 81 states have (on average 1.2345679012345678) internal successors, (100), 90 states have internal predecessors, (100), 18 states have call successors, (18), 18 states have call predecessors, (18), 20 states have return successors, (24), 19 states have call predecessors, (24), 18 states have call successors, (24) [2024-11-02 12:24:44,161 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 120 states to 120 states and 142 transitions. [2024-11-02 12:24:44,164 INFO L78 Accepts]: Start accepts. Automaton has 120 states and 142 transitions. Word has length 26 [2024-11-02 12:24:44,165 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:44,165 INFO L471 AbstractCegarLoop]: Abstraction has 120 states and 142 transitions. [2024-11-02 12:24:44,165 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-02 12:24:44,165 INFO L276 IsEmpty]: Start isEmpty. Operand 120 states and 142 transitions. [2024-11-02 12:24:44,166 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2024-11-02 12:24:44,166 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:44,167 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:44,167 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-02 12:24:44,167 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:44,167 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:44,168 INFO L85 PathProgramCache]: Analyzing trace with hash 740262994, now seen corresponding path program 1 times [2024-11-02 12:24:44,168 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:44,169 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1639159378] [2024-11-02 12:24:44,170 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:44,170 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:44,197 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:44,269 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-02 12:24:44,270 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:44,270 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1639159378] [2024-11-02 12:24:44,270 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1639159378] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:44,270 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-02 12:24:44,270 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-02 12:24:44,270 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1104535120] [2024-11-02 12:24:44,270 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:44,271 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-02 12:24:44,271 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:44,275 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-02 12:24:44,275 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-02 12:24:44,275 INFO L87 Difference]: Start difference. First operand 120 states and 142 transitions. Second operand has 4 states, 4 states have (on average 6.0) internal successors, (24), 4 states have internal predecessors, (24), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-02 12:24:44,384 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:44,385 INFO L93 Difference]: Finished difference Result 194 states and 236 transitions. [2024-11-02 12:24:44,385 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-02 12:24:44,386 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 6.0) internal successors, (24), 4 states have internal predecessors, (24), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 31 [2024-11-02 12:24:44,386 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:44,387 INFO L225 Difference]: With dead ends: 194 [2024-11-02 12:24:44,387 INFO L226 Difference]: Without dead ends: 120 [2024-11-02 12:24:44,388 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-02 12:24:44,393 INFO L432 NwaCegarLoop]: 52 mSDtfsCounter, 34 mSDsluCounter, 82 mSDsCounter, 0 mSdLazyCounter, 60 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 34 SdHoareTripleChecker+Valid, 134 SdHoareTripleChecker+Invalid, 62 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 60 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:44,394 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [34 Valid, 134 Invalid, 62 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 60 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-02 12:24:44,395 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 120 states. [2024-11-02 12:24:44,421 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 120 to 120. [2024-11-02 12:24:44,422 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 120 states, 81 states have (on average 1.1975308641975309) internal successors, (97), 90 states have internal predecessors, (97), 18 states have call successors, (18), 18 states have call predecessors, (18), 20 states have return successors, (23), 19 states have call predecessors, (23), 18 states have call successors, (23) [2024-11-02 12:24:44,424 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 120 states to 120 states and 138 transitions. [2024-11-02 12:24:44,424 INFO L78 Accepts]: Start accepts. Automaton has 120 states and 138 transitions. Word has length 31 [2024-11-02 12:24:44,424 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:44,425 INFO L471 AbstractCegarLoop]: Abstraction has 120 states and 138 transitions. [2024-11-02 12:24:44,425 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 6.0) internal successors, (24), 4 states have internal predecessors, (24), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-02 12:24:44,425 INFO L276 IsEmpty]: Start isEmpty. Operand 120 states and 138 transitions. [2024-11-02 12:24:44,430 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-11-02 12:24:44,430 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:44,430 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:44,431 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-02 12:24:44,431 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:44,433 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:44,433 INFO L85 PathProgramCache]: Analyzing trace with hash 574731253, now seen corresponding path program 1 times [2024-11-02 12:24:44,433 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:44,433 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1214316370] [2024-11-02 12:24:44,434 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:44,434 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:44,452 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:44,881 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-02 12:24:44,881 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:44,881 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1214316370] [2024-11-02 12:24:44,881 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1214316370] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:44,881 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-02 12:24:44,882 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2024-11-02 12:24:44,882 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [931041469] [2024-11-02 12:24:44,882 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:44,883 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2024-11-02 12:24:44,883 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:44,883 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2024-11-02 12:24:44,884 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=50, Unknown=0, NotChecked=0, Total=72 [2024-11-02 12:24:44,885 INFO L87 Difference]: Start difference. First operand 120 states and 138 transitions. Second operand has 9 states, 8 states have (on average 3.125) internal successors, (25), 8 states have internal predecessors, (25), 5 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-02 12:24:45,548 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:45,548 INFO L93 Difference]: Finished difference Result 343 states and 416 transitions. [2024-11-02 12:24:45,550 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2024-11-02 12:24:45,551 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 8 states have (on average 3.125) internal successors, (25), 8 states have internal predecessors, (25), 5 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 34 [2024-11-02 12:24:45,552 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:45,554 INFO L225 Difference]: With dead ends: 343 [2024-11-02 12:24:45,556 INFO L226 Difference]: Without dead ends: 269 [2024-11-02 12:24:45,558 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 25 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=56, Invalid=126, Unknown=0, NotChecked=0, Total=182 [2024-11-02 12:24:45,561 INFO L432 NwaCegarLoop]: 60 mSDtfsCounter, 256 mSDsluCounter, 158 mSDsCounter, 0 mSdLazyCounter, 304 mSolverCounterSat, 99 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 265 SdHoareTripleChecker+Valid, 218 SdHoareTripleChecker+Invalid, 403 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 99 IncrementalHoareTripleChecker+Valid, 304 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:45,562 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [265 Valid, 218 Invalid, 403 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [99 Valid, 304 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-02 12:24:45,563 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 269 states. [2024-11-02 12:24:45,624 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 269 to 247. [2024-11-02 12:24:45,625 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 247 states, 171 states have (on average 1.2222222222222223) internal successors, (209), 188 states have internal predecessors, (209), 38 states have call successors, (38), 35 states have call predecessors, (38), 37 states have return successors, (47), 37 states have call predecessors, (47), 38 states have call successors, (47) [2024-11-02 12:24:45,638 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 247 states to 247 states and 294 transitions. [2024-11-02 12:24:45,639 INFO L78 Accepts]: Start accepts. Automaton has 247 states and 294 transitions. Word has length 34 [2024-11-02 12:24:45,641 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:45,641 INFO L471 AbstractCegarLoop]: Abstraction has 247 states and 294 transitions. [2024-11-02 12:24:45,641 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 8 states have (on average 3.125) internal successors, (25), 8 states have internal predecessors, (25), 5 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-02 12:24:45,642 INFO L276 IsEmpty]: Start isEmpty. Operand 247 states and 294 transitions. [2024-11-02 12:24:45,643 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 49 [2024-11-02 12:24:45,644 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:45,644 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:45,645 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-02 12:24:45,645 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:45,645 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:45,646 INFO L85 PathProgramCache]: Analyzing trace with hash 1370390333, now seen corresponding path program 1 times [2024-11-02 12:24:45,646 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:45,646 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [657467145] [2024-11-02 12:24:45,646 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:45,646 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:45,673 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:45,980 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 15 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-02 12:24:45,980 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:45,980 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [657467145] [2024-11-02 12:24:45,980 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [657467145] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:45,980 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-02 12:24:45,981 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-02 12:24:45,981 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [988873208] [2024-11-02 12:24:45,981 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:45,981 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-02 12:24:45,981 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:45,984 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-02 12:24:45,984 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-02 12:24:45,984 INFO L87 Difference]: Start difference. First operand 247 states and 294 transitions. Second operand has 8 states, 8 states have (on average 4.75) internal successors, (38), 7 states have internal predecessors, (38), 4 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 2 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-02 12:24:46,334 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:46,335 INFO L93 Difference]: Finished difference Result 440 states and 527 transitions. [2024-11-02 12:24:46,336 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-02 12:24:46,336 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 4.75) internal successors, (38), 7 states have internal predecessors, (38), 4 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 2 states have call predecessors, (4), 4 states have call successors, (4) Word has length 48 [2024-11-02 12:24:46,336 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:46,341 INFO L225 Difference]: With dead ends: 440 [2024-11-02 12:24:46,341 INFO L226 Difference]: Without dead ends: 293 [2024-11-02 12:24:46,343 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=45, Invalid=87, Unknown=0, NotChecked=0, Total=132 [2024-11-02 12:24:46,343 INFO L432 NwaCegarLoop]: 39 mSDtfsCounter, 94 mSDsluCounter, 74 mSDsCounter, 0 mSdLazyCounter, 180 mSolverCounterSat, 41 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 101 SdHoareTripleChecker+Valid, 113 SdHoareTripleChecker+Invalid, 221 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 41 IncrementalHoareTripleChecker+Valid, 180 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:46,344 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [101 Valid, 113 Invalid, 221 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [41 Valid, 180 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-02 12:24:46,345 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 293 states. [2024-11-02 12:24:46,410 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 293 to 225. [2024-11-02 12:24:46,411 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 225 states, 155 states have (on average 1.206451612903226) internal successors, (187), 168 states have internal predecessors, (187), 33 states have call successors, (33), 33 states have call predecessors, (33), 36 states have return successors, (39), 33 states have call predecessors, (39), 33 states have call successors, (39) [2024-11-02 12:24:46,412 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 225 states to 225 states and 259 transitions. [2024-11-02 12:24:46,413 INFO L78 Accepts]: Start accepts. Automaton has 225 states and 259 transitions. Word has length 48 [2024-11-02 12:24:46,413 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:46,413 INFO L471 AbstractCegarLoop]: Abstraction has 225 states and 259 transitions. [2024-11-02 12:24:46,414 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 4.75) internal successors, (38), 7 states have internal predecessors, (38), 4 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 2 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-02 12:24:46,414 INFO L276 IsEmpty]: Start isEmpty. Operand 225 states and 259 transitions. [2024-11-02 12:24:46,415 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2024-11-02 12:24:46,415 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:46,416 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:46,416 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-02 12:24:46,416 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:46,417 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:46,417 INFO L85 PathProgramCache]: Analyzing trace with hash 236192386, now seen corresponding path program 1 times [2024-11-02 12:24:46,417 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:46,417 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [948441853] [2024-11-02 12:24:46,417 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:46,418 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:46,446 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:46,949 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 0 proven. 15 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-02 12:24:46,949 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:46,949 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [948441853] [2024-11-02 12:24:46,949 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [948441853] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-02 12:24:46,949 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2054667218] [2024-11-02 12:24:46,949 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:46,950 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-02 12:24:46,950 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 [2024-11-02 12:24:46,952 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-02 12:24:46,957 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-02 12:24:47,047 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:47,050 INFO L255 TraceCheckSpWp]: Trace formula consists of 218 conjuncts, 22 conjuncts are in the unsatisfiable core [2024-11-02 12:24:47,056 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-02 12:24:47,451 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 2 proven. 11 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-11-02 12:24:47,451 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-02 12:24:47,879 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 6 proven. 2 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2024-11-02 12:24:47,880 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2054667218] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-02 12:24:47,880 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1323719632] [2024-11-02 12:24:47,900 INFO L159 IcfgInterpreter]: Started Sifa with 35 locations of interest [2024-11-02 12:24:47,901 INFO L166 IcfgInterpreter]: Building call graph [2024-11-02 12:24:47,904 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-02 12:24:47,910 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-02 12:24:47,910 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-02 12:24:50,921 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 17 for LOIs [2024-11-02 12:24:50,927 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 37 for LOIs [2024-11-02 12:24:51,125 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 36 for LOIs [2024-11-02 12:24:51,173 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 15 for LOIs [2024-11-02 12:24:51,179 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-02 12:24:53,518 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4349#(and (= ~pumpRunning~0 0) (<= 0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0) (= ~methaneLevelCritical~0 0))' at error location [2024-11-02 12:24:53,518 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-02 12:24:53,519 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-02 12:24:53,519 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 9, 8] total 24 [2024-11-02 12:24:53,519 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1301328490] [2024-11-02 12:24:53,519 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-02 12:24:53,520 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 24 states [2024-11-02 12:24:53,520 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:53,520 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2024-11-02 12:24:53,522 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=292, Invalid=2158, Unknown=0, NotChecked=0, Total=2450 [2024-11-02 12:24:53,522 INFO L87 Difference]: Start difference. First operand 225 states and 259 transitions. Second operand has 24 states, 22 states have (on average 4.181818181818182) internal successors, (92), 22 states have internal predecessors, (92), 11 states have call successors, (17), 9 states have call predecessors, (17), 8 states have return successors, (14), 9 states have call predecessors, (14), 10 states have call successors, (14) [2024-11-02 12:24:56,270 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:56,270 INFO L93 Difference]: Finished difference Result 753 states and 912 transitions. [2024-11-02 12:24:56,270 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 50 states. [2024-11-02 12:24:56,271 INFO L78 Accepts]: Start accepts. Automaton has has 24 states, 22 states have (on average 4.181818181818182) internal successors, (92), 22 states have internal predecessors, (92), 11 states have call successors, (17), 9 states have call predecessors, (17), 8 states have return successors, (14), 9 states have call predecessors, (14), 10 states have call successors, (14) Word has length 51 [2024-11-02 12:24:56,271 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:56,274 INFO L225 Difference]: With dead ends: 753 [2024-11-02 12:24:56,274 INFO L226 Difference]: Without dead ends: 592 [2024-11-02 12:24:56,278 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 222 GetRequests, 127 SyntacticMatches, 4 SemanticMatches, 91 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 3107 ImplicationChecksByTransitivity, 4.0s TimeCoverageRelationStatistics Valid=1080, Invalid=7476, Unknown=0, NotChecked=0, Total=8556 [2024-11-02 12:24:56,279 INFO L432 NwaCegarLoop]: 79 mSDtfsCounter, 651 mSDsluCounter, 684 mSDsCounter, 0 mSdLazyCounter, 1229 mSolverCounterSat, 344 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 656 SdHoareTripleChecker+Valid, 763 SdHoareTripleChecker+Invalid, 1573 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 344 IncrementalHoareTripleChecker+Valid, 1229 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:56,280 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [656 Valid, 763 Invalid, 1573 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [344 Valid, 1229 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2024-11-02 12:24:56,282 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 592 states. [2024-11-02 12:24:56,339 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 592 to 412. [2024-11-02 12:24:56,340 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 412 states, 281 states have (on average 1.1850533807829182) internal successors, (333), 303 states have internal predecessors, (333), 60 states have call successors, (60), 59 states have call predecessors, (60), 70 states have return successors, (73), 63 states have call predecessors, (73), 60 states have call successors, (73) [2024-11-02 12:24:56,343 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 412 states to 412 states and 466 transitions. [2024-11-02 12:24:56,345 INFO L78 Accepts]: Start accepts. Automaton has 412 states and 466 transitions. Word has length 51 [2024-11-02 12:24:56,346 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:56,346 INFO L471 AbstractCegarLoop]: Abstraction has 412 states and 466 transitions. [2024-11-02 12:24:56,346 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 24 states, 22 states have (on average 4.181818181818182) internal successors, (92), 22 states have internal predecessors, (92), 11 states have call successors, (17), 9 states have call predecessors, (17), 8 states have return successors, (14), 9 states have call predecessors, (14), 10 states have call successors, (14) [2024-11-02 12:24:56,347 INFO L276 IsEmpty]: Start isEmpty. Operand 412 states and 466 transitions. [2024-11-02 12:24:56,348 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 83 [2024-11-02 12:24:56,348 INFO L207 NwaCegarLoop]: Found error trace [2024-11-02 12:24:56,348 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:56,370 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-02 12:24:56,549 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable8 [2024-11-02 12:24:56,550 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-02 12:24:56,550 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-02 12:24:56,550 INFO L85 PathProgramCache]: Analyzing trace with hash -282957424, now seen corresponding path program 1 times [2024-11-02 12:24:56,550 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-02 12:24:56,551 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [19188931] [2024-11-02 12:24:56,551 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:56,551 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-02 12:24:56,572 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:56,793 INFO L134 CoverageAnalysis]: Checked inductivity of 62 backedges. 11 proven. 29 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-02 12:24:56,794 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-02 12:24:56,794 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [19188931] [2024-11-02 12:24:56,794 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [19188931] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-02 12:24:56,794 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1197253802] [2024-11-02 12:24:56,794 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-02 12:24:56,794 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-02 12:24:56,795 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 [2024-11-02 12:24:56,798 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-02 12:24:56,800 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-02 12:24:56,897 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-02 12:24:56,899 INFO L255 TraceCheckSpWp]: Trace formula consists of 289 conjuncts, 5 conjuncts are in the unsatisfiable core [2024-11-02 12:24:56,902 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-02 12:24:56,974 INFO L134 CoverageAnalysis]: Checked inductivity of 62 backedges. 17 proven. 0 refuted. 0 times theorem prover too weak. 45 trivial. 0 not checked. [2024-11-02 12:24:56,974 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-02 12:24:56,974 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1197253802] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-02 12:24:56,974 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-02 12:24:56,975 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [8] total 9 [2024-11-02 12:24:56,975 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [639850286] [2024-11-02 12:24:56,975 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-02 12:24:56,975 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-02 12:24:56,976 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-02 12:24:56,976 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-02 12:24:56,976 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=55, Unknown=0, NotChecked=0, Total=72 [2024-11-02 12:24:56,977 INFO L87 Difference]: Start difference. First operand 412 states and 466 transitions. Second operand has 5 states, 5 states have (on average 7.4) internal successors, (37), 5 states have internal predecessors, (37), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (7), 2 states have call predecessors, (7), 2 states have call successors, (7) [2024-11-02 12:24:57,142 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-02 12:24:57,143 INFO L93 Difference]: Finished difference Result 755 states and 876 transitions. [2024-11-02 12:24:57,143 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-02 12:24:57,143 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 7.4) internal successors, (37), 5 states have internal predecessors, (37), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (7), 2 states have call predecessors, (7), 2 states have call successors, (7) Word has length 82 [2024-11-02 12:24:57,144 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-02 12:24:57,144 INFO L225 Difference]: With dead ends: 755 [2024-11-02 12:24:57,144 INFO L226 Difference]: Without dead ends: 0 [2024-11-02 12:24:57,146 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 93 GetRequests, 84 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=27, Invalid=83, Unknown=0, NotChecked=0, Total=110 [2024-11-02 12:24:57,147 INFO L432 NwaCegarLoop]: 44 mSDtfsCounter, 25 mSDsluCounter, 106 mSDsCounter, 0 mSdLazyCounter, 86 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 25 SdHoareTripleChecker+Valid, 150 SdHoareTripleChecker+Invalid, 89 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 86 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-02 12:24:57,147 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [25 Valid, 150 Invalid, 89 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 86 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-02 12:24:57,147 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-02 12:24:57,148 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-02 12:24:57,148 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-02 12:24:57,148 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-02 12:24:57,148 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 82 [2024-11-02 12:24:57,148 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-02 12:24:57,149 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-02 12:24:57,149 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 7.4) internal successors, (37), 5 states have internal predecessors, (37), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (7), 2 states have call predecessors, (7), 2 states have call successors, (7) [2024-11-02 12:24:57,149 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-02 12:24:57,149 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-02 12:24:57,151 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-02 12:24:57,174 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-02 12:24:57,354 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-02 12:24:57,356 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-02 12:24:57,359 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-02 12:25:01,797 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-02 12:25:01,847 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) (and (= ~pumpRunning~0 0) .cse1)) (or (and (= |old(~pumpRunning~0)| 1) .cse1 (= ~pumpRunning~0 1)) .cse0) (let ((.cse2 (= 1 ~systemActive~0))) (or (and .cse2 (<= |old(~waterLevel~0)| 1)) (and .cse2 (= |old(~waterLevel~0)| 2)))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) (and (= ~pumpRunning~0 0) .cse1)) (or (and (= |old(~pumpRunning~0)| 1) .cse1 (= ~pumpRunning~0 1)) .cse0) (let ((.cse2 (= 1 ~systemActive~0))) (or (and .cse2 (<= |old(~waterLevel~0)| 1)) (and .cse2 (= |old(~waterLevel~0)| 2))))))) [2024-11-02 12:25:01,864 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-02 12:25:01,875 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse2 (= |old(~pumpRunning~0)| 0)) (.cse1 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0 .cse1) (and .cse0 .cse2 (<= ~waterLevel~0 2)))) (or (not .cse2) (= ~pumpRunning~0 0)) (or (not .cse1) (= ~pumpRunning~0 1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse2 (= |old(~pumpRunning~0)| 0)) (.cse1 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0 .cse1) (and .cse0 .cse2 (<= ~waterLevel~0 2)))) (or (not .cse2) (= ~pumpRunning~0 0)) (or (not .cse1) (= ~pumpRunning~0 1))))) [2024-11-02 12:25:01,879 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-02 12:25:01,882 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (= ~pumpRunning~0 1))) (or (and .cse0 (<= |old(~waterLevel~0)| 1) .cse1) (and (= ~pumpRunning~0 0) .cse0 (<= |old(~waterLevel~0)| 2)) (and .cse0 (= |old(~waterLevel~0)| 2) .cse1))) (= |old(~waterLevel~0)| ~waterLevel~0)) Eliminated clause: (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse0 (<= ~waterLevel~0 2)) (and (= 2 ~waterLevel~0) .cse0 .cse1) (and (<= ~waterLevel~0 1) .cse0 .cse1))) [2024-11-02 12:25:01,889 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 02.11 12:25:01 BoogieIcfgContainer [2024-11-02 12:25:01,889 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-02 12:25:01,890 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-02 12:25:01,890 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-02 12:25:01,890 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-02 12:25:01,891 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.11 12:24:42" (3/4) ... [2024-11-02 12:25:01,894 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-02 12:25:01,897 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-02 12:25:01,898 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-02 12:25:01,898 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-02 12:25:01,898 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-02 12:25:01,898 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-02 12:25:01,899 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-02 12:25:01,899 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-02 12:25:01,905 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 46 nodes and edges [2024-11-02 12:25:01,906 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-02 12:25:01,906 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-02 12:25:01,907 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-02 12:25:01,907 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-02 12:25:01,936 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) && ((((\old(pumpRunning) == 1) && (\old(waterLevel) == waterLevel)) && (pumpRunning == 1)) || (\old(pumpRunning) == 0))) && (((1 == systemActive) && (\old(waterLevel) <= 1)) || ((1 == systemActive) && (\old(waterLevel) == 2)))) [2024-11-02 12:25:01,963 WARN L140 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) && ((((\old(pumpRunning) == 1) && (\old(waterLevel) == waterLevel)) && (pumpRunning == 1)) || (\old(pumpRunning) == 0))) && (((1 == systemActive) && (\old(waterLevel) <= 1)) || ((1 == systemActive) && (\old(waterLevel) == 2)))) [2024-11-02 12:25:02,020 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/witness.graphml [2024-11-02 12:25:02,020 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/witness.yml [2024-11-02 12:25:02,021 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-02 12:25:02,021 INFO L158 Benchmark]: Toolchain (without parser) took 21146.94ms. Allocated memory was 132.1MB in the beginning and 455.1MB in the end (delta: 323.0MB). Free memory was 92.7MB in the beginning and 165.9MB in the end (delta: -73.2MB). Peak memory consumption was 250.9MB. Max. memory is 16.1GB. [2024-11-02 12:25:02,022 INFO L158 Benchmark]: CDTParser took 0.28ms. Allocated memory is still 98.6MB. Free memory is still 74.0MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-02 12:25:02,022 INFO L158 Benchmark]: CACSL2BoogieTranslator took 607.43ms. Allocated memory is still 132.1MB. Free memory was 92.2MB in the beginning and 70.7MB in the end (delta: 21.5MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-02 12:25:02,022 INFO L158 Benchmark]: Boogie Procedure Inliner took 49.88ms. Allocated memory is still 132.1MB. Free memory was 70.7MB in the beginning and 68.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-02 12:25:02,022 INFO L158 Benchmark]: Boogie Preprocessor took 27.59ms. Allocated memory is still 132.1MB. Free memory was 68.6MB in the beginning and 67.0MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-02 12:25:02,023 INFO L158 Benchmark]: RCFGBuilder took 756.74ms. Allocated memory is still 132.1MB. Free memory was 67.0MB in the beginning and 90.1MB in the end (delta: -23.1MB). Peak memory consumption was 22.6MB. Max. memory is 16.1GB. [2024-11-02 12:25:02,024 INFO L158 Benchmark]: TraceAbstraction took 19560.54ms. Allocated memory was 132.1MB in the beginning and 455.1MB in the end (delta: 323.0MB). Free memory was 89.4MB in the beginning and 174.3MB in the end (delta: -84.9MB). Peak memory consumption was 260.4MB. Max. memory is 16.1GB. [2024-11-02 12:25:02,024 INFO L158 Benchmark]: Witness Printer took 130.66ms. Allocated memory is still 455.1MB. Free memory was 174.3MB in the beginning and 165.9MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-02 12:25:02,026 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.28ms. Allocated memory is still 98.6MB. Free memory is still 74.0MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 607.43ms. Allocated memory is still 132.1MB. Free memory was 92.2MB in the beginning and 70.7MB in the end (delta: 21.5MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 49.88ms. Allocated memory is still 132.1MB. Free memory was 70.7MB in the beginning and 68.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 27.59ms. Allocated memory is still 132.1MB. Free memory was 68.6MB in the beginning and 67.0MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 756.74ms. Allocated memory is still 132.1MB. Free memory was 67.0MB in the beginning and 90.1MB in the end (delta: -23.1MB). Peak memory consumption was 22.6MB. Max. memory is 16.1GB. * TraceAbstraction took 19560.54ms. Allocated memory was 132.1MB in the beginning and 455.1MB in the end (delta: 323.0MB). Free memory was 89.4MB in the beginning and 174.3MB in the end (delta: -84.9MB). Peak memory consumption was 260.4MB. Max. memory is 16.1GB. * Witness Printer took 130.66ms. Allocated memory is still 455.1MB. Free memory was 174.3MB in the beginning and 165.9MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] - GenericResultAtLocation [Line: 415]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [415] - GenericResultAtLocation [Line: 453]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [453] - GenericResultAtLocation [Line: 562]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [562] - GenericResultAtLocation [Line: 664]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [664] - GenericResultAtLocation [Line: 699]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [699] - GenericResultAtLocation [Line: 708]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [708] - GenericResultAtLocation [Line: 776]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [776] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 704]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 56 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 15.0s, OverallIterations: 10, TraceHistogramMax: 3, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 4.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 1234 SdHoareTripleChecker+Valid, 2.4s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 1210 mSDsluCounter, 1750 SdHoareTripleChecker+Invalid, 2.0s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1256 mSDsCounter, 505 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 2019 IncrementalHoareTripleChecker+Invalid, 2524 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 505 mSolverCounterUnsat, 494 mSDtfsCounter, 2019 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 374 GetRequests, 237 SyntacticMatches, 4 SemanticMatches, 133 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 3148 ImplicationChecksByTransitivity, 4.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=412occurred in iteration=9, InterpolantAutomatonStates: 101, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.4s AutomataMinimizationTime, 10 MinimizatonAttempts, 287 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 3.1s InterpolantComputationTime, 483 NumberOfCodeBlocks, 483 NumberOfCodeBlocksAsserted, 12 NumberOfCheckSat, 521 ConstructedInterpolants, 0 QuantifiedInterpolants, 1639 SizeOfPredicates, 7 NumberOfNonLiveVariables, 507 ConjunctsInSsa, 27 ConjunctsInUnsatCore, 13 InterpolantComputations, 9 PerfectInterpolantSequences, 135/192 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 720]: Loop Invariant Derived loop invariant: ((((((2 == waterLevel) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((waterLevel <= 1) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1))) - InvariantResult [Line: 719]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 575]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 782]: Location Invariant Derived location invariant: ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) && ((((\old(pumpRunning) == 1) && (\old(waterLevel) == waterLevel)) && (pumpRunning == 1)) || (\old(pumpRunning) == 0))) && (((1 == systemActive) && (\old(waterLevel) <= 1)) || ((1 == systemActive) && (\old(waterLevel) == 2)))) - ProcedureContractResult [Line: 806]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) || (((waterLevel <= 1) && (1 == systemActive)) && (pumpRunning == 1))) Ensures: (((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) || (((waterLevel <= 1) && (1 == systemActive)) && (pumpRunning == 1))) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 486]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: (((((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: ((((((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 782]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: ((((((((\old(pumpRunning) == 0) || (\old(waterLevel) != 2)) || (waterLevel == 1)) && ((((((1 == systemActive) && (\old(pumpRunning) == 1)) && (\old(waterLevel) == 2)) || ((\old(pumpRunning) == 0) && (\old(waterLevel) <= 1))) || ((\old(pumpRunning) == 0) && (\old(waterLevel) == 2))) || (((1 == systemActive) && (\old(pumpRunning) == 1)) && (\old(waterLevel) <= 1)))) && (((\old(pumpRunning) != 0) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || (\old(waterLevel) != 2))) && ((((((\old(waterLevel) == ((long long) waterLevel + 1)) && (1 <= \old(waterLevel))) || ((\old(waterLevel) <= 0) && (\old(waterLevel) == waterLevel))) && (pumpRunning == 1)) || (\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (waterLevel <= 1)))) && (((1 < \old(waterLevel)) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == waterLevel))) || (\old(pumpRunning) != 0))) && ((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 565]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 498]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: (((((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) || (((waterLevel <= 1) && (1 == systemActive)) && (pumpRunning == 1))) Ensures: ((((((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) || (((waterLevel <= 1) && (1 == systemActive)) && (pumpRunning == 1))) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 814]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Ensures: ((((((((waterLevel <= 1) && (1 == systemActive)) && (\old(pumpRunning) == 1)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2))) && ((\old(pumpRunning) != 1) || (pumpRunning == 1))) && ((waterLevel < 2) || (pumpRunning == 1))) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || (1 < waterLevel))) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 474]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || (((waterLevel <= 1) && (1 == systemActive)) && (pumpRunning == 1))) Ensures: ((((waterLevel <= 2) && (((1 == systemActive) && (pumpRunning == 1)) || ((pumpRunning == 0) && (1 == systemActive)))) && ((((long long) \old(waterLevel) + 1) == waterLevel) || ((2 <= \old(waterLevel)) && (\old(waterLevel) == waterLevel)))) && (((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) RESULT: Ultimate proved your program to be correct! [2024-11-02 12:25:02,068 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_198725da-4b75-48e7-9c8d-d918c456f028/bin/utaipan-verify-DbMuA5NWw2/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE