./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec1_product47.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a0165632 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec1_product47.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash c4da108453cefa034e9e2f20ae1a945f7f6bf5ea54205b9ec625406680c7ecea --- Real Ultimate output --- This is Ultimate 0.2.5-dev-a016563 [2024-11-09 07:16:18,417 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-09 07:16:18,526 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-09 07:16:18,534 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-09 07:16:18,534 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-09 07:16:18,581 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-09 07:16:18,584 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-09 07:16:18,584 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-09 07:16:18,585 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-09 07:16:18,585 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-09 07:16:18,586 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-09 07:16:18,586 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-09 07:16:18,586 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-09 07:16:18,587 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-09 07:16:18,587 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-09 07:16:18,587 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-09 07:16:18,591 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-09 07:16:18,592 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-09 07:16:18,592 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-09 07:16:18,592 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-09 07:16:18,597 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-09 07:16:18,597 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-09 07:16:18,598 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-09 07:16:18,598 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-09 07:16:18,598 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-09 07:16:18,599 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-09 07:16:18,599 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-09 07:16:18,599 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-09 07:16:18,599 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-09 07:16:18,600 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-09 07:16:18,600 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-09 07:16:18,600 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-09 07:16:18,600 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-09 07:16:18,600 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-09 07:16:18,603 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-09 07:16:18,603 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-09 07:16:18,604 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-09 07:16:18,604 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-09 07:16:18,604 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 07:16:18,604 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-09 07:16:18,605 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-09 07:16:18,605 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-09 07:16:18,605 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-09 07:16:18,605 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-09 07:16:18,606 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-09 07:16:18,606 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-09 07:16:18,606 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-09 07:16:18,607 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> c4da108453cefa034e9e2f20ae1a945f7f6bf5ea54205b9ec625406680c7ecea [2024-11-09 07:16:18,937 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-09 07:16:19,005 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-09 07:16:19,008 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-09 07:16:19,014 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-09 07:16:19,018 INFO L274 PluginConnector]: CDTParser initialized [2024-11-09 07:16:19,020 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/../../sv-benchmarks/c/product-lines/minepump_spec1_product47.cil.c Unable to find full path for "g++" [2024-11-09 07:16:21,046 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-09 07:16:21,351 INFO L384 CDTParser]: Found 1 translation units. [2024-11-09 07:16:21,351 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/sv-benchmarks/c/product-lines/minepump_spec1_product47.cil.c [2024-11-09 07:16:21,367 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/data/5273b0cb8/f97cae497bff4f9d9e0f002662e8c870/FLAGe65e31a07 [2024-11-09 07:16:21,624 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/data/5273b0cb8/f97cae497bff4f9d9e0f002662e8c870 [2024-11-09 07:16:21,627 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-09 07:16:21,630 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-09 07:16:21,632 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-09 07:16:21,632 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-09 07:16:21,645 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-09 07:16:21,646 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 07:16:21" (1/1) ... [2024-11-09 07:16:21,648 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@64be3558 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:21, skipping insertion in model container [2024-11-09 07:16:21,649 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 07:16:21" (1/1) ... [2024-11-09 07:16:21,747 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-09 07:16:22,022 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/sv-benchmarks/c/product-lines/minepump_spec1_product47.cil.c[2044,2057] [2024-11-09 07:16:22,233 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 07:16:22,248 INFO L200 MainTranslator]: Completed pre-run [2024-11-09 07:16:22,259 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [49] [2024-11-09 07:16:22,261 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [78] [2024-11-09 07:16:22,262 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [87] [2024-11-09 07:16:22,262 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [125] [2024-11-09 07:16:22,263 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [225] [2024-11-09 07:16:22,263 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [440] [2024-11-09 07:16:22,263 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [508] [2024-11-09 07:16:22,263 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [874] [2024-11-09 07:16:22,274 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/sv-benchmarks/c/product-lines/minepump_spec1_product47.cil.c[2044,2057] [2024-11-09 07:16:22,377 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 07:16:22,400 INFO L204 MainTranslator]: Completed translation [2024-11-09 07:16:22,401 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22 WrapperNode [2024-11-09 07:16:22,401 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-09 07:16:22,402 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-09 07:16:22,403 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-09 07:16:22,403 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-09 07:16:22,410 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,433 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,486 INFO L138 Inliner]: procedures = 55, calls = 101, calls flagged for inlining = 21, calls inlined = 18, statements flattened = 187 [2024-11-09 07:16:22,490 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-09 07:16:22,491 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-09 07:16:22,491 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-09 07:16:22,491 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-09 07:16:22,503 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,504 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,509 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,511 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,518 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,523 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,525 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,526 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,529 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-09 07:16:22,530 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-09 07:16:22,530 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-09 07:16:22,530 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-09 07:16:22,531 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (1/1) ... [2024-11-09 07:16:22,538 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 07:16:22,561 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 07:16:22,578 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-09 07:16:22,582 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-09 07:16:22,613 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-09 07:16:22,613 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-09 07:16:22,613 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-09 07:16:22,613 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-09 07:16:22,614 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-09 07:16:22,614 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-09 07:16:22,614 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-09 07:16:22,614 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-09 07:16:22,614 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-09 07:16:22,615 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-09 07:16:22,615 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-09 07:16:22,615 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-09 07:16:22,615 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-09 07:16:22,616 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-09 07:16:22,616 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-09 07:16:22,616 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-09 07:16:22,616 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-09 07:16:22,616 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-09 07:16:22,617 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-09 07:16:22,617 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-09 07:16:22,617 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-09 07:16:22,617 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-09 07:16:22,730 INFO L238 CfgBuilder]: Building ICFG [2024-11-09 07:16:22,733 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-09 07:16:23,080 INFO L? ?]: Removed 41 outVars from TransFormulas that were not future-live. [2024-11-09 07:16:23,080 INFO L287 CfgBuilder]: Performing block encoding [2024-11-09 07:16:23,217 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-09 07:16:23,217 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-09 07:16:23,217 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 07:16:23 BoogieIcfgContainer [2024-11-09 07:16:23,218 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-09 07:16:23,220 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-09 07:16:23,220 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-09 07:16:23,224 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-09 07:16:23,224 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 09.11 07:16:21" (1/3) ... [2024-11-09 07:16:23,225 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3579152d and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 07:16:23, skipping insertion in model container [2024-11-09 07:16:23,225 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 07:16:22" (2/3) ... [2024-11-09 07:16:23,225 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3579152d and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 07:16:23, skipping insertion in model container [2024-11-09 07:16:23,226 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 07:16:23" (3/3) ... [2024-11-09 07:16:23,228 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec1_product47.cil.c [2024-11-09 07:16:23,252 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-09 07:16:23,253 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-09 07:16:23,319 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-09 07:16:23,326 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@594a4dbb, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-09 07:16:23,327 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-09 07:16:23,332 INFO L276 IsEmpty]: Start isEmpty. Operand has 71 states, 44 states have (on average 1.4090909090909092) internal successors, (62), 53 states have internal predecessors, (62), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 13 states have call predecessors, (16), 16 states have call successors, (16) [2024-11-09 07:16:23,341 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2024-11-09 07:16:23,342 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:23,343 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:23,343 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:23,350 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:23,351 INFO L85 PathProgramCache]: Analyzing trace with hash -1348389544, now seen corresponding path program 1 times [2024-11-09 07:16:23,364 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:23,364 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1608855803] [2024-11-09 07:16:23,365 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:23,366 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:23,481 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:23,546 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 07:16:23,547 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:23,547 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1608855803] [2024-11-09 07:16:23,548 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1608855803] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:23,548 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:23,548 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-09 07:16:23,550 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [321654228] [2024-11-09 07:16:23,551 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:23,556 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-09 07:16:23,556 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:23,582 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-09 07:16:23,583 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 07:16:23,585 INFO L87 Difference]: Start difference. First operand has 71 states, 44 states have (on average 1.4090909090909092) internal successors, (62), 53 states have internal predecessors, (62), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 13 states have call predecessors, (16), 16 states have call successors, (16) Second operand has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 07:16:23,691 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:23,691 INFO L93 Difference]: Finished difference Result 140 states and 189 transitions. [2024-11-09 07:16:23,693 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-09 07:16:23,695 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 16 [2024-11-09 07:16:23,695 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:23,703 INFO L225 Difference]: With dead ends: 140 [2024-11-09 07:16:23,703 INFO L226 Difference]: Without dead ends: 66 [2024-11-09 07:16:23,707 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 07:16:23,711 INFO L432 NwaCegarLoop]: 74 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 74 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:23,712 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 74 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 07:16:23,735 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 66 states. [2024-11-09 07:16:23,763 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 66 to 66. [2024-11-09 07:16:23,765 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 66 states, 41 states have (on average 1.3170731707317074) internal successors, (54), 49 states have internal predecessors, (54), 16 states have call successors, (16), 9 states have call predecessors, (16), 8 states have return successors, (15), 12 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-09 07:16:23,767 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 66 states to 66 states and 85 transitions. [2024-11-09 07:16:23,770 INFO L78 Accepts]: Start accepts. Automaton has 66 states and 85 transitions. Word has length 16 [2024-11-09 07:16:23,770 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:23,774 INFO L471 AbstractCegarLoop]: Abstraction has 66 states and 85 transitions. [2024-11-09 07:16:23,774 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 07:16:23,775 INFO L276 IsEmpty]: Start isEmpty. Operand 66 states and 85 transitions. [2024-11-09 07:16:23,776 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-11-09 07:16:23,777 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:23,777 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:23,777 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-09 07:16:23,778 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:23,779 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:23,779 INFO L85 PathProgramCache]: Analyzing trace with hash -34444547, now seen corresponding path program 1 times [2024-11-09 07:16:23,779 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:23,780 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1470676902] [2024-11-09 07:16:23,780 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:23,780 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:23,801 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:23,961 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 07:16:23,961 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:23,962 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1470676902] [2024-11-09 07:16:23,962 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1470676902] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:23,963 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:23,964 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 07:16:23,964 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2052859931] [2024-11-09 07:16:23,964 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:23,967 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 07:16:23,968 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:23,969 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 07:16:23,971 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 07:16:23,972 INFO L87 Difference]: Start difference. First operand 66 states and 85 transitions. Second operand has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 07:16:24,039 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:24,040 INFO L93 Difference]: Finished difference Result 104 states and 132 transitions. [2024-11-09 07:16:24,041 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 07:16:24,042 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-11-09 07:16:24,042 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:24,043 INFO L225 Difference]: With dead ends: 104 [2024-11-09 07:16:24,044 INFO L226 Difference]: Without dead ends: 58 [2024-11-09 07:16:24,044 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 07:16:24,046 INFO L432 NwaCegarLoop]: 60 mSDtfsCounter, 14 mSDsluCounter, 43 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 103 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:24,047 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 103 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 07:16:24,048 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 58 states. [2024-11-09 07:16:24,056 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 58 to 58. [2024-11-09 07:16:24,057 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 58 states, 36 states have (on average 1.3333333333333333) internal successors, (48), 44 states have internal predecessors, (48), 13 states have call successors, (13), 8 states have call predecessors, (13), 8 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-09 07:16:24,058 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 58 states to 58 states and 74 transitions. [2024-11-09 07:16:24,059 INFO L78 Accepts]: Start accepts. Automaton has 58 states and 74 transitions. Word has length 17 [2024-11-09 07:16:24,059 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:24,059 INFO L471 AbstractCegarLoop]: Abstraction has 58 states and 74 transitions. [2024-11-09 07:16:24,060 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 07:16:24,060 INFO L276 IsEmpty]: Start isEmpty. Operand 58 states and 74 transitions. [2024-11-09 07:16:24,061 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-11-09 07:16:24,061 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:24,061 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:24,062 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-09 07:16:24,062 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:24,063 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:24,063 INFO L85 PathProgramCache]: Analyzing trace with hash 383278694, now seen corresponding path program 1 times [2024-11-09 07:16:24,063 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:24,063 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [428629477] [2024-11-09 07:16:24,064 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:24,064 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:24,084 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:24,202 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 07:16:24,203 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:24,203 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [428629477] [2024-11-09 07:16:24,203 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [428629477] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:24,203 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:24,204 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 07:16:24,204 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1102169877] [2024-11-09 07:16:24,204 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:24,205 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 07:16:24,205 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:24,206 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 07:16:24,206 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 07:16:24,219 INFO L87 Difference]: Start difference. First operand 58 states and 74 transitions. Second operand has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 07:16:24,347 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:24,348 INFO L93 Difference]: Finished difference Result 170 states and 219 transitions. [2024-11-09 07:16:24,348 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 07:16:24,349 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2024-11-09 07:16:24,349 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:24,351 INFO L225 Difference]: With dead ends: 170 [2024-11-09 07:16:24,351 INFO L226 Difference]: Without dead ends: 114 [2024-11-09 07:16:24,352 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 07:16:24,354 INFO L432 NwaCegarLoop]: 69 mSDtfsCounter, 61 mSDsluCounter, 58 mSDsCounter, 0 mSdLazyCounter, 32 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 61 SdHoareTripleChecker+Valid, 127 SdHoareTripleChecker+Invalid, 32 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 32 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:24,355 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [61 Valid, 127 Invalid, 32 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 32 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 07:16:24,356 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 114 states. [2024-11-09 07:16:24,379 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 114 to 111. [2024-11-09 07:16:24,380 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 111 states, 68 states have (on average 1.338235294117647) internal successors, (91), 83 states have internal predecessors, (91), 26 states have call successors, (26), 16 states have call predecessors, (26), 16 states have return successors, (26), 19 states have call predecessors, (26), 26 states have call successors, (26) [2024-11-09 07:16:24,383 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 111 states to 111 states and 143 transitions. [2024-11-09 07:16:24,387 INFO L78 Accepts]: Start accepts. Automaton has 111 states and 143 transitions. Word has length 20 [2024-11-09 07:16:24,387 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:24,388 INFO L471 AbstractCegarLoop]: Abstraction has 111 states and 143 transitions. [2024-11-09 07:16:24,388 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 07:16:24,388 INFO L276 IsEmpty]: Start isEmpty. Operand 111 states and 143 transitions. [2024-11-09 07:16:24,390 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-11-09 07:16:24,393 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:24,393 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:24,393 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-09 07:16:24,394 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:24,394 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:24,395 INFO L85 PathProgramCache]: Analyzing trace with hash -390382857, now seen corresponding path program 1 times [2024-11-09 07:16:24,395 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:24,395 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1343072996] [2024-11-09 07:16:24,396 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:24,397 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:24,431 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:24,607 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 07:16:24,607 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:24,607 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1343072996] [2024-11-09 07:16:24,608 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1343072996] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:24,608 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:24,608 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-09 07:16:24,609 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [792144959] [2024-11-09 07:16:24,609 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:24,610 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 07:16:24,611 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:24,611 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 07:16:24,612 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 07:16:24,612 INFO L87 Difference]: Start difference. First operand 111 states and 143 transitions. Second operand has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 07:16:24,781 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:24,782 INFO L93 Difference]: Finished difference Result 298 states and 391 transitions. [2024-11-09 07:16:24,782 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 07:16:24,783 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2024-11-09 07:16:24,783 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:24,786 INFO L225 Difference]: With dead ends: 298 [2024-11-09 07:16:24,786 INFO L226 Difference]: Without dead ends: 189 [2024-11-09 07:16:24,788 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-09 07:16:24,789 INFO L432 NwaCegarLoop]: 58 mSDtfsCounter, 40 mSDsluCounter, 102 mSDsCounter, 0 mSdLazyCounter, 48 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 40 SdHoareTripleChecker+Valid, 160 SdHoareTripleChecker+Invalid, 55 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 48 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:24,790 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [40 Valid, 160 Invalid, 55 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 48 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 07:16:24,791 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 189 states. [2024-11-09 07:16:24,833 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 189 to 188. [2024-11-09 07:16:24,836 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 188 states, 121 states have (on average 1.28099173553719) internal successors, (155), 136 states have internal predecessors, (155), 36 states have call successors, (36), 30 states have call predecessors, (36), 30 states have return successors, (44), 33 states have call predecessors, (44), 36 states have call successors, (44) [2024-11-09 07:16:24,839 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 188 states to 188 states and 235 transitions. [2024-11-09 07:16:24,840 INFO L78 Accepts]: Start accepts. Automaton has 188 states and 235 transitions. Word has length 23 [2024-11-09 07:16:24,840 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:24,840 INFO L471 AbstractCegarLoop]: Abstraction has 188 states and 235 transitions. [2024-11-09 07:16:24,841 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 07:16:24,841 INFO L276 IsEmpty]: Start isEmpty. Operand 188 states and 235 transitions. [2024-11-09 07:16:24,842 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 37 [2024-11-09 07:16:24,843 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:24,843 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:24,843 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-09 07:16:24,844 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:24,844 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:24,844 INFO L85 PathProgramCache]: Analyzing trace with hash -62092169, now seen corresponding path program 1 times [2024-11-09 07:16:24,845 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:24,845 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [629137769] [2024-11-09 07:16:24,845 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:24,845 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:24,863 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:25,218 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 07:16:25,222 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:25,222 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [629137769] [2024-11-09 07:16:25,222 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [629137769] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:25,222 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:25,223 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-09 07:16:25,223 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [138633625] [2024-11-09 07:16:25,223 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:25,223 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-09 07:16:25,223 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:25,224 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-09 07:16:25,229 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-09 07:16:25,229 INFO L87 Difference]: Start difference. First operand 188 states and 235 transitions. Second operand has 7 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 5 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-09 07:16:25,620 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:25,622 INFO L93 Difference]: Finished difference Result 497 states and 627 transitions. [2024-11-09 07:16:25,623 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 07:16:25,624 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 5 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 36 [2024-11-09 07:16:25,624 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:25,630 INFO L225 Difference]: With dead ends: 497 [2024-11-09 07:16:25,630 INFO L226 Difference]: Without dead ends: 311 [2024-11-09 07:16:25,631 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2024-11-09 07:16:25,635 INFO L432 NwaCegarLoop]: 92 mSDtfsCounter, 80 mSDsluCounter, 212 mSDsCounter, 0 mSdLazyCounter, 181 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 80 SdHoareTripleChecker+Valid, 304 SdHoareTripleChecker+Invalid, 184 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 181 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:25,636 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [80 Valid, 304 Invalid, 184 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 181 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-09 07:16:25,641 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 311 states. [2024-11-09 07:16:25,705 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 311 to 276. [2024-11-09 07:16:25,706 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 276 states, 183 states have (on average 1.284153005464481) internal successors, (235), 200 states have internal predecessors, (235), 46 states have call successors, (46), 42 states have call predecessors, (46), 46 states have return successors, (58), 46 states have call predecessors, (58), 46 states have call successors, (58) [2024-11-09 07:16:25,708 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 276 states to 276 states and 339 transitions. [2024-11-09 07:16:25,709 INFO L78 Accepts]: Start accepts. Automaton has 276 states and 339 transitions. Word has length 36 [2024-11-09 07:16:25,709 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:25,709 INFO L471 AbstractCegarLoop]: Abstraction has 276 states and 339 transitions. [2024-11-09 07:16:25,710 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 5 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-09 07:16:25,710 INFO L276 IsEmpty]: Start isEmpty. Operand 276 states and 339 transitions. [2024-11-09 07:16:25,711 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2024-11-09 07:16:25,712 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:25,712 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:25,712 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-09 07:16:25,713 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:25,713 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:25,713 INFO L85 PathProgramCache]: Analyzing trace with hash -1994511523, now seen corresponding path program 1 times [2024-11-09 07:16:25,714 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:25,714 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1852618453] [2024-11-09 07:16:25,714 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:25,714 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:25,741 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:25,866 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-09 07:16:25,867 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:25,867 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1852618453] [2024-11-09 07:16:25,867 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1852618453] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:25,867 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:25,867 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 07:16:25,868 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1671048139] [2024-11-09 07:16:25,868 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:25,868 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 07:16:25,868 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:25,869 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 07:16:25,869 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-09 07:16:25,869 INFO L87 Difference]: Start difference. First operand 276 states and 339 transitions. Second operand has 6 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-09 07:16:26,125 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:26,127 INFO L93 Difference]: Finished difference Result 808 states and 1012 transitions. [2024-11-09 07:16:26,127 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 07:16:26,128 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) Word has length 39 [2024-11-09 07:16:26,128 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:26,137 INFO L225 Difference]: With dead ends: 808 [2024-11-09 07:16:26,137 INFO L226 Difference]: Without dead ends: 534 [2024-11-09 07:16:26,142 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-09 07:16:26,143 INFO L432 NwaCegarLoop]: 58 mSDtfsCounter, 49 mSDsluCounter, 204 mSDsCounter, 0 mSdLazyCounter, 105 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 51 SdHoareTripleChecker+Valid, 262 SdHoareTripleChecker+Invalid, 105 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 105 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:26,148 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [51 Valid, 262 Invalid, 105 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 105 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 07:16:26,150 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 534 states. [2024-11-09 07:16:26,231 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 534 to 520. [2024-11-09 07:16:26,232 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 520 states, 349 states have (on average 1.2664756446991403) internal successors, (442), 375 states have internal predecessors, (442), 85 states have call successors, (85), 77 states have call predecessors, (85), 85 states have return successors, (109), 85 states have call predecessors, (109), 85 states have call successors, (109) [2024-11-09 07:16:26,239 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 520 states to 520 states and 636 transitions. [2024-11-09 07:16:26,240 INFO L78 Accepts]: Start accepts. Automaton has 520 states and 636 transitions. Word has length 39 [2024-11-09 07:16:26,240 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:26,241 INFO L471 AbstractCegarLoop]: Abstraction has 520 states and 636 transitions. [2024-11-09 07:16:26,241 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-09 07:16:26,241 INFO L276 IsEmpty]: Start isEmpty. Operand 520 states and 636 transitions. [2024-11-09 07:16:26,249 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 43 [2024-11-09 07:16:26,249 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:26,249 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:26,249 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-09 07:16:26,250 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:26,250 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:26,250 INFO L85 PathProgramCache]: Analyzing trace with hash -229667967, now seen corresponding path program 1 times [2024-11-09 07:16:26,250 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:26,250 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [368880361] [2024-11-09 07:16:26,251 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:26,251 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:26,272 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:26,639 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 07:16:26,639 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:26,639 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [368880361] [2024-11-09 07:16:26,642 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [368880361] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:26,642 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:26,642 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [13] imperfect sequences [] total 13 [2024-11-09 07:16:26,642 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1016764312] [2024-11-09 07:16:26,642 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:26,643 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2024-11-09 07:16:26,643 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:26,643 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2024-11-09 07:16:26,644 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=29, Invalid=127, Unknown=0, NotChecked=0, Total=156 [2024-11-09 07:16:26,644 INFO L87 Difference]: Start difference. First operand 520 states and 636 transitions. Second operand has 13 states, 11 states have (on average 2.5454545454545454) internal successors, (28), 10 states have internal predecessors, (28), 4 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) [2024-11-09 07:16:27,753 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:27,754 INFO L93 Difference]: Finished difference Result 1046 states and 1362 transitions. [2024-11-09 07:16:27,754 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2024-11-09 07:16:27,755 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 11 states have (on average 2.5454545454545454) internal successors, (28), 10 states have internal predecessors, (28), 4 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) Word has length 42 [2024-11-09 07:16:27,755 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:27,761 INFO L225 Difference]: With dead ends: 1046 [2024-11-09 07:16:27,761 INFO L226 Difference]: Without dead ends: 806 [2024-11-09 07:16:27,763 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 38 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 32 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 235 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=249, Invalid=873, Unknown=0, NotChecked=0, Total=1122 [2024-11-09 07:16:27,764 INFO L432 NwaCegarLoop]: 38 mSDtfsCounter, 387 mSDsluCounter, 261 mSDsCounter, 0 mSdLazyCounter, 405 mSolverCounterSat, 268 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 393 SdHoareTripleChecker+Valid, 299 SdHoareTripleChecker+Invalid, 673 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 268 IncrementalHoareTripleChecker+Valid, 405 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:27,765 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [393 Valid, 299 Invalid, 673 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [268 Valid, 405 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-09 07:16:27,766 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 806 states. [2024-11-09 07:16:27,883 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 806 to 687. [2024-11-09 07:16:27,885 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 687 states, 463 states have (on average 1.267818574514039) internal successors, (587), 496 states have internal predecessors, (587), 113 states have call successors, (113), 95 states have call predecessors, (113), 110 states have return successors, (158), 115 states have call predecessors, (158), 113 states have call successors, (158) [2024-11-09 07:16:27,890 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 687 states to 687 states and 858 transitions. [2024-11-09 07:16:27,892 INFO L78 Accepts]: Start accepts. Automaton has 687 states and 858 transitions. Word has length 42 [2024-11-09 07:16:27,893 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:27,894 INFO L471 AbstractCegarLoop]: Abstraction has 687 states and 858 transitions. [2024-11-09 07:16:27,894 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 11 states have (on average 2.5454545454545454) internal successors, (28), 10 states have internal predecessors, (28), 4 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (6), 5 states have call predecessors, (6), 4 states have call successors, (6) [2024-11-09 07:16:27,894 INFO L276 IsEmpty]: Start isEmpty. Operand 687 states and 858 transitions. [2024-11-09 07:16:27,898 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2024-11-09 07:16:27,899 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:27,899 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:27,899 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-09 07:16:27,899 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:27,900 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:27,900 INFO L85 PathProgramCache]: Analyzing trace with hash 123944143, now seen corresponding path program 1 times [2024-11-09 07:16:27,900 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:27,900 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [892210094] [2024-11-09 07:16:27,900 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:27,900 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:27,923 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:27,964 INFO L134 CoverageAnalysis]: Checked inductivity of 20 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-09 07:16:27,965 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:27,965 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [892210094] [2024-11-09 07:16:27,965 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [892210094] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:27,965 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:27,965 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-09 07:16:27,965 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [57963821] [2024-11-09 07:16:27,966 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:27,966 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 07:16:27,966 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:27,967 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 07:16:27,967 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 07:16:27,967 INFO L87 Difference]: Start difference. First operand 687 states and 858 transitions. Second operand has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) [2024-11-09 07:16:28,180 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:28,181 INFO L93 Difference]: Finished difference Result 753 states and 941 transitions. [2024-11-09 07:16:28,181 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 07:16:28,182 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) Word has length 60 [2024-11-09 07:16:28,182 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:28,185 INFO L225 Difference]: With dead ends: 753 [2024-11-09 07:16:28,185 INFO L226 Difference]: Without dead ends: 351 [2024-11-09 07:16:28,187 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 07:16:28,188 INFO L432 NwaCegarLoop]: 82 mSDtfsCounter, 94 mSDsluCounter, 48 mSDsCounter, 0 mSdLazyCounter, 82 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 94 SdHoareTripleChecker+Valid, 130 SdHoareTripleChecker+Invalid, 84 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 82 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:28,190 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [94 Valid, 130 Invalid, 84 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 82 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 07:16:28,192 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 351 states. [2024-11-09 07:16:28,250 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 351 to 329. [2024-11-09 07:16:28,251 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 329 states, 219 states have (on average 1.182648401826484) internal successors, (259), 233 states have internal predecessors, (259), 54 states have call successors, (54), 48 states have call predecessors, (54), 55 states have return successors, (73), 56 states have call predecessors, (73), 54 states have call successors, (73) [2024-11-09 07:16:28,253 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 329 states to 329 states and 386 transitions. [2024-11-09 07:16:28,255 INFO L78 Accepts]: Start accepts. Automaton has 329 states and 386 transitions. Word has length 60 [2024-11-09 07:16:28,256 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:28,260 INFO L471 AbstractCegarLoop]: Abstraction has 329 states and 386 transitions. [2024-11-09 07:16:28,261 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) [2024-11-09 07:16:28,261 INFO L276 IsEmpty]: Start isEmpty. Operand 329 states and 386 transitions. [2024-11-09 07:16:28,262 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 80 [2024-11-09 07:16:28,262 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 07:16:28,263 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:28,263 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-09 07:16:28,263 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 07:16:28,263 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 07:16:28,267 INFO L85 PathProgramCache]: Analyzing trace with hash 1469543151, now seen corresponding path program 1 times [2024-11-09 07:16:28,267 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 07:16:28,267 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [105065132] [2024-11-09 07:16:28,268 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 07:16:28,268 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 07:16:28,288 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 07:16:28,515 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 11 proven. 0 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-09 07:16:28,516 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 07:16:28,516 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [105065132] [2024-11-09 07:16:28,516 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [105065132] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 07:16:28,517 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 07:16:28,517 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2024-11-09 07:16:28,517 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [243280087] [2024-11-09 07:16:28,517 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 07:16:28,518 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-11-09 07:16:28,518 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 07:16:28,518 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-11-09 07:16:28,519 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=73, Unknown=0, NotChecked=0, Total=90 [2024-11-09 07:16:28,519 INFO L87 Difference]: Start difference. First operand 329 states and 386 transitions. Second operand has 10 states, 8 states have (on average 5.25) internal successors, (42), 7 states have internal predecessors, (42), 2 states have call successors, (11), 1 states have call predecessors, (11), 3 states have return successors, (12), 5 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-09 07:16:28,903 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 07:16:28,903 INFO L93 Difference]: Finished difference Result 677 states and 821 transitions. [2024-11-09 07:16:28,904 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-11-09 07:16:28,904 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 8 states have (on average 5.25) internal successors, (42), 7 states have internal predecessors, (42), 2 states have call successors, (11), 1 states have call predecessors, (11), 3 states have return successors, (12), 5 states have call predecessors, (12), 2 states have call successors, (12) Word has length 79 [2024-11-09 07:16:28,905 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 07:16:28,906 INFO L225 Difference]: With dead ends: 677 [2024-11-09 07:16:28,906 INFO L226 Difference]: Without dead ends: 0 [2024-11-09 07:16:28,908 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 15 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 21 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=45, Invalid=227, Unknown=0, NotChecked=0, Total=272 [2024-11-09 07:16:28,909 INFO L432 NwaCegarLoop]: 47 mSDtfsCounter, 49 mSDsluCounter, 257 mSDsCounter, 0 mSdLazyCounter, 268 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 53 SdHoareTripleChecker+Valid, 304 SdHoareTripleChecker+Invalid, 270 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 268 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 07:16:28,909 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [53 Valid, 304 Invalid, 270 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 268 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 07:16:28,910 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-09 07:16:28,910 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-09 07:16:28,910 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 07:16:28,910 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-09 07:16:28,911 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 79 [2024-11-09 07:16:28,911 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 07:16:28,912 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-09 07:16:28,912 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 8 states have (on average 5.25) internal successors, (42), 7 states have internal predecessors, (42), 2 states have call successors, (11), 1 states have call predecessors, (11), 3 states have return successors, (12), 5 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-09 07:16:28,912 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-09 07:16:28,912 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-09 07:16:28,915 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-09 07:16:28,916 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-09 07:16:28,918 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 07:16:28,921 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-09 07:16:33,248 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-09 07:16:33,308 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (or (= 1 ~systemActive~0) (and (not (= ~waterLevel~0 1)) (not (= 0 ~systemActive~0))))) Eliminated clause: (or (= 1 ~systemActive~0) (and (not (= ~waterLevel~0 1)) (not (= 0 ~systemActive~0)))) [2024-11-09 07:16:33,333 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse0 (= 1 ~systemActive~0))) (and (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 0) (not .cse0)) (or .cse0 (and (= ~pumpRunning~0 0) (= 0 ~systemActive~0))))) Eliminated clause: (or (= 1 ~systemActive~0) (and (= ~pumpRunning~0 0) (= 0 ~systemActive~0))) [2024-11-09 07:16:33,344 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse0 (= 0 ~systemActive~0))) (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (or (= ~pumpRunning~0 0) (not .cse0)) (or (= 1 ~systemActive~0) .cse0) (or (not (= |old(~pumpRunning~0)| 0)) (not (= |old(~waterLevel~0)| 1)) .cse0 (= ~waterLevel~0 1)))) Eliminated clause: (let ((.cse0 (= 0 ~systemActive~0))) (and (or (= ~pumpRunning~0 0) (not .cse0)) (or (= 1 ~systemActive~0) .cse0))) [2024-11-09 07:16:33,380 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 1 ~systemActive~0) (or (= ~methaneLevelCritical~0 0) (= |old(~pumpRunning~0)| 0))) Eliminated clause: (and (= 1 ~systemActive~0) (or (= ~pumpRunning~0 0) (= ~methaneLevelCritical~0 0))) [2024-11-09 07:16:33,388 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 09.11 07:16:33 BoogieIcfgContainer [2024-11-09 07:16:33,388 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-09 07:16:33,389 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-09 07:16:33,389 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-09 07:16:33,389 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-09 07:16:33,390 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 07:16:23" (3/4) ... [2024-11-09 07:16:33,393 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-09 07:16:33,397 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-09 07:16:33,397 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-09 07:16:33,397 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-09 07:16:33,397 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-09 07:16:33,398 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-09 07:16:33,398 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-09 07:16:33,398 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-09 07:16:33,399 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-09 07:16:33,399 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-09 07:16:33,413 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 40 nodes and edges [2024-11-09 07:16:33,413 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 11 nodes and edges [2024-11-09 07:16:33,414 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-09 07:16:33,415 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 07:16:33,415 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 07:16:33,455 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == \old(pumpRunning)) && ((pumpRunning == 0) || (0 != systemActive))) && ((1 == systemActive) || (0 == systemActive))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || (0 == systemActive)) || (waterLevel == 1))) [2024-11-09 07:16:33,515 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == \old(pumpRunning)) && ((pumpRunning == 0) || (0 != systemActive))) && ((1 == systemActive) || (0 == systemActive))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || (0 == systemActive)) || (waterLevel == 1))) [2024-11-09 07:16:33,589 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/witness.graphml [2024-11-09 07:16:33,590 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/witness.yml [2024-11-09 07:16:33,590 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-09 07:16:33,591 INFO L158 Benchmark]: Toolchain (without parser) took 11961.30ms. Allocated memory was 146.8MB in the beginning and 211.8MB in the end (delta: 65.0MB). Free memory was 117.2MB in the beginning and 152.8MB in the end (delta: -35.6MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. [2024-11-09 07:16:33,591 INFO L158 Benchmark]: CDTParser took 0.31ms. Allocated memory is still 111.1MB. Free memory is still 85.8MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-09 07:16:33,591 INFO L158 Benchmark]: CACSL2BoogieTranslator took 769.71ms. Allocated memory is still 146.8MB. Free memory was 116.6MB in the beginning and 95.4MB in the end (delta: 21.2MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-09 07:16:33,592 INFO L158 Benchmark]: Boogie Procedure Inliner took 87.70ms. Allocated memory is still 146.8MB. Free memory was 95.4MB in the beginning and 93.3MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 07:16:33,592 INFO L158 Benchmark]: Boogie Preprocessor took 38.30ms. Allocated memory is still 146.8MB. Free memory was 93.3MB in the beginning and 91.8MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 07:16:33,593 INFO L158 Benchmark]: RCFGBuilder took 688.10ms. Allocated memory is still 146.8MB. Free memory was 91.8MB in the beginning and 97.2MB in the end (delta: -5.4MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2024-11-09 07:16:33,593 INFO L158 Benchmark]: TraceAbstraction took 10168.42ms. Allocated memory was 146.8MB in the beginning and 211.8MB in the end (delta: 65.0MB). Free memory was 97.2MB in the beginning and 160.2MB in the end (delta: -63.0MB). Peak memory consumption was 109.3MB. Max. memory is 16.1GB. [2024-11-09 07:16:33,594 INFO L158 Benchmark]: Witness Printer took 201.12ms. Allocated memory is still 211.8MB. Free memory was 160.2MB in the beginning and 152.8MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-09 07:16:33,596 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.31ms. Allocated memory is still 111.1MB. Free memory is still 85.8MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 769.71ms. Allocated memory is still 146.8MB. Free memory was 116.6MB in the beginning and 95.4MB in the end (delta: 21.2MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 87.70ms. Allocated memory is still 146.8MB. Free memory was 95.4MB in the beginning and 93.3MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 38.30ms. Allocated memory is still 146.8MB. Free memory was 93.3MB in the beginning and 91.8MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 688.10ms. Allocated memory is still 146.8MB. Free memory was 91.8MB in the beginning and 97.2MB in the end (delta: -5.4MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * TraceAbstraction took 10168.42ms. Allocated memory was 146.8MB in the beginning and 211.8MB in the end (delta: 65.0MB). Free memory was 97.2MB in the beginning and 160.2MB in the end (delta: -63.0MB). Peak memory consumption was 109.3MB. Max. memory is 16.1GB. * Witness Printer took 201.12ms. Allocated memory is still 211.8MB. Free memory was 160.2MB in the beginning and 152.8MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [49] - GenericResultAtLocation [Line: 78]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [78] - GenericResultAtLocation [Line: 87]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [87] - GenericResultAtLocation [Line: 125]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [125] - GenericResultAtLocation [Line: 225]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [225] - GenericResultAtLocation [Line: 440]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [440] - GenericResultAtLocation [Line: 508]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [508] - GenericResultAtLocation [Line: 874]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [874] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 83]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 10 procedures, 71 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 5.6s, OverallIterations: 9, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 3.0s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 790 SdHoareTripleChecker+Valid, 1.7s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 774 mSDsluCounter, 1763 SdHoareTripleChecker+Invalid, 1.4s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1185 mSDsCounter, 283 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 1163 IncrementalHoareTripleChecker+Invalid, 1446 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 283 mSolverCounterUnsat, 578 mSDtfsCounter, 1163 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 92 GetRequests, 25 SyntacticMatches, 0 SemanticMatches, 67 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 263 ImplicationChecksByTransitivity, 0.7s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=687occurred in iteration=7, InterpolantAutomatonStates: 71, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.5s AutomataMinimizationTime, 9 MinimizatonAttempts, 194 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 1.6s InterpolantComputationTime, 332 NumberOfCodeBlocks, 332 NumberOfCodeBlocksAsserted, 9 NumberOfCheckSat, 323 ConstructedInterpolants, 0 QuantifiedInterpolants, 695 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 9 InterpolantComputations, 9 PerfectInterpolantSequences, 62/62 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 452]: Loop Invariant Derived loop invariant: ((((1 == systemActive) && (splverifierCounter == 0)) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) || (((pumpRunning == 0) && (splverifierCounter == 0)) && (0 == systemActive))) - InvariantResult [Line: 886]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 234]: Location Invariant Derived location invariant: ((((pumpRunning == \old(pumpRunning)) && ((pumpRunning == 0) || (0 != systemActive))) && ((1 == systemActive) || (0 == systemActive))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || (0 == systemActive)) || (waterLevel == 1))) - InvariantResult [Line: 451]: Location Invariant Derived location invariant: 0 - ProcedureContractResult [Line: 342]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((1 == systemActive) || ((waterLevel != 1) && (0 != systemActive))) Ensures: (((pumpRunning == 0) && ((1 == systemActive) || ((waterLevel != 1) && (0 != systemActive)))) && (((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 258]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((methaneLevelCritical == 0) && (1 == systemActive)) || ((pumpRunning == 0) && (1 == systemActive))) Ensures: ((((methaneLevelCritical == 0) && (1 == systemActive)) || ((pumpRunning == 0) && (1 == systemActive))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 158]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((1 == systemActive) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: (((1 == systemActive) || ((pumpRunning == 0) && (0 == systemActive))) && (((((waterLevel == \old(waterLevel)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 876]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 234]: Procedure Contract for timeShift Derived contract for procedure timeShift. Requires: (((pumpRunning == 0) || (0 != systemActive)) && ((1 == systemActive) || (0 == systemActive))) Ensures: ((((((1 == systemActive) || ((\old(pumpRunning) == 0) && (0 == systemActive))) && (((pumpRunning == 0) || ((pumpRunning == \old(pumpRunning)) && (methaneLevelCritical == 0))) || (((waterLevel != 1) && (methaneLevelCritical == 0)) && (1 == systemActive)))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || (0 == systemActive)) || (waterLevel == 1))) && (((pumpRunning == \old(pumpRunning)) || (methaneLevelCritical != 0)) || ((waterLevel != 1) && (1 == systemActive)))) && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 170]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: ((1 == systemActive) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: (((\result == methaneLevelCritical) && ((1 == systemActive) || ((pumpRunning == 0) && (0 == systemActive)))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 146]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: (((1 == systemActive) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: ((((1 == systemActive) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) || ((pumpRunning == 0) && (0 == systemActive))) && (((((methaneLevelCritical == \old(methaneLevelCritical)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 266]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Requires: ((1 == systemActive) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) Ensures: ((((pumpRunning == \old(pumpRunning)) || ((waterLevel != 1) && (methaneLevelCritical == 0))) && (((1 == systemActive) && (\old(pumpRunning) == 0)) || ((methaneLevelCritical == 0) && (1 == systemActive)))) && (((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 350]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: (1 == systemActive) Ensures: (((1 == systemActive) && (\result == methaneLevelCritical)) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) RESULT: Ultimate proved your program to be correct! [2024-11-09 07:16:33,642 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d6aa5fca-86ae-4284-8e8c-85856894de4f/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE