./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec1_product59.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a0165632 Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec1_product59.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 5a0a9a5f1521df25ea0ff390c35c7186e45318cd30c225704d83030e156744fb --- Real Ultimate output --- This is Ultimate 0.2.5-dev-a016563 [2024-11-09 06:16:16,955 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-09 06:16:17,074 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-09 06:16:17,082 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-09 06:16:17,085 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-09 06:16:17,134 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-09 06:16:17,135 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-09 06:16:17,135 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-09 06:16:17,137 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-09 06:16:17,138 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-09 06:16:17,139 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-09 06:16:17,140 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-09 06:16:17,140 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-09 06:16:17,141 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-09 06:16:17,144 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-09 06:16:17,144 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-09 06:16:17,145 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-09 06:16:17,145 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-09 06:16:17,146 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-09 06:16:17,146 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-09 06:16:17,147 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-09 06:16:17,151 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-09 06:16:17,151 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-09 06:16:17,152 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-09 06:16:17,152 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-09 06:16:17,153 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-09 06:16:17,153 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-09 06:16:17,153 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-09 06:16:17,154 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-09 06:16:17,157 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-09 06:16:17,157 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-09 06:16:17,158 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-09 06:16:17,159 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-09 06:16:17,160 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-09 06:16:17,160 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-09 06:16:17,161 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-09 06:16:17,161 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-09 06:16:17,161 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-09 06:16:17,162 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 06:16:17,162 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-09 06:16:17,163 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-09 06:16:17,163 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-09 06:16:17,164 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-09 06:16:17,164 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-09 06:16:17,165 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-09 06:16:17,165 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-09 06:16:17,165 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-09 06:16:17,166 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 5a0a9a5f1521df25ea0ff390c35c7186e45318cd30c225704d83030e156744fb [2024-11-09 06:16:17,560 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-09 06:16:17,599 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-09 06:16:17,603 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-09 06:16:17,606 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-09 06:16:17,607 INFO L274 PluginConnector]: CDTParser initialized [2024-11-09 06:16:17,609 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/../../sv-benchmarks/c/product-lines/minepump_spec1_product59.cil.c Unable to find full path for "g++" [2024-11-09 06:16:20,181 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-09 06:16:20,512 INFO L384 CDTParser]: Found 1 translation units. [2024-11-09 06:16:20,513 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/sv-benchmarks/c/product-lines/minepump_spec1_product59.cil.c [2024-11-09 06:16:20,529 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/data/2e6d3d251/46232c9c9aeb47bf8cdea666bdf587f0/FLAG9311902fe [2024-11-09 06:16:20,550 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/data/2e6d3d251/46232c9c9aeb47bf8cdea666bdf587f0 [2024-11-09 06:16:20,553 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-09 06:16:20,555 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-09 06:16:20,557 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-09 06:16:20,557 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-09 06:16:20,565 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-09 06:16:20,566 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 06:16:20" (1/1) ... [2024-11-09 06:16:20,568 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@1c9e8622 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:20, skipping insertion in model container [2024-11-09 06:16:20,568 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 06:16:20" (1/1) ... [2024-11-09 06:16:20,647 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-09 06:16:20,972 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/sv-benchmarks/c/product-lines/minepump_spec1_product59.cil.c[3645,3658] [2024-11-09 06:16:21,171 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 06:16:21,190 INFO L200 MainTranslator]: Completed pre-run [2024-11-09 06:16:21,205 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] [2024-11-09 06:16:21,208 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [160] [2024-11-09 06:16:21,208 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [188] [2024-11-09 06:16:21,208 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [197] [2024-11-09 06:16:21,209 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [267] [2024-11-09 06:16:21,209 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [500] [2024-11-09 06:16:21,209 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [866] [2024-11-09 06:16:21,210 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [904] [2024-11-09 06:16:21,239 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/sv-benchmarks/c/product-lines/minepump_spec1_product59.cil.c[3645,3658] [2024-11-09 06:16:21,372 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 06:16:21,421 INFO L204 MainTranslator]: Completed translation [2024-11-09 06:16:21,422 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21 WrapperNode [2024-11-09 06:16:21,422 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-09 06:16:21,424 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-09 06:16:21,424 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-09 06:16:21,425 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-09 06:16:21,435 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,460 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,519 INFO L138 Inliner]: procedures = 57, calls = 102, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 217 [2024-11-09 06:16:21,520 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-09 06:16:21,521 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-09 06:16:21,521 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-09 06:16:21,521 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-09 06:16:21,536 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,536 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,545 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,545 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,558 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,565 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,567 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,569 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,572 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-09 06:16:21,573 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-09 06:16:21,574 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-09 06:16:21,574 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-09 06:16:21,575 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (1/1) ... [2024-11-09 06:16:21,588 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 06:16:21,606 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 06:16:21,640 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-09 06:16:21,648 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-09 06:16:21,690 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-09 06:16:21,691 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-09 06:16:21,691 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-09 06:16:21,691 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-09 06:16:21,691 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-09 06:16:21,691 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-09 06:16:21,692 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-09 06:16:21,692 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-09 06:16:21,692 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-09 06:16:21,692 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 06:16:21,692 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 06:16:21,693 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-09 06:16:21,693 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-09 06:16:21,693 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-09 06:16:21,693 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-09 06:16:21,694 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-09 06:16:21,694 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-09 06:16:21,694 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-09 06:16:21,694 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-09 06:16:21,695 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-09 06:16:21,825 INFO L238 CfgBuilder]: Building ICFG [2024-11-09 06:16:21,830 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-09 06:16:22,250 INFO L? ?]: Removed 49 outVars from TransFormulas that were not future-live. [2024-11-09 06:16:22,250 INFO L287 CfgBuilder]: Performing block encoding [2024-11-09 06:16:22,447 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-09 06:16:22,448 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-09 06:16:22,448 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 06:16:22 BoogieIcfgContainer [2024-11-09 06:16:22,449 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-09 06:16:22,456 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-09 06:16:22,456 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-09 06:16:22,463 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-09 06:16:22,463 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 09.11 06:16:20" (1/3) ... [2024-11-09 06:16:22,465 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@65427579 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 06:16:22, skipping insertion in model container [2024-11-09 06:16:22,467 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:16:21" (2/3) ... [2024-11-09 06:16:22,467 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@65427579 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 06:16:22, skipping insertion in model container [2024-11-09 06:16:22,468 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 06:16:22" (3/3) ... [2024-11-09 06:16:22,470 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec1_product59.cil.c [2024-11-09 06:16:22,504 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-09 06:16:22,504 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-09 06:16:22,601 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-09 06:16:22,619 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@62f3a3bc, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-09 06:16:22,619 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-09 06:16:22,625 INFO L276 IsEmpty]: Start isEmpty. Operand has 65 states, 41 states have (on average 1.4390243902439024) internal successors, (59), 50 states have internal predecessors, (59), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-09 06:16:22,641 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2024-11-09 06:16:22,643 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:22,644 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:22,645 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:22,653 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:22,656 INFO L85 PathProgramCache]: Analyzing trace with hash 181907644, now seen corresponding path program 1 times [2024-11-09 06:16:22,676 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:22,678 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2124480775] [2024-11-09 06:16:22,678 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:22,679 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:22,829 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:22,948 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:16:22,948 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:22,949 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2124480775] [2024-11-09 06:16:22,950 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2124480775] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:16:22,951 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:16:22,953 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-09 06:16:22,956 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [892872720] [2024-11-09 06:16:22,957 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:16:22,964 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-09 06:16:22,966 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:23,007 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-09 06:16:23,008 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 06:16:23,012 INFO L87 Difference]: Start difference. First operand has 65 states, 41 states have (on average 1.4390243902439024) internal successors, (59), 50 states have internal predecessors, (59), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:16:23,123 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:23,124 INFO L93 Difference]: Finished difference Result 128 states and 175 transitions. [2024-11-09 06:16:23,126 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-09 06:16:23,128 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 16 [2024-11-09 06:16:23,129 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:23,142 INFO L225 Difference]: With dead ends: 128 [2024-11-09 06:16:23,142 INFO L226 Difference]: Without dead ends: 60 [2024-11-09 06:16:23,148 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 06:16:23,153 INFO L432 NwaCegarLoop]: 67 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 67 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:23,155 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 67 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:16:23,182 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 60 states. [2024-11-09 06:16:23,218 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 60 to 60. [2024-11-09 06:16:23,220 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 60 states, 38 states have (on average 1.3421052631578947) internal successors, (51), 46 states have internal predecessors, (51), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-09 06:16:23,223 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 60 states to 60 states and 78 transitions. [2024-11-09 06:16:23,228 INFO L78 Accepts]: Start accepts. Automaton has 60 states and 78 transitions. Word has length 16 [2024-11-09 06:16:23,230 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:23,230 INFO L471 AbstractCegarLoop]: Abstraction has 60 states and 78 transitions. [2024-11-09 06:16:23,231 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:16:23,231 INFO L276 IsEmpty]: Start isEmpty. Operand 60 states and 78 transitions. [2024-11-09 06:16:23,234 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-11-09 06:16:23,234 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:23,235 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:23,235 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-09 06:16:23,236 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:23,238 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:23,239 INFO L85 PathProgramCache]: Analyzing trace with hash 1662353284, now seen corresponding path program 1 times [2024-11-09 06:16:23,239 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:23,240 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1736417476] [2024-11-09 06:16:23,240 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:23,241 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:23,268 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:23,355 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:16:23,356 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:23,356 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1736417476] [2024-11-09 06:16:23,356 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1736417476] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:16:23,357 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:16:23,357 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 06:16:23,357 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1260085916] [2024-11-09 06:16:23,358 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:16:23,359 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 06:16:23,360 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:23,360 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 06:16:23,361 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 06:16:23,361 INFO L87 Difference]: Start difference. First operand 60 states and 78 transitions. Second operand has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:16:23,455 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:23,458 INFO L93 Difference]: Finished difference Result 92 states and 118 transitions. [2024-11-09 06:16:23,458 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 06:16:23,459 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-11-09 06:16:23,462 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:23,463 INFO L225 Difference]: With dead ends: 92 [2024-11-09 06:16:23,463 INFO L226 Difference]: Without dead ends: 52 [2024-11-09 06:16:23,464 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 06:16:23,469 INFO L432 NwaCegarLoop]: 53 mSDtfsCounter, 14 mSDsluCounter, 36 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 89 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:23,470 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 89 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:16:23,471 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 52 states. [2024-11-09 06:16:23,492 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 52 to 52. [2024-11-09 06:16:23,497 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 52 states, 33 states have (on average 1.3636363636363635) internal successors, (45), 41 states have internal predecessors, (45), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-09 06:16:23,498 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 52 states to 52 states and 67 transitions. [2024-11-09 06:16:23,499 INFO L78 Accepts]: Start accepts. Automaton has 52 states and 67 transitions. Word has length 17 [2024-11-09 06:16:23,500 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:23,500 INFO L471 AbstractCegarLoop]: Abstraction has 52 states and 67 transitions. [2024-11-09 06:16:23,501 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:16:23,501 INFO L276 IsEmpty]: Start isEmpty. Operand 52 states and 67 transitions. [2024-11-09 06:16:23,502 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-11-09 06:16:23,503 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:23,503 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:23,507 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-09 06:16:23,507 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:23,508 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:23,508 INFO L85 PathProgramCache]: Analyzing trace with hash 1400883925, now seen corresponding path program 1 times [2024-11-09 06:16:23,508 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:23,509 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1280584948] [2024-11-09 06:16:23,509 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:23,509 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:23,569 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:23,705 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:16:23,706 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:23,706 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1280584948] [2024-11-09 06:16:23,707 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1280584948] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:16:23,707 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:16:23,707 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-09 06:16:23,708 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1477197992] [2024-11-09 06:16:23,708 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:16:23,709 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 06:16:23,709 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:23,710 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 06:16:23,710 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 06:16:23,710 INFO L87 Difference]: Start difference. First operand 52 states and 67 transitions. Second operand has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:16:23,904 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:23,904 INFO L93 Difference]: Finished difference Result 135 states and 174 transitions. [2024-11-09 06:16:23,905 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 06:16:23,906 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2024-11-09 06:16:23,906 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:23,908 INFO L225 Difference]: With dead ends: 135 [2024-11-09 06:16:23,908 INFO L226 Difference]: Without dead ends: 85 [2024-11-09 06:16:23,909 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-09 06:16:23,911 INFO L432 NwaCegarLoop]: 61 mSDtfsCounter, 55 mSDsluCounter, 67 mSDsCounter, 0 mSdLazyCounter, 68 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 55 SdHoareTripleChecker+Valid, 128 SdHoareTripleChecker+Invalid, 70 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 68 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:23,912 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [55 Valid, 128 Invalid, 70 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 68 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:16:23,913 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 85 states. [2024-11-09 06:16:23,930 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 85 to 82. [2024-11-09 06:16:23,931 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 82 states, 53 states have (on average 1.3584905660377358) internal successors, (72), 64 states have internal predecessors, (72), 16 states have call successors, (16), 12 states have call predecessors, (16), 12 states have return successors, (17), 12 states have call predecessors, (17), 16 states have call successors, (17) [2024-11-09 06:16:23,933 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 82 states to 82 states and 105 transitions. [2024-11-09 06:16:23,934 INFO L78 Accepts]: Start accepts. Automaton has 82 states and 105 transitions. Word has length 20 [2024-11-09 06:16:23,934 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:23,934 INFO L471 AbstractCegarLoop]: Abstraction has 82 states and 105 transitions. [2024-11-09 06:16:23,935 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:16:23,935 INFO L276 IsEmpty]: Start isEmpty. Operand 82 states and 105 transitions. [2024-11-09 06:16:23,936 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-11-09 06:16:23,937 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:23,937 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:23,937 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-09 06:16:23,938 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:23,938 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:23,939 INFO L85 PathProgramCache]: Analyzing trace with hash 871226501, now seen corresponding path program 1 times [2024-11-09 06:16:23,939 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:23,940 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [14821906] [2024-11-09 06:16:23,940 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:23,940 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:23,974 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:24,154 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:16:24,155 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:24,155 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [14821906] [2024-11-09 06:16:24,155 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [14821906] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:16:24,155 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:16:24,156 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-09 06:16:24,156 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1198375030] [2024-11-09 06:16:24,156 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:16:24,157 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 06:16:24,157 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:24,160 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 06:16:24,160 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 06:16:24,160 INFO L87 Difference]: Start difference. First operand 82 states and 105 transitions. Second operand has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:16:24,368 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:24,373 INFO L93 Difference]: Finished difference Result 194 states and 256 transitions. [2024-11-09 06:16:24,374 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 06:16:24,375 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2024-11-09 06:16:24,375 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:24,379 INFO L225 Difference]: With dead ends: 194 [2024-11-09 06:16:24,380 INFO L226 Difference]: Without dead ends: 114 [2024-11-09 06:16:24,381 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-09 06:16:24,383 INFO L432 NwaCegarLoop]: 51 mSDtfsCounter, 36 mSDsluCounter, 88 mSDsCounter, 0 mSdLazyCounter, 47 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 36 SdHoareTripleChecker+Valid, 139 SdHoareTripleChecker+Invalid, 54 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 47 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:24,384 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [36 Valid, 139 Invalid, 54 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 47 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:16:24,385 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 114 states. [2024-11-09 06:16:24,408 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 114 to 113. [2024-11-09 06:16:24,409 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 113 states, 76 states have (on average 1.2894736842105263) internal successors, (98), 86 states have internal predecessors, (98), 19 states have call successors, (19), 17 states have call predecessors, (19), 17 states have return successors, (25), 18 states have call predecessors, (25), 19 states have call successors, (25) [2024-11-09 06:16:24,411 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 113 states to 113 states and 142 transitions. [2024-11-09 06:16:24,412 INFO L78 Accepts]: Start accepts. Automaton has 113 states and 142 transitions. Word has length 23 [2024-11-09 06:16:24,412 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:24,413 INFO L471 AbstractCegarLoop]: Abstraction has 113 states and 142 transitions. [2024-11-09 06:16:24,413 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:16:24,413 INFO L276 IsEmpty]: Start isEmpty. Operand 113 states and 142 transitions. [2024-11-09 06:16:24,415 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2024-11-09 06:16:24,415 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:24,416 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:24,416 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-09 06:16:24,416 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:24,417 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:24,417 INFO L85 PathProgramCache]: Analyzing trace with hash 1751520172, now seen corresponding path program 1 times [2024-11-09 06:16:24,417 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:24,418 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [868546752] [2024-11-09 06:16:24,418 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:24,418 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:24,440 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:24,483 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 06:16:24,484 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:24,484 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [868546752] [2024-11-09 06:16:24,485 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [868546752] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:16:24,485 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:16:24,485 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 06:16:24,485 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [677456348] [2024-11-09 06:16:24,486 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:16:24,486 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 06:16:24,487 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:24,487 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 06:16:24,488 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 06:16:24,488 INFO L87 Difference]: Start difference. First operand 113 states and 142 transitions. Second operand has 3 states, 3 states have (on average 9.0) internal successors, (27), 3 states have internal predecessors, (27), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-09 06:16:24,572 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:24,572 INFO L93 Difference]: Finished difference Result 226 states and 284 transitions. [2024-11-09 06:16:24,573 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 06:16:24,573 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 9.0) internal successors, (27), 3 states have internal predecessors, (27), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 35 [2024-11-09 06:16:24,574 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:24,575 INFO L225 Difference]: With dead ends: 226 [2024-11-09 06:16:24,575 INFO L226 Difference]: Without dead ends: 83 [2024-11-09 06:16:24,577 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 06:16:24,578 INFO L432 NwaCegarLoop]: 69 mSDtfsCounter, 30 mSDsluCounter, 51 mSDsCounter, 0 mSdLazyCounter, 34 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 30 SdHoareTripleChecker+Valid, 120 SdHoareTripleChecker+Invalid, 34 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 34 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:24,586 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [30 Valid, 120 Invalid, 34 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 34 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:16:24,587 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 83 states. [2024-11-09 06:16:24,612 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 83 to 83. [2024-11-09 06:16:24,613 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 83 states, 55 states have (on average 1.2363636363636363) internal successors, (68), 62 states have internal predecessors, (68), 14 states have call successors, (14), 13 states have call predecessors, (14), 13 states have return successors, (18), 13 states have call predecessors, (18), 14 states have call successors, (18) [2024-11-09 06:16:24,614 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 83 states to 83 states and 100 transitions. [2024-11-09 06:16:24,615 INFO L78 Accepts]: Start accepts. Automaton has 83 states and 100 transitions. Word has length 35 [2024-11-09 06:16:24,615 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:24,616 INFO L471 AbstractCegarLoop]: Abstraction has 83 states and 100 transitions. [2024-11-09 06:16:24,616 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 9.0) internal successors, (27), 3 states have internal predecessors, (27), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-09 06:16:24,616 INFO L276 IsEmpty]: Start isEmpty. Operand 83 states and 100 transitions. [2024-11-09 06:16:24,617 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-09 06:16:24,617 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:24,618 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:24,618 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-09 06:16:24,618 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:24,619 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:24,619 INFO L85 PathProgramCache]: Analyzing trace with hash 259328508, now seen corresponding path program 1 times [2024-11-09 06:16:24,619 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:24,619 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1353631268] [2024-11-09 06:16:24,620 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:24,620 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:24,651 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:25,021 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 06:16:25,022 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:25,022 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1353631268] [2024-11-09 06:16:25,022 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1353631268] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:16:25,022 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:16:25,022 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-09 06:16:25,023 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [86035443] [2024-11-09 06:16:25,023 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:16:25,023 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-09 06:16:25,024 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:25,028 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-09 06:16:25,029 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-09 06:16:25,029 INFO L87 Difference]: Start difference. First operand 83 states and 100 transitions. Second operand has 7 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-09 06:16:25,368 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:25,369 INFO L93 Difference]: Finished difference Result 232 states and 280 transitions. [2024-11-09 06:16:25,369 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 06:16:25,370 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 32 [2024-11-09 06:16:25,370 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:25,372 INFO L225 Difference]: With dead ends: 232 [2024-11-09 06:16:25,372 INFO L226 Difference]: Without dead ends: 151 [2024-11-09 06:16:25,373 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=20, Invalid=36, Unknown=0, NotChecked=0, Total=56 [2024-11-09 06:16:25,374 INFO L432 NwaCegarLoop]: 72 mSDtfsCounter, 63 mSDsluCounter, 226 mSDsCounter, 0 mSdLazyCounter, 190 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 63 SdHoareTripleChecker+Valid, 298 SdHoareTripleChecker+Invalid, 193 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 190 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:25,375 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [63 Valid, 298 Invalid, 193 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 190 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-09 06:16:25,376 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 151 states. [2024-11-09 06:16:25,399 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 151 to 131. [2024-11-09 06:16:25,400 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 131 states, 88 states have (on average 1.2159090909090908) internal successors, (107), 96 states have internal predecessors, (107), 20 states have call successors, (20), 20 states have call predecessors, (20), 22 states have return successors, (26), 20 states have call predecessors, (26), 20 states have call successors, (26) [2024-11-09 06:16:25,401 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 131 states to 131 states and 153 transitions. [2024-11-09 06:16:25,402 INFO L78 Accepts]: Start accepts. Automaton has 131 states and 153 transitions. Word has length 32 [2024-11-09 06:16:25,402 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:25,403 INFO L471 AbstractCegarLoop]: Abstraction has 131 states and 153 transitions. [2024-11-09 06:16:25,403 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-09 06:16:25,403 INFO L276 IsEmpty]: Start isEmpty. Operand 131 states and 153 transitions. [2024-11-09 06:16:25,404 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2024-11-09 06:16:25,404 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:25,405 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:25,405 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-09 06:16:25,405 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:25,405 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:25,406 INFO L85 PathProgramCache]: Analyzing trace with hash 1326934017, now seen corresponding path program 1 times [2024-11-09 06:16:25,406 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:25,406 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [995921122] [2024-11-09 06:16:25,406 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:25,407 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:25,427 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:25,540 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-09 06:16:25,540 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:25,540 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [995921122] [2024-11-09 06:16:25,540 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [995921122] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:16:25,541 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:16:25,541 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 06:16:25,541 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [387906794] [2024-11-09 06:16:25,541 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:16:25,542 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 06:16:25,542 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:25,543 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 06:16:25,543 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-09 06:16:25,543 INFO L87 Difference]: Start difference. First operand 131 states and 153 transitions. Second operand has 6 states, 5 states have (on average 5.2) internal successors, (26), 5 states have internal predecessors, (26), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-09 06:16:25,766 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:25,766 INFO L93 Difference]: Finished difference Result 380 states and 454 transitions. [2024-11-09 06:16:25,767 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 06:16:25,768 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 5.2) internal successors, (26), 5 states have internal predecessors, (26), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) Word has length 35 [2024-11-09 06:16:25,771 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:25,775 INFO L225 Difference]: With dead ends: 380 [2024-11-09 06:16:25,775 INFO L226 Difference]: Without dead ends: 251 [2024-11-09 06:16:25,778 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-09 06:16:25,779 INFO L432 NwaCegarLoop]: 45 mSDtfsCounter, 35 mSDsluCounter, 158 mSDsCounter, 0 mSdLazyCounter, 94 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 37 SdHoareTripleChecker+Valid, 203 SdHoareTripleChecker+Invalid, 94 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 94 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:25,782 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [37 Valid, 203 Invalid, 94 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 94 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:16:25,786 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 251 states. [2024-11-09 06:16:25,834 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 251 to 245. [2024-11-09 06:16:25,835 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 245 states, 166 states have (on average 1.1927710843373494) internal successors, (198), 178 states have internal predecessors, (198), 37 states have call successors, (37), 37 states have call predecessors, (37), 41 states have return successors, (49), 37 states have call predecessors, (49), 37 states have call successors, (49) [2024-11-09 06:16:25,837 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 245 states to 245 states and 284 transitions. [2024-11-09 06:16:25,838 INFO L78 Accepts]: Start accepts. Automaton has 245 states and 284 transitions. Word has length 35 [2024-11-09 06:16:25,838 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:25,838 INFO L471 AbstractCegarLoop]: Abstraction has 245 states and 284 transitions. [2024-11-09 06:16:25,839 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 5.2) internal successors, (26), 5 states have internal predecessors, (26), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-09 06:16:25,839 INFO L276 IsEmpty]: Start isEmpty. Operand 245 states and 284 transitions. [2024-11-09 06:16:25,841 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2024-11-09 06:16:25,841 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:25,842 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:25,842 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-09 06:16:25,842 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:25,843 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:25,843 INFO L85 PathProgramCache]: Analyzing trace with hash 983459494, now seen corresponding path program 1 times [2024-11-09 06:16:25,843 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:25,844 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [475953530] [2024-11-09 06:16:25,844 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:25,844 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:25,868 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:26,213 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 06:16:26,213 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:26,213 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [475953530] [2024-11-09 06:16:26,213 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [475953530] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:16:26,214 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:16:26,214 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2024-11-09 06:16:26,214 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [651743063] [2024-11-09 06:16:26,214 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:16:26,214 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2024-11-09 06:16:26,215 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:26,216 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2024-11-09 06:16:26,216 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=85, Unknown=0, NotChecked=0, Total=110 [2024-11-09 06:16:26,217 INFO L87 Difference]: Start difference. First operand 245 states and 284 transitions. Second operand has 11 states, 10 states have (on average 2.6) internal successors, (26), 9 states have internal predecessors, (26), 3 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) [2024-11-09 06:16:27,092 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:27,092 INFO L93 Difference]: Finished difference Result 427 states and 517 transitions. [2024-11-09 06:16:27,093 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2024-11-09 06:16:27,093 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 10 states have (on average 2.6) internal successors, (26), 9 states have internal predecessors, (26), 3 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) Word has length 38 [2024-11-09 06:16:27,094 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:27,097 INFO L225 Difference]: With dead ends: 427 [2024-11-09 06:16:27,097 INFO L226 Difference]: Without dead ends: 332 [2024-11-09 06:16:27,098 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 30 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 24 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 123 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=179, Invalid=471, Unknown=0, NotChecked=0, Total=650 [2024-11-09 06:16:27,102 INFO L432 NwaCegarLoop]: 33 mSDtfsCounter, 234 mSDsluCounter, 168 mSDsCounter, 0 mSdLazyCounter, 240 mSolverCounterSat, 154 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 238 SdHoareTripleChecker+Valid, 201 SdHoareTripleChecker+Invalid, 394 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 154 IncrementalHoareTripleChecker+Valid, 240 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:27,103 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [238 Valid, 201 Invalid, 394 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [154 Valid, 240 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-09 06:16:27,104 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 332 states. [2024-11-09 06:16:27,188 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 332 to 303. [2024-11-09 06:16:27,189 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 303 states, 206 states have (on average 1.1941747572815533) internal successors, (246), 220 states have internal predecessors, (246), 46 states have call successors, (46), 43 states have call predecessors, (46), 50 states have return successors, (65), 48 states have call predecessors, (65), 46 states have call successors, (65) [2024-11-09 06:16:27,192 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 303 states to 303 states and 357 transitions. [2024-11-09 06:16:27,193 INFO L78 Accepts]: Start accepts. Automaton has 303 states and 357 transitions. Word has length 38 [2024-11-09 06:16:27,193 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:27,195 INFO L471 AbstractCegarLoop]: Abstraction has 303 states and 357 transitions. [2024-11-09 06:16:27,196 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 10 states have (on average 2.6) internal successors, (26), 9 states have internal predecessors, (26), 3 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) [2024-11-09 06:16:27,198 INFO L276 IsEmpty]: Start isEmpty. Operand 303 states and 357 transitions. [2024-11-09 06:16:27,206 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 68 [2024-11-09 06:16:27,206 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:27,206 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:27,206 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-09 06:16:27,207 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:27,207 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:27,207 INFO L85 PathProgramCache]: Analyzing trace with hash -1017669637, now seen corresponding path program 1 times [2024-11-09 06:16:27,208 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:27,208 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1917328175] [2024-11-09 06:16:27,208 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:27,208 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:27,251 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:28,004 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 5 proven. 11 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-09 06:16:28,004 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:28,004 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1917328175] [2024-11-09 06:16:28,004 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1917328175] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 06:16:28,005 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [266179657] [2024-11-09 06:16:28,005 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:28,005 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 06:16:28,005 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 06:16:28,011 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 06:16:28,012 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-09 06:16:28,138 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:28,144 INFO L255 TraceCheckSpWp]: Trace formula consists of 236 conjuncts, 21 conjuncts are in the unsatisfiable core [2024-11-09 06:16:28,161 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 06:16:28,714 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 13 proven. 11 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 06:16:28,714 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 06:16:29,443 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 8 proven. 3 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-11-09 06:16:29,444 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [266179657] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 06:16:29,444 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1494126948] [2024-11-09 06:16:29,478 INFO L159 IcfgInterpreter]: Started Sifa with 44 locations of interest [2024-11-09 06:16:29,479 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 06:16:29,486 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 06:16:29,494 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 06:16:29,494 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 06:16:36,380 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 29 for LOIs [2024-11-09 06:16:36,388 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 23 for LOIs [2024-11-09 06:16:36,540 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 30 for LOIs [2024-11-09 06:16:36,640 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 24 for LOIs [2024-11-09 06:16:36,647 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 18 for LOIs [2024-11-09 06:16:36,650 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 22 for LOIs [2024-11-09 06:16:36,653 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 06:16:40,192 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4900#(and (<= 1 |#StackHeapBarrier|) (<= ~methaneLevelCritical~0 1) (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (= ~head~0.offset 0) (= 1 ~systemActive~0) (not (= ~methaneLevelCritical~0 0)) (<= 0 ~methaneLevelCritical~0) (= ~head~0.base 0) (<= 0 (+ ~pumpRunning~0 2147483648)) (= ~cleanupTimeShifts~0 4))' at error location [2024-11-09 06:16:40,192 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 06:16:40,192 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 06:16:40,193 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 12, 11] total 27 [2024-11-09 06:16:40,193 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1993311057] [2024-11-09 06:16:40,193 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 06:16:40,194 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 27 states [2024-11-09 06:16:40,194 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:40,196 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 27 interpolants. [2024-11-09 06:16:40,197 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=335, Invalid=2745, Unknown=0, NotChecked=0, Total=3080 [2024-11-09 06:16:40,198 INFO L87 Difference]: Start difference. First operand 303 states and 357 transitions. Second operand has 27 states, 24 states have (on average 3.875) internal successors, (93), 23 states have internal predecessors, (93), 11 states have call successors, (23), 9 states have call predecessors, (23), 9 states have return successors, (21), 8 states have call predecessors, (21), 11 states have call successors, (21) [2024-11-09 06:16:42,214 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:42,214 INFO L93 Difference]: Finished difference Result 1059 states and 1321 transitions. [2024-11-09 06:16:42,215 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 42 states. [2024-11-09 06:16:42,215 INFO L78 Accepts]: Start accepts. Automaton has has 27 states, 24 states have (on average 3.875) internal successors, (93), 23 states have internal predecessors, (93), 11 states have call successors, (23), 9 states have call predecessors, (23), 9 states have return successors, (21), 8 states have call predecessors, (21), 11 states have call successors, (21) Word has length 67 [2024-11-09 06:16:42,215 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:42,224 INFO L225 Difference]: With dead ends: 1059 [2024-11-09 06:16:42,224 INFO L226 Difference]: Without dead ends: 822 [2024-11-09 06:16:42,232 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 249 GetRequests, 159 SyntacticMatches, 7 SemanticMatches, 83 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2807 ImplicationChecksByTransitivity, 4.9s TimeCoverageRelationStatistics Valid=1017, Invalid=6123, Unknown=0, NotChecked=0, Total=7140 [2024-11-09 06:16:42,233 INFO L432 NwaCegarLoop]: 47 mSDtfsCounter, 565 mSDsluCounter, 559 mSDsCounter, 0 mSdLazyCounter, 814 mSolverCounterSat, 326 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 571 SdHoareTripleChecker+Valid, 606 SdHoareTripleChecker+Invalid, 1140 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 326 IncrementalHoareTripleChecker+Valid, 814 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:42,233 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [571 Valid, 606 Invalid, 1140 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [326 Valid, 814 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2024-11-09 06:16:42,235 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 822 states. [2024-11-09 06:16:42,329 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 822 to 707. [2024-11-09 06:16:42,334 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 707 states, 486 states have (on average 1.1872427983539096) internal successors, (577), 522 states have internal predecessors, (577), 107 states have call successors, (107), 89 states have call predecessors, (107), 113 states have return successors, (171), 116 states have call predecessors, (171), 107 states have call successors, (171) [2024-11-09 06:16:42,338 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 707 states to 707 states and 855 transitions. [2024-11-09 06:16:42,340 INFO L78 Accepts]: Start accepts. Automaton has 707 states and 855 transitions. Word has length 67 [2024-11-09 06:16:42,340 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:42,340 INFO L471 AbstractCegarLoop]: Abstraction has 707 states and 855 transitions. [2024-11-09 06:16:42,340 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 27 states, 24 states have (on average 3.875) internal successors, (93), 23 states have internal predecessors, (93), 11 states have call successors, (23), 9 states have call predecessors, (23), 9 states have return successors, (21), 8 states have call predecessors, (21), 11 states have call successors, (21) [2024-11-09 06:16:42,341 INFO L276 IsEmpty]: Start isEmpty. Operand 707 states and 855 transitions. [2024-11-09 06:16:42,347 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 122 [2024-11-09 06:16:42,347 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:16:42,348 INFO L215 NwaCegarLoop]: trace histogram [6, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:42,372 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-09 06:16:42,548 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 06:16:42,549 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:16:42,550 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:16:42,550 INFO L85 PathProgramCache]: Analyzing trace with hash -2146186565, now seen corresponding path program 1 times [2024-11-09 06:16:42,551 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:16:42,551 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [70524541] [2024-11-09 06:16:42,551 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:42,551 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:16:42,607 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:43,677 INFO L134 CoverageAnalysis]: Checked inductivity of 149 backedges. 55 proven. 55 refuted. 0 times theorem prover too weak. 39 trivial. 0 not checked. [2024-11-09 06:16:43,677 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:16:43,677 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [70524541] [2024-11-09 06:16:43,678 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [70524541] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 06:16:43,678 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [47440748] [2024-11-09 06:16:43,678 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:16:43,678 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 06:16:43,678 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 06:16:43,680 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 06:16:43,682 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-09 06:16:43,798 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:16:43,800 INFO L255 TraceCheckSpWp]: Trace formula consists of 362 conjuncts, 28 conjuncts are in the unsatisfiable core [2024-11-09 06:16:43,808 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 06:16:44,469 INFO L134 CoverageAnalysis]: Checked inductivity of 149 backedges. 84 proven. 44 refuted. 0 times theorem prover too weak. 21 trivial. 0 not checked. [2024-11-09 06:16:44,470 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 06:16:45,207 INFO L134 CoverageAnalysis]: Checked inductivity of 149 backedges. 77 proven. 25 refuted. 0 times theorem prover too weak. 47 trivial. 0 not checked. [2024-11-09 06:16:45,208 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [47440748] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 06:16:45,208 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [777206464] [2024-11-09 06:16:45,211 INFO L159 IcfgInterpreter]: Started Sifa with 47 locations of interest [2024-11-09 06:16:45,211 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 06:16:45,211 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 06:16:45,212 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 06:16:45,212 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 06:16:48,962 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 29 for LOIs [2024-11-09 06:16:48,968 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 23 for LOIs [2024-11-09 06:16:49,124 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 30 for LOIs [2024-11-09 06:16:49,192 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 24 for LOIs [2024-11-09 06:16:49,210 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 18 for LOIs [2024-11-09 06:16:49,212 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 22 for LOIs [2024-11-09 06:16:49,214 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 25 for LOIs [2024-11-09 06:16:49,217 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 06:16:53,002 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8354#(and (<= 1 |#StackHeapBarrier|) (<= ~methaneLevelCritical~0 1) (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (= ~head~0.offset 0) (= 1 ~systemActive~0) (not (= ~methaneLevelCritical~0 0)) (<= 0 ~methaneLevelCritical~0) (= ~head~0.base 0) (<= 0 (+ ~pumpRunning~0 2147483648)) (= ~cleanupTimeShifts~0 4))' at error location [2024-11-09 06:16:53,002 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 06:16:53,003 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 06:16:53,003 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 13, 13] total 36 [2024-11-09 06:16:53,003 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [943528040] [2024-11-09 06:16:53,003 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 06:16:53,004 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 36 states [2024-11-09 06:16:53,004 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:16:53,006 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 36 interpolants. [2024-11-09 06:16:53,007 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=505, Invalid=4051, Unknown=0, NotChecked=0, Total=4556 [2024-11-09 06:16:53,007 INFO L87 Difference]: Start difference. First operand 707 states and 855 transitions. Second operand has 36 states, 33 states have (on average 5.0606060606060606) internal successors, (167), 35 states have internal predecessors, (167), 23 states have call successors, (39), 8 states have call predecessors, (39), 15 states have return successors, (41), 18 states have call predecessors, (41), 23 states have call successors, (41) [2024-11-09 06:16:54,061 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:16:54,062 INFO L93 Difference]: Finished difference Result 987 states and 1195 transitions. [2024-11-09 06:16:54,062 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2024-11-09 06:16:54,063 INFO L78 Accepts]: Start accepts. Automaton has has 36 states, 33 states have (on average 5.0606060606060606) internal successors, (167), 35 states have internal predecessors, (167), 23 states have call successors, (39), 8 states have call predecessors, (39), 15 states have return successors, (41), 18 states have call predecessors, (41), 23 states have call successors, (41) Word has length 121 [2024-11-09 06:16:54,063 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:16:54,065 INFO L225 Difference]: With dead ends: 987 [2024-11-09 06:16:54,065 INFO L226 Difference]: Without dead ends: 0 [2024-11-09 06:16:54,074 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 400 GetRequests, 308 SyntacticMatches, 12 SemanticMatches, 80 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3071 ImplicationChecksByTransitivity, 5.0s TimeCoverageRelationStatistics Valid=814, Invalid=5828, Unknown=0, NotChecked=0, Total=6642 [2024-11-09 06:16:54,075 INFO L432 NwaCegarLoop]: 50 mSDtfsCounter, 408 mSDsluCounter, 398 mSDsCounter, 0 mSdLazyCounter, 537 mSolverCounterSat, 261 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 411 SdHoareTripleChecker+Valid, 448 SdHoareTripleChecker+Invalid, 798 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 261 IncrementalHoareTripleChecker+Valid, 537 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-09 06:16:54,076 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [411 Valid, 448 Invalid, 798 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [261 Valid, 537 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-09 06:16:54,076 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-09 06:16:54,077 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-09 06:16:54,077 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 06:16:54,077 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-09 06:16:54,078 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 121 [2024-11-09 06:16:54,078 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:16:54,079 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-09 06:16:54,079 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 36 states, 33 states have (on average 5.0606060606060606) internal successors, (167), 35 states have internal predecessors, (167), 23 states have call successors, (39), 8 states have call predecessors, (39), 15 states have return successors, (41), 18 states have call predecessors, (41), 23 states have call successors, (41) [2024-11-09 06:16:54,079 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-09 06:16:54,080 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-09 06:16:54,083 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-09 06:16:54,110 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-11-09 06:16:54,287 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-09 06:16:54,291 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:16:54,295 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-09 06:16:58,913 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-09 06:16:58,937 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (let ((.cse0 (<= ~waterLevel~0 1))) (or (< 2 ~waterLevel~0) (= ~pumpRunning~0 |old(~pumpRunning~0)|) (and (not (= ~waterLevel~0 1)) .cse0) (and .cse0 (= |old(~pumpRunning~0)| 0)))) (not (= 0 ~systemActive~0))) Eliminated clause: (not (= 0 ~systemActive~0)) [2024-11-09 06:16:58,980 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse3 (= 0 ~systemActive~0))) (let ((.cse0 (not .cse3)) (.cse4 (= |old(~waterLevel~0)| 1)) (.cse5 (= ~pumpRunning~0 0)) (.cse1 (= |old(~waterLevel~0)| 2))) (and (let ((.cse2 (= |old(~pumpRunning~0)| 0))) (or (and .cse0 .cse1) (and .cse2 .cse3) (and .cse4 .cse2))) (or .cse5 .cse0) (or (not .cse4) (and .cse5 (= ~waterLevel~0 1)) .cse3) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse1) .cse3)))) Eliminated clause: (let ((.cse3 (= 0 ~systemActive~0))) (let ((.cse5 (= ~pumpRunning~0 0)) (.cse0 (not .cse3))) (and (exists ((|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse4 (= |old(~waterLevel~0)| 1)) (.cse1 (= |old(~waterLevel~0)| 2))) (and (let ((.cse2 (= |old(~pumpRunning~0)| 0))) (or (and .cse0 .cse1) (and .cse2 .cse3) (and .cse4 .cse2))) (or (not .cse4) (and .cse5 (= ~waterLevel~0 1)) .cse3) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse1) .cse3)))) (or .cse5 .cse0)))) [2024-11-09 06:16:58,992 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 06:16:59,002 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (= |old(~pumpRunning~0)| 0) (let ((.cse0 (not (= 0 ~systemActive~0)))) (or (and (= 2 ~waterLevel~0) .cse0) (and (= ~waterLevel~0 1) .cse0)))) Eliminated clause: (and (= ~pumpRunning~0 0) (let ((.cse0 (not (= 0 ~systemActive~0)))) (or (and (= 2 ~waterLevel~0) .cse0) (and (= ~waterLevel~0 1) .cse0)))) [2024-11-09 06:16:59,010 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse3 (= |old(~waterLevel~0)| 1)) (.cse1 (= 0 ~systemActive~0))) (and (let ((.cse0 (= ~pumpRunning~0 0))) (or (and (or .cse0 (= ~methaneLevelCritical~0 0)) (not .cse1) .cse2) (and .cse0 .cse3) (and .cse0 .cse1))) (or (= 2 ~waterLevel~0) (not .cse2) .cse1) (or (not .cse3) .cse1 (= ~waterLevel~0 1)))) Eliminated clause: (exists ((|old(~waterLevel~0)| Int)) (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse3 (= |old(~waterLevel~0)| 1)) (.cse1 (= 0 ~systemActive~0))) (and (let ((.cse0 (= ~pumpRunning~0 0))) (or (and (or .cse0 (= ~methaneLevelCritical~0 0)) (not .cse1) .cse2) (and .cse0 .cse3) (and .cse0 .cse1))) (or (= 2 ~waterLevel~0) (not .cse2) .cse1) (or (not .cse3) .cse1 (= ~waterLevel~0 1))))) [2024-11-09 06:16:59,013 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 06:16:59,015 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 09.11 06:16:59 BoogieIcfgContainer [2024-11-09 06:16:59,015 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-09 06:16:59,016 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-09 06:16:59,016 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-09 06:16:59,016 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-09 06:16:59,017 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 06:16:22" (3/4) ... [2024-11-09 06:16:59,020 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-09 06:16:59,025 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-09 06:16:59,025 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-09 06:16:59,025 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-09 06:16:59,026 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-09 06:16:59,026 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-09 06:16:59,026 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-09 06:16:59,027 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 06:16:59,027 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-09 06:16:59,035 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 43 nodes and edges [2024-11-09 06:16:59,035 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-09 06:16:59,036 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-09 06:16:59,037 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 06:16:59,037 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 06:16:59,073 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((0 != systemActive) && (\old(waterLevel) == 2)) || ((\old(pumpRunning) == 0) && (0 == systemActive))) || ((\old(waterLevel) == 1) && (\old(pumpRunning) == 0))) && ((pumpRunning == 0) || (0 != systemActive))) && (((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1))) || (0 == systemActive))) && ((((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2)) || (0 == systemActive))) [2024-11-09 06:16:59,130 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((0 != systemActive) && (\old(waterLevel) == 2)) || ((\old(pumpRunning) == 0) && (0 == systemActive))) || ((\old(waterLevel) == 1) && (\old(pumpRunning) == 0))) && ((pumpRunning == 0) || (0 != systemActive))) && (((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1))) || (0 == systemActive))) && ((((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2)) || (0 == systemActive))) [2024-11-09 06:16:59,196 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/witness.graphml [2024-11-09 06:16:59,197 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/witness.yml [2024-11-09 06:16:59,197 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-09 06:16:59,198 INFO L158 Benchmark]: Toolchain (without parser) took 38643.24ms. Allocated memory was 190.8MB in the beginning and 765.5MB in the end (delta: 574.6MB). Free memory was 146.6MB in the beginning and 700.8MB in the end (delta: -554.2MB). Peak memory consumption was 21.3MB. Max. memory is 16.1GB. [2024-11-09 06:16:59,199 INFO L158 Benchmark]: CDTParser took 0.44ms. Allocated memory is still 123.7MB. Free memory is still 69.4MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-09 06:16:59,199 INFO L158 Benchmark]: CACSL2BoogieTranslator took 866.17ms. Allocated memory is still 190.8MB. Free memory was 146.6MB in the beginning and 124.4MB in the end (delta: 22.2MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-09 06:16:59,200 INFO L158 Benchmark]: Boogie Procedure Inliner took 96.02ms. Allocated memory is still 190.8MB. Free memory was 124.4MB in the beginning and 122.3MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 06:16:59,200 INFO L158 Benchmark]: Boogie Preprocessor took 51.78ms. Allocated memory is still 190.8MB. Free memory was 122.3MB in the beginning and 120.5MB in the end (delta: 1.8MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 06:16:59,200 INFO L158 Benchmark]: RCFGBuilder took 875.21ms. Allocated memory is still 190.8MB. Free memory was 120.5MB in the beginning and 90.8MB in the end (delta: 29.7MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. [2024-11-09 06:16:59,202 INFO L158 Benchmark]: TraceAbstraction took 36559.44ms. Allocated memory was 190.8MB in the beginning and 765.5MB in the end (delta: 574.6MB). Free memory was 89.9MB in the beginning and 709.2MB in the end (delta: -619.2MB). Peak memory consumption was 395.8MB. Max. memory is 16.1GB. [2024-11-09 06:16:59,203 INFO L158 Benchmark]: Witness Printer took 181.72ms. Allocated memory is still 765.5MB. Free memory was 709.2MB in the beginning and 700.8MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-09 06:16:59,204 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.44ms. Allocated memory is still 123.7MB. Free memory is still 69.4MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 866.17ms. Allocated memory is still 190.8MB. Free memory was 146.6MB in the beginning and 124.4MB in the end (delta: 22.2MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 96.02ms. Allocated memory is still 190.8MB. Free memory was 124.4MB in the beginning and 122.3MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 51.78ms. Allocated memory is still 190.8MB. Free memory was 122.3MB in the beginning and 120.5MB in the end (delta: 1.8MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 875.21ms. Allocated memory is still 190.8MB. Free memory was 120.5MB in the beginning and 90.8MB in the end (delta: 29.7MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. * TraceAbstraction took 36559.44ms. Allocated memory was 190.8MB in the beginning and 765.5MB in the end (delta: 574.6MB). Free memory was 89.9MB in the beginning and 709.2MB in the end (delta: -619.2MB). Peak memory consumption was 395.8MB. Max. memory is 16.1GB. * Witness Printer took 181.72ms. Allocated memory is still 765.5MB. Free memory was 709.2MB in the beginning and 700.8MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] - GenericResultAtLocation [Line: 160]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [160] - GenericResultAtLocation [Line: 188]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [188] - GenericResultAtLocation [Line: 197]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [197] - GenericResultAtLocation [Line: 267]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [267] - GenericResultAtLocation [Line: 500]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [500] - GenericResultAtLocation [Line: 866]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [866] - GenericResultAtLocation [Line: 904]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [904] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 193]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 65 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 31.7s, OverallIterations: 10, TraceHistogramMax: 6, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 5.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 1459 SdHoareTripleChecker+Valid, 2.8s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 1440 mSDsluCounter, 2299 SdHoareTripleChecker+Invalid, 2.3s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1751 mSDsCounter, 754 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 2066 IncrementalHoareTripleChecker+Invalid, 2820 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 754 mSolverCounterUnsat, 548 mSDtfsCounter, 2066 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 716 GetRequests, 489 SyntacticMatches, 19 SemanticMatches, 208 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6008 ImplicationChecksByTransitivity, 10.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=707occurred in iteration=9, InterpolantAutomatonStates: 112, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.4s AutomataMinimizationTime, 10 MinimizatonAttempts, 174 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 5.9s InterpolantComputationTime, 592 NumberOfCodeBlocks, 592 NumberOfCodeBlocksAsserted, 12 NumberOfCheckSat, 766 ConstructedInterpolants, 0 QuantifiedInterpolants, 2717 SizeOfPredicates, 12 NumberOfNonLiveVariables, 598 ConjunctsInSsa, 49 ConjunctsInUnsatCore, 14 InterpolantComputations, 8 PerfectInterpolantSequences, 384/533 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 210]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 211]: Loop Invariant Derived loop invariant: (((((pumpRunning == 0) && (splverifierCounter == 0)) && (waterLevel == 1)) || (((pumpRunning == 0) && (splverifierCounter == 0)) && (0 == systemActive))) || ((((2 == waterLevel) && (splverifierCounter == 0)) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && (0 != systemActive))) - InvariantResult [Line: 916]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 274]: Location Invariant Derived location invariant: (((((((0 != systemActive) && (\old(waterLevel) == 2)) || ((\old(pumpRunning) == 0) && (0 == systemActive))) || ((\old(waterLevel) == 1) && (\old(pumpRunning) == 0))) && ((pumpRunning == 0) || (0 != systemActive))) && (((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1))) || (0 == systemActive))) && ((((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2)) || (0 == systemActive))) - ProcedureContractResult [Line: 383]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: (0 != systemActive) Ensures: (((pumpRunning == 0) && (0 != systemActive)) && (((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 298]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((pumpRunning == 0) && (waterLevel == 1)) && (0 != systemActive)) Ensures: ((((pumpRunning == 0) && (waterLevel == 1)) && (0 != systemActive)) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 84]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((((2 == waterLevel) && (0 != systemActive)) || ((pumpRunning == 0) && (waterLevel == 1))) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: (((((2 == waterLevel) && (0 != systemActive)) || ((pumpRunning == 0) && (waterLevel == 1))) || ((pumpRunning == 0) && (0 == systemActive))) && (((((waterLevel == \old(waterLevel)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 906]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 274]: Procedure Contract for timeShift Derived contract for procedure timeShift. Requires: ((pumpRunning == 0) || (0 != systemActive)) Ensures: (((((((((\old(pumpRunning) != 0) || (\old(waterLevel) < 2)) || (0 == systemActive)) || (((2 == waterLevel) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && (\old(waterLevel) == 2))) && (((((pumpRunning == 0) && (waterLevel == 1)) || (\old(waterLevel) != 2)) || (0 == systemActive)) || (((2 == waterLevel) && ((pumpRunning == \old(pumpRunning)) || (methaneLevelCritical == 0))) && ((pumpRunning == 0) || (methaneLevelCritical == 0))))) && ((((0 != systemActive) && (\old(waterLevel) == 2)) || ((\old(pumpRunning) == 0) && (0 == systemActive))) || ((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)))) && ((pumpRunning == 0) || (0 != systemActive))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || ((pumpRunning == 0) && (waterLevel == 1))) || (0 == systemActive))) && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 96]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: (((((2 == waterLevel) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && (0 != systemActive)) || ((pumpRunning == 0) && (waterLevel == 1))) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: ((((\result == methaneLevelCritical) || (0 == systemActive)) && (((((2 == waterLevel) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && (0 != systemActive)) || ((pumpRunning == 0) && (waterLevel == 1))) || ((pumpRunning == 0) && (0 == systemActive)))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 306]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: ((pumpRunning == 0) && (((2 == waterLevel) && (0 != systemActive)) || ((waterLevel == 1) && (0 != systemActive)))) Ensures: ((((((1 < waterLevel) || ((pumpRunning == 0) && (\old(pumpRunning) == 0))) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && (0 != systemActive)) && (((2 == waterLevel) && (\old(pumpRunning) == 0)) || (waterLevel == 1))) && (((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 72]: Procedure Contract for waterRise Derived contract for procedure waterRise. Ensures: ((((((((pumpRunning == 0) || (methaneLevelCritical == 0)) && (0 != systemActive)) && (\old(waterLevel) == 2)) || ((pumpRunning == 0) && (\old(waterLevel) == 1))) || ((pumpRunning == 0) && (0 == systemActive))) && ((2 == waterLevel) || (0 == systemActive))) && (((((methaneLevelCritical == \old(methaneLevelCritical)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) RESULT: Ultimate proved your program to be correct! [2024-11-09 06:16:59,258 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_1c2faa1c-f7d0-4555-84f9-0dbd9ec3b5ad/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE