./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec3_product61.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a0165632 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec3_product61.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 53b1b58c0a8af862b137647fd316df606e2053e614741221b62b3a107765e608 --- Real Ultimate output --- This is Ultimate 0.2.5-dev-a016563 [2024-11-09 06:37:39,011 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-09 06:37:39,084 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-09 06:37:39,089 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-09 06:37:39,090 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-09 06:37:39,128 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-09 06:37:39,128 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-09 06:37:39,129 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-09 06:37:39,130 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-09 06:37:39,130 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-09 06:37:39,130 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-09 06:37:39,131 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-09 06:37:39,131 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-09 06:37:39,132 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-09 06:37:39,132 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-09 06:37:39,133 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-09 06:37:39,133 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-09 06:37:39,133 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-09 06:37:39,134 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-09 06:37:39,134 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-09 06:37:39,135 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-09 06:37:39,138 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-09 06:37:39,139 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-09 06:37:39,139 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-09 06:37:39,140 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-09 06:37:39,140 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-09 06:37:39,140 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-09 06:37:39,150 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-09 06:37:39,150 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-09 06:37:39,151 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-09 06:37:39,151 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-09 06:37:39,151 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-09 06:37:39,152 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-09 06:37:39,152 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-09 06:37:39,152 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-09 06:37:39,153 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-09 06:37:39,153 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-09 06:37:39,153 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-09 06:37:39,154 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 06:37:39,154 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-09 06:37:39,154 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-09 06:37:39,155 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-09 06:37:39,155 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-09 06:37:39,155 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-09 06:37:39,156 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-09 06:37:39,156 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-09 06:37:39,156 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-09 06:37:39,157 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 53b1b58c0a8af862b137647fd316df606e2053e614741221b62b3a107765e608 [2024-11-09 06:37:39,521 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-09 06:37:39,565 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-09 06:37:39,568 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-09 06:37:39,572 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-09 06:37:39,573 INFO L274 PluginConnector]: CDTParser initialized [2024-11-09 06:37:39,574 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/../../sv-benchmarks/c/product-lines/minepump_spec3_product61.cil.c Unable to find full path for "g++" [2024-11-09 06:37:41,623 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-09 06:37:41,866 INFO L384 CDTParser]: Found 1 translation units. [2024-11-09 06:37:41,867 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/sv-benchmarks/c/product-lines/minepump_spec3_product61.cil.c [2024-11-09 06:37:41,888 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/data/3796e762f/c24e3dc40faa4178b3f1df2bac707dc5/FLAG7492c91a2 [2024-11-09 06:37:41,911 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/data/3796e762f/c24e3dc40faa4178b3f1df2bac707dc5 [2024-11-09 06:37:41,914 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-09 06:37:41,915 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-09 06:37:41,917 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-09 06:37:41,917 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-09 06:37:41,928 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-09 06:37:41,929 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 06:37:41" (1/1) ... [2024-11-09 06:37:41,930 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@6daf2b86 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:41, skipping insertion in model container [2024-11-09 06:37:41,930 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 06:37:41" (1/1) ... [2024-11-09 06:37:41,994 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-09 06:37:42,278 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/sv-benchmarks/c/product-lines/minepump_spec3_product61.cil.c[7381,7394] [2024-11-09 06:37:42,372 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 06:37:42,390 INFO L200 MainTranslator]: Completed pre-run [2024-11-09 06:37:42,401 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [49] [2024-11-09 06:37:42,402 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [118] [2024-11-09 06:37:42,403 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [368] [2024-11-09 06:37:42,403 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [472] [2024-11-09 06:37:42,403 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [481] [2024-11-09 06:37:42,403 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [580] [2024-11-09 06:37:42,404 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [614] [2024-11-09 06:37:42,404 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [649] [2024-11-09 06:37:42,443 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/sv-benchmarks/c/product-lines/minepump_spec3_product61.cil.c[7381,7394] [2024-11-09 06:37:42,514 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 06:37:42,544 INFO L204 MainTranslator]: Completed translation [2024-11-09 06:37:42,544 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42 WrapperNode [2024-11-09 06:37:42,545 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-09 06:37:42,546 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-09 06:37:42,546 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-09 06:37:42,546 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-09 06:37:42,554 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,572 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,613 INFO L138 Inliner]: procedures = 57, calls = 105, calls flagged for inlining = 23, calls inlined = 20, statements flattened = 226 [2024-11-09 06:37:42,614 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-09 06:37:42,614 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-09 06:37:42,614 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-09 06:37:42,614 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-09 06:37:42,625 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,626 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,628 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,632 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,640 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,647 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,652 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,654 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,660 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-09 06:37:42,661 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-09 06:37:42,661 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-09 06:37:42,662 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-09 06:37:42,662 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (1/1) ... [2024-11-09 06:37:42,677 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 06:37:42,698 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 06:37:42,712 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-09 06:37:42,716 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-09 06:37:42,744 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-09 06:37:42,745 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-09 06:37:42,745 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-09 06:37:42,745 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-09 06:37:42,746 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-09 06:37:42,746 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-09 06:37:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-09 06:37:42,747 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-09 06:37:42,747 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-09 06:37:42,748 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 06:37:42,748 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 06:37:42,748 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-09 06:37:42,749 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-09 06:37:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-09 06:37:42,750 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-09 06:37:42,750 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-09 06:37:42,751 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-09 06:37:42,751 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-09 06:37:42,752 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-09 06:37:42,752 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-09 06:37:42,754 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-09 06:37:42,754 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-09 06:37:42,755 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-09 06:37:42,755 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-09 06:37:42,857 INFO L238 CfgBuilder]: Building ICFG [2024-11-09 06:37:42,860 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-09 06:37:43,171 INFO L? ?]: Removed 54 outVars from TransFormulas that were not future-live. [2024-11-09 06:37:43,172 INFO L287 CfgBuilder]: Performing block encoding [2024-11-09 06:37:43,306 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-09 06:37:43,306 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-09 06:37:43,306 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 06:37:43 BoogieIcfgContainer [2024-11-09 06:37:43,307 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-09 06:37:43,309 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-09 06:37:43,309 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-09 06:37:43,313 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-09 06:37:43,313 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 09.11 06:37:41" (1/3) ... [2024-11-09 06:37:43,314 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@200967d8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 06:37:43, skipping insertion in model container [2024-11-09 06:37:43,314 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 06:37:42" (2/3) ... [2024-11-09 06:37:43,314 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@200967d8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 06:37:43, skipping insertion in model container [2024-11-09 06:37:43,314 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 06:37:43" (3/3) ... [2024-11-09 06:37:43,316 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec3_product61.cil.c [2024-11-09 06:37:43,331 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-09 06:37:43,331 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-09 06:37:43,398 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-09 06:37:43,424 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@14248013, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-09 06:37:43,424 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-09 06:37:43,427 INFO L276 IsEmpty]: Start isEmpty. Operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2024-11-09 06:37:43,437 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-11-09 06:37:43,437 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:37:43,438 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:37:43,438 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:37:43,444 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:37:43,444 INFO L85 PathProgramCache]: Analyzing trace with hash 1716946673, now seen corresponding path program 1 times [2024-11-09 06:37:43,453 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:37:43,453 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1441546089] [2024-11-09 06:37:43,453 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:37:43,470 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:37:43,601 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:37:43,687 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:37:43,688 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:37:43,688 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1441546089] [2024-11-09 06:37:43,689 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1441546089] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:37:43,690 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:37:43,690 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-09 06:37:43,692 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2039922201] [2024-11-09 06:37:43,692 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:37:43,697 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-09 06:37:43,697 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:37:43,729 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-09 06:37:43,730 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 06:37:43,733 INFO L87 Difference]: Start difference. First operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:37:43,828 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:37:43,830 INFO L93 Difference]: Finished difference Result 148 states and 199 transitions. [2024-11-09 06:37:43,832 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-09 06:37:43,834 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-11-09 06:37:43,834 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:37:43,843 INFO L225 Difference]: With dead ends: 148 [2024-11-09 06:37:43,844 INFO L226 Difference]: Without dead ends: 70 [2024-11-09 06:37:43,847 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 06:37:43,850 INFO L432 NwaCegarLoop]: 77 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 77 SdHoareTripleChecker+Invalid, 20 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:37:43,852 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 77 Invalid, 20 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:37:43,871 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2024-11-09 06:37:43,903 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 70. [2024-11-09 06:37:43,907 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 70 states, 42 states have (on average 1.3095238095238095) internal successors, (55), 51 states have internal predecessors, (55), 18 states have call successors, (18), 10 states have call predecessors, (18), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2024-11-09 06:37:43,910 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 70 states to 70 states and 90 transitions. [2024-11-09 06:37:43,914 INFO L78 Accepts]: Start accepts. Automaton has 70 states and 90 transitions. Word has length 17 [2024-11-09 06:37:43,916 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:37:43,916 INFO L471 AbstractCegarLoop]: Abstraction has 70 states and 90 transitions. [2024-11-09 06:37:43,916 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:37:43,917 INFO L276 IsEmpty]: Start isEmpty. Operand 70 states and 90 transitions. [2024-11-09 06:37:43,919 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-11-09 06:37:43,921 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:37:43,921 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:37:43,922 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-09 06:37:43,922 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:37:43,923 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:37:43,924 INFO L85 PathProgramCache]: Analyzing trace with hash 1633330556, now seen corresponding path program 1 times [2024-11-09 06:37:43,925 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:37:43,925 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [935193365] [2024-11-09 06:37:43,925 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:37:43,926 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:37:43,961 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:37:44,103 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:37:44,103 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:37:44,103 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [935193365] [2024-11-09 06:37:44,104 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [935193365] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:37:44,104 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:37:44,104 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 06:37:44,105 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [699768601] [2024-11-09 06:37:44,105 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:37:44,106 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 06:37:44,107 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:37:44,107 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 06:37:44,108 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 06:37:44,108 INFO L87 Difference]: Start difference. First operand 70 states and 90 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:37:44,174 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:37:44,175 INFO L93 Difference]: Finished difference Result 117 states and 151 transitions. [2024-11-09 06:37:44,175 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 06:37:44,176 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2024-11-09 06:37:44,176 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:37:44,177 INFO L225 Difference]: With dead ends: 117 [2024-11-09 06:37:44,178 INFO L226 Difference]: Without dead ends: 62 [2024-11-09 06:37:44,179 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 06:37:44,180 INFO L432 NwaCegarLoop]: 63 mSDtfsCounter, 7 mSDsluCounter, 54 mSDsCounter, 0 mSdLazyCounter, 29 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 117 SdHoareTripleChecker+Invalid, 29 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 29 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 06:37:44,181 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 117 Invalid, 29 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 29 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 06:37:44,182 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-11-09 06:37:44,190 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 62. [2024-11-09 06:37:44,191 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 37 states have (on average 1.3243243243243243) internal successors, (49), 46 states have internal predecessors, (49), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-09 06:37:44,193 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 79 transitions. [2024-11-09 06:37:44,194 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 79 transitions. Word has length 18 [2024-11-09 06:37:44,194 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:37:44,194 INFO L471 AbstractCegarLoop]: Abstraction has 62 states and 79 transitions. [2024-11-09 06:37:44,194 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:37:44,195 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 79 transitions. [2024-11-09 06:37:44,199 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-11-09 06:37:44,200 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:37:44,200 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:37:44,200 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-09 06:37:44,201 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:37:44,201 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:37:44,201 INFO L85 PathProgramCache]: Analyzing trace with hash 1443506012, now seen corresponding path program 1 times [2024-11-09 06:37:44,202 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:37:44,202 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1085587035] [2024-11-09 06:37:44,202 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:37:44,203 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:37:44,250 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:37:44,364 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:37:44,365 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:37:44,365 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1085587035] [2024-11-09 06:37:44,365 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1085587035] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:37:44,365 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:37:44,366 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 06:37:44,366 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1924287809] [2024-11-09 06:37:44,366 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:37:44,367 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 06:37:44,367 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:37:44,367 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 06:37:44,368 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 06:37:44,368 INFO L87 Difference]: Start difference. First operand 62 states and 79 transitions. Second operand has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:37:44,436 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:37:44,436 INFO L93 Difference]: Finished difference Result 122 states and 157 transitions. [2024-11-09 06:37:44,437 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 06:37:44,437 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2024-11-09 06:37:44,438 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:37:44,439 INFO L225 Difference]: With dead ends: 122 [2024-11-09 06:37:44,440 INFO L226 Difference]: Without dead ends: 62 [2024-11-09 06:37:44,441 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 06:37:44,443 INFO L432 NwaCegarLoop]: 61 mSDtfsCounter, 68 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 68 SdHoareTripleChecker+Valid, 61 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 06:37:44,444 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [68 Valid, 61 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 06:37:44,445 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-11-09 06:37:44,468 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 62. [2024-11-09 06:37:44,468 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 37 states have (on average 1.2972972972972974) internal successors, (48), 46 states have internal predecessors, (48), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-09 06:37:44,472 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 78 transitions. [2024-11-09 06:37:44,472 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 78 transitions. Word has length 20 [2024-11-09 06:37:44,473 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:37:44,475 INFO L471 AbstractCegarLoop]: Abstraction has 62 states and 78 transitions. [2024-11-09 06:37:44,475 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 06:37:44,475 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 78 transitions. [2024-11-09 06:37:44,476 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2024-11-09 06:37:44,477 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:37:44,477 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:37:44,477 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-09 06:37:44,477 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:37:44,478 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:37:44,480 INFO L85 PathProgramCache]: Analyzing trace with hash 2073683951, now seen corresponding path program 1 times [2024-11-09 06:37:44,480 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:37:44,481 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [914750375] [2024-11-09 06:37:44,481 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:37:44,481 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:37:44,504 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:37:44,632 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:37:44,632 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:37:44,632 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [914750375] [2024-11-09 06:37:44,633 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [914750375] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:37:44,633 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:37:44,633 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-09 06:37:44,633 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [741229531] [2024-11-09 06:37:44,633 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:37:44,634 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-09 06:37:44,634 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:37:44,635 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-09 06:37:44,635 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-09 06:37:44,635 INFO L87 Difference]: Start difference. First operand 62 states and 78 transitions. Second operand has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-09 06:37:45,020 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:37:45,020 INFO L93 Difference]: Finished difference Result 195 states and 244 transitions. [2024-11-09 06:37:45,021 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 06:37:45,021 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 31 [2024-11-09 06:37:45,022 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:37:45,024 INFO L225 Difference]: With dead ends: 195 [2024-11-09 06:37:45,024 INFO L226 Difference]: Without dead ends: 135 [2024-11-09 06:37:45,025 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-09 06:37:45,026 INFO L432 NwaCegarLoop]: 73 mSDtfsCounter, 134 mSDsluCounter, 97 mSDsCounter, 0 mSdLazyCounter, 159 mSolverCounterSat, 76 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 170 SdHoareTripleChecker+Invalid, 235 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 76 IncrementalHoareTripleChecker+Valid, 159 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-09 06:37:45,027 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 170 Invalid, 235 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [76 Valid, 159 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-09 06:37:45,028 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 135 states. [2024-11-09 06:37:45,055 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 135 to 129. [2024-11-09 06:37:45,056 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 129 states, 83 states have (on average 1.2409638554216869) internal successors, (103), 91 states have internal predecessors, (103), 22 states have call successors, (22), 18 states have call predecessors, (22), 23 states have return successors, (29), 24 states have call predecessors, (29), 22 states have call successors, (29) [2024-11-09 06:37:45,058 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 129 states to 129 states and 154 transitions. [2024-11-09 06:37:45,058 INFO L78 Accepts]: Start accepts. Automaton has 129 states and 154 transitions. Word has length 31 [2024-11-09 06:37:45,059 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:37:45,059 INFO L471 AbstractCegarLoop]: Abstraction has 129 states and 154 transitions. [2024-11-09 06:37:45,060 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-09 06:37:45,060 INFO L276 IsEmpty]: Start isEmpty. Operand 129 states and 154 transitions. [2024-11-09 06:37:45,061 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 37 [2024-11-09 06:37:45,061 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:37:45,061 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:37:45,062 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-09 06:37:45,062 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:37:45,062 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:37:45,063 INFO L85 PathProgramCache]: Analyzing trace with hash 139468980, now seen corresponding path program 1 times [2024-11-09 06:37:45,063 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:37:45,063 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1378473637] [2024-11-09 06:37:45,063 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:37:45,064 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:37:45,088 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:37:45,339 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:37:45,341 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:37:45,341 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1378473637] [2024-11-09 06:37:45,342 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1378473637] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:37:45,342 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:37:45,342 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-09 06:37:45,342 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [590561270] [2024-11-09 06:37:45,342 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:37:45,343 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-09 06:37:45,343 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:37:45,343 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-09 06:37:45,343 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2024-11-09 06:37:45,344 INFO L87 Difference]: Start difference. First operand 129 states and 154 transitions. Second operand has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 3 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-09 06:37:45,548 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:37:45,549 INFO L93 Difference]: Finished difference Result 328 states and 396 transitions. [2024-11-09 06:37:45,549 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-09 06:37:45,550 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 3 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 36 [2024-11-09 06:37:45,550 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:37:45,552 INFO L225 Difference]: With dead ends: 328 [2024-11-09 06:37:45,552 INFO L226 Difference]: Without dead ends: 201 [2024-11-09 06:37:45,554 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2024-11-09 06:37:45,555 INFO L432 NwaCegarLoop]: 63 mSDtfsCounter, 79 mSDsluCounter, 137 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 14 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 79 SdHoareTripleChecker+Valid, 200 SdHoareTripleChecker+Invalid, 90 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 14 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:37:45,556 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [79 Valid, 200 Invalid, 90 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [14 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:37:45,557 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 201 states. [2024-11-09 06:37:45,615 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 201 to 186. [2024-11-09 06:37:45,616 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 186 states, 120 states have (on average 1.2083333333333333) internal successors, (145), 130 states have internal predecessors, (145), 31 states have call successors, (31), 26 states have call predecessors, (31), 34 states have return successors, (41), 35 states have call predecessors, (41), 31 states have call successors, (41) [2024-11-09 06:37:45,622 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 186 states to 186 states and 217 transitions. [2024-11-09 06:37:45,622 INFO L78 Accepts]: Start accepts. Automaton has 186 states and 217 transitions. Word has length 36 [2024-11-09 06:37:45,623 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:37:45,623 INFO L471 AbstractCegarLoop]: Abstraction has 186 states and 217 transitions. [2024-11-09 06:37:45,623 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 3 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-09 06:37:45,623 INFO L276 IsEmpty]: Start isEmpty. Operand 186 states and 217 transitions. [2024-11-09 06:37:45,624 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2024-11-09 06:37:45,625 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:37:45,625 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:37:45,625 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-09 06:37:45,629 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:37:45,629 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:37:45,629 INFO L85 PathProgramCache]: Analyzing trace with hash -745157975, now seen corresponding path program 1 times [2024-11-09 06:37:45,630 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:37:45,630 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1204101677] [2024-11-09 06:37:45,630 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:37:45,630 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:37:45,655 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:37:46,151 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:37:46,151 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:37:46,152 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1204101677] [2024-11-09 06:37:46,152 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1204101677] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:37:46,152 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:37:46,152 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2024-11-09 06:37:46,154 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [344770198] [2024-11-09 06:37:46,154 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:37:46,155 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2024-11-09 06:37:46,155 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:37:46,155 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2024-11-09 06:37:46,157 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=50, Unknown=0, NotChecked=0, Total=72 [2024-11-09 06:37:46,157 INFO L87 Difference]: Start difference. First operand 186 states and 217 transitions. Second operand has 9 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 6 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-09 06:37:46,956 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:37:46,956 INFO L93 Difference]: Finished difference Result 543 states and 670 transitions. [2024-11-09 06:37:46,957 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 14 states. [2024-11-09 06:37:46,957 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 6 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) Word has length 39 [2024-11-09 06:37:46,957 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:37:46,961 INFO L225 Difference]: With dead ends: 543 [2024-11-09 06:37:46,961 INFO L226 Difference]: Without dead ends: 416 [2024-11-09 06:37:46,962 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 19 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 30 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=61, Invalid=149, Unknown=0, NotChecked=0, Total=210 [2024-11-09 06:37:46,963 INFO L432 NwaCegarLoop]: 87 mSDtfsCounter, 362 mSDsluCounter, 168 mSDsCounter, 0 mSdLazyCounter, 392 mSolverCounterSat, 167 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 383 SdHoareTripleChecker+Valid, 255 SdHoareTripleChecker+Invalid, 559 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 167 IncrementalHoareTripleChecker+Valid, 392 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-09 06:37:46,964 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [383 Valid, 255 Invalid, 559 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [167 Valid, 392 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-09 06:37:46,965 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 416 states. [2024-11-09 06:37:47,036 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 416 to 384. [2024-11-09 06:37:47,037 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 384 states, 251 states have (on average 1.2350597609561753) internal successors, (310), 271 states have internal predecessors, (310), 68 states have call successors, (68), 52 states have call predecessors, (68), 64 states have return successors, (89), 71 states have call predecessors, (89), 68 states have call successors, (89) [2024-11-09 06:37:47,039 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 384 states to 384 states and 467 transitions. [2024-11-09 06:37:47,040 INFO L78 Accepts]: Start accepts. Automaton has 384 states and 467 transitions. Word has length 39 [2024-11-09 06:37:47,041 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:37:47,041 INFO L471 AbstractCegarLoop]: Abstraction has 384 states and 467 transitions. [2024-11-09 06:37:47,041 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 6 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-09 06:37:47,041 INFO L276 IsEmpty]: Start isEmpty. Operand 384 states and 467 transitions. [2024-11-09 06:37:47,042 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2024-11-09 06:37:47,043 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:37:47,043 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:37:47,043 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-09 06:37:47,043 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:37:47,044 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:37:47,044 INFO L85 PathProgramCache]: Analyzing trace with hash 221926947, now seen corresponding path program 1 times [2024-11-09 06:37:47,044 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:37:47,044 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2133260409] [2024-11-09 06:37:47,045 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:37:47,045 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:37:47,068 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:37:47,339 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-09 06:37:47,339 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:37:47,339 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2133260409] [2024-11-09 06:37:47,340 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2133260409] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 06:37:47,340 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [88299984] [2024-11-09 06:37:47,340 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:37:47,340 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 06:37:47,340 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 06:37:47,343 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 06:37:47,344 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-09 06:37:47,438 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:37:47,444 INFO L255 TraceCheckSpWp]: Trace formula consists of 197 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-09 06:37:47,450 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 06:37:47,719 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 06:37:47,719 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 06:37:48,177 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-09 06:37:48,177 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [88299984] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 06:37:48,177 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [824154483] [2024-11-09 06:37:48,201 INFO L159 IcfgInterpreter]: Started Sifa with 43 locations of interest [2024-11-09 06:37:48,202 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 06:37:48,206 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 06:37:48,212 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 06:37:48,212 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 06:37:49,156 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 120 for LOIs [2024-11-09 06:37:49,224 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 142 for LOIs [2024-11-09 06:37:50,976 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 139 for LOIs [2024-11-09 06:37:51,602 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 139 for LOIs [2024-11-09 06:37:52,296 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 139 for LOIs [2024-11-09 06:37:52,902 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 146 for LOIs [2024-11-09 06:37:53,115 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 06:38:04,595 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSifa [824154483] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:38:04,596 INFO L185 FreeRefinementEngine]: Found 1 perfect and 3 imperfect interpolant sequences. [2024-11-09 06:38:04,596 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [24] imperfect sequences [10, 9, 10] total 45 [2024-11-09 06:38:04,597 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1657353484] [2024-11-09 06:38:04,597 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:38:04,598 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-11-09 06:38:04,598 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:38:04,599 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-11-09 06:38:04,600 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=217, Invalid=1763, Unknown=0, NotChecked=0, Total=1980 [2024-11-09 06:38:04,600 INFO L87 Difference]: Start difference. First operand 384 states and 467 transitions. Second operand has 25 states, 21 states have (on average 1.4285714285714286) internal successors, (30), 19 states have internal predecessors, (30), 7 states have call successors, (7), 5 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-09 06:38:12,094 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:38:12,095 INFO L93 Difference]: Finished difference Result 781 states and 954 transitions. [2024-11-09 06:38:12,095 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 24 states. [2024-11-09 06:38:12,096 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 21 states have (on average 1.4285714285714286) internal successors, (30), 19 states have internal predecessors, (30), 7 states have call successors, (7), 5 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) Word has length 44 [2024-11-09 06:38:12,096 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:38:12,099 INFO L225 Difference]: With dead ends: 781 [2024-11-09 06:38:12,100 INFO L226 Difference]: Without dead ends: 475 [2024-11-09 06:38:12,102 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 152 GetRequests, 94 SyntacticMatches, 3 SemanticMatches, 55 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 833 ImplicationChecksByTransitivity, 16.2s TimeCoverageRelationStatistics Valid=329, Invalid=2863, Unknown=0, NotChecked=0, Total=3192 [2024-11-09 06:38:12,103 INFO L432 NwaCegarLoop]: 47 mSDtfsCounter, 81 mSDsluCounter, 425 mSDsCounter, 0 mSdLazyCounter, 1290 mSolverCounterSat, 45 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 81 SdHoareTripleChecker+Valid, 472 SdHoareTripleChecker+Invalid, 1335 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 45 IncrementalHoareTripleChecker+Valid, 1290 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.9s IncrementalHoareTripleChecker+Time [2024-11-09 06:38:12,104 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [81 Valid, 472 Invalid, 1335 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [45 Valid, 1290 Invalid, 0 Unknown, 0 Unchecked, 2.9s Time] [2024-11-09 06:38:12,105 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 475 states. [2024-11-09 06:38:12,191 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 475 to 458. [2024-11-09 06:38:12,192 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 458 states, 301 states have (on average 1.212624584717608) internal successors, (365), 322 states have internal predecessors, (365), 80 states have call successors, (80), 64 states have call predecessors, (80), 76 states have return successors, (101), 82 states have call predecessors, (101), 80 states have call successors, (101) [2024-11-09 06:38:12,195 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 458 states to 458 states and 546 transitions. [2024-11-09 06:38:12,197 INFO L78 Accepts]: Start accepts. Automaton has 458 states and 546 transitions. Word has length 44 [2024-11-09 06:38:12,197 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:38:12,197 INFO L471 AbstractCegarLoop]: Abstraction has 458 states and 546 transitions. [2024-11-09 06:38:12,197 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 21 states have (on average 1.4285714285714286) internal successors, (30), 19 states have internal predecessors, (30), 7 states have call successors, (7), 5 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-09 06:38:12,198 INFO L276 IsEmpty]: Start isEmpty. Operand 458 states and 546 transitions. [2024-11-09 06:38:12,199 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2024-11-09 06:38:12,199 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:38:12,200 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:38:12,226 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-09 06:38:12,400 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2024-11-09 06:38:12,401 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:38:12,401 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:38:12,401 INFO L85 PathProgramCache]: Analyzing trace with hash 2100287118, now seen corresponding path program 1 times [2024-11-09 06:38:12,401 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:38:12,401 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1955541754] [2024-11-09 06:38:12,402 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:38:12,402 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:38:12,426 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:38:12,716 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 06:38:12,716 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:38:12,717 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1955541754] [2024-11-09 06:38:12,718 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1955541754] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:38:12,718 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:38:12,718 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2024-11-09 06:38:12,719 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1018927484] [2024-11-09 06:38:12,719 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:38:12,719 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2024-11-09 06:38:12,723 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:38:12,724 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2024-11-09 06:38:12,724 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-09 06:38:12,725 INFO L87 Difference]: Start difference. First operand 458 states and 546 transitions. Second operand has 11 states, 9 states have (on average 3.4444444444444446) internal successors, (31), 8 states have internal predecessors, (31), 2 states have call successors, (8), 1 states have call predecessors, (8), 4 states have return successors, (7), 5 states have call predecessors, (7), 2 states have call successors, (7) [2024-11-09 06:38:13,596 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:38:13,597 INFO L93 Difference]: Finished difference Result 1105 states and 1384 transitions. [2024-11-09 06:38:13,598 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-11-09 06:38:13,598 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 9 states have (on average 3.4444444444444446) internal successors, (31), 8 states have internal predecessors, (31), 2 states have call successors, (8), 1 states have call predecessors, (8), 4 states have return successors, (7), 5 states have call predecessors, (7), 2 states have call successors, (7) Word has length 47 [2024-11-09 06:38:13,598 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:38:13,605 INFO L225 Difference]: With dead ends: 1105 [2024-11-09 06:38:13,607 INFO L226 Difference]: Without dead ends: 822 [2024-11-09 06:38:13,609 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 28 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 23 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 71 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=140, Invalid=460, Unknown=0, NotChecked=0, Total=600 [2024-11-09 06:38:13,611 INFO L432 NwaCegarLoop]: 150 mSDtfsCounter, 130 mSDsluCounter, 840 mSDsCounter, 0 mSdLazyCounter, 705 mSolverCounterSat, 23 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 990 SdHoareTripleChecker+Invalid, 728 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 23 IncrementalHoareTripleChecker+Valid, 705 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-09 06:38:13,612 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 990 Invalid, 728 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [23 Valid, 705 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-09 06:38:13,615 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 822 states. [2024-11-09 06:38:13,767 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 822 to 800. [2024-11-09 06:38:13,768 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 800 states, 527 states have (on average 1.1973434535104364) internal successors, (631), 564 states have internal predecessors, (631), 140 states have call successors, (140), 108 states have call predecessors, (140), 132 states have return successors, (202), 143 states have call predecessors, (202), 140 states have call successors, (202) [2024-11-09 06:38:13,773 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 800 states to 800 states and 973 transitions. [2024-11-09 06:38:13,775 INFO L78 Accepts]: Start accepts. Automaton has 800 states and 973 transitions. Word has length 47 [2024-11-09 06:38:13,775 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:38:13,775 INFO L471 AbstractCegarLoop]: Abstraction has 800 states and 973 transitions. [2024-11-09 06:38:13,776 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 9 states have (on average 3.4444444444444446) internal successors, (31), 8 states have internal predecessors, (31), 2 states have call successors, (8), 1 states have call predecessors, (8), 4 states have return successors, (7), 5 states have call predecessors, (7), 2 states have call successors, (7) [2024-11-09 06:38:13,776 INFO L276 IsEmpty]: Start isEmpty. Operand 800 states and 973 transitions. [2024-11-09 06:38:13,779 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2024-11-09 06:38:13,779 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:38:13,780 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:38:13,780 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-09 06:38:13,780 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:38:13,781 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:38:13,781 INFO L85 PathProgramCache]: Analyzing trace with hash -972926836, now seen corresponding path program 1 times [2024-11-09 06:38:13,781 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:38:13,781 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [826700136] [2024-11-09 06:38:13,781 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:38:13,782 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:38:13,795 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:38:14,047 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-09 06:38:14,047 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:38:14,047 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [826700136] [2024-11-09 06:38:14,047 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [826700136] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:38:14,047 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:38:14,048 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-09 06:38:14,048 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [668336861] [2024-11-09 06:38:14,048 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:38:14,048 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-09 06:38:14,048 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:38:14,049 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-09 06:38:14,049 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-09 06:38:14,049 INFO L87 Difference]: Start difference. First operand 800 states and 973 transitions. Second operand has 8 states, 8 states have (on average 6.0) internal successors, (48), 7 states have internal predecessors, (48), 6 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (10), 5 states have call predecessors, (10), 6 states have call successors, (10) [2024-11-09 06:38:14,542 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:38:14,543 INFO L93 Difference]: Finished difference Result 1393 states and 1722 transitions. [2024-11-09 06:38:14,543 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-09 06:38:14,543 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 6.0) internal successors, (48), 7 states have internal predecessors, (48), 6 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (10), 5 states have call predecessors, (10), 6 states have call successors, (10) Word has length 76 [2024-11-09 06:38:14,544 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:38:14,550 INFO L225 Difference]: With dead ends: 1393 [2024-11-09 06:38:14,550 INFO L226 Difference]: Without dead ends: 865 [2024-11-09 06:38:14,552 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=45, Invalid=87, Unknown=0, NotChecked=0, Total=132 [2024-11-09 06:38:14,553 INFO L432 NwaCegarLoop]: 44 mSDtfsCounter, 172 mSDsluCounter, 57 mSDsCounter, 0 mSdLazyCounter, 208 mSolverCounterSat, 114 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 182 SdHoareTripleChecker+Valid, 101 SdHoareTripleChecker+Invalid, 322 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 114 IncrementalHoareTripleChecker+Valid, 208 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-09 06:38:14,554 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [182 Valid, 101 Invalid, 322 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [114 Valid, 208 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-09 06:38:14,555 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 865 states. [2024-11-09 06:38:14,707 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 865 to 790. [2024-11-09 06:38:14,709 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 790 states, 522 states have (on average 1.1992337164750957) internal successors, (626), 557 states have internal predecessors, (626), 137 states have call successors, (137), 109 states have call predecessors, (137), 130 states have return successors, (194), 139 states have call predecessors, (194), 137 states have call successors, (194) [2024-11-09 06:38:14,713 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 790 states to 790 states and 957 transitions. [2024-11-09 06:38:14,715 INFO L78 Accepts]: Start accepts. Automaton has 790 states and 957 transitions. Word has length 76 [2024-11-09 06:38:14,716 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:38:14,716 INFO L471 AbstractCegarLoop]: Abstraction has 790 states and 957 transitions. [2024-11-09 06:38:14,716 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 6.0) internal successors, (48), 7 states have internal predecessors, (48), 6 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (10), 5 states have call predecessors, (10), 6 states have call successors, (10) [2024-11-09 06:38:14,717 INFO L276 IsEmpty]: Start isEmpty. Operand 790 states and 957 transitions. [2024-11-09 06:38:14,719 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2024-11-09 06:38:14,719 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:38:14,720 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:38:14,721 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-09 06:38:14,721 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:38:14,721 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:38:14,722 INFO L85 PathProgramCache]: Analyzing trace with hash -1496117994, now seen corresponding path program 1 times [2024-11-09 06:38:14,722 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:38:14,722 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [72830963] [2024-11-09 06:38:14,722 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:38:14,723 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:38:14,746 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:38:15,072 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-09 06:38:15,072 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:38:15,072 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [72830963] [2024-11-09 06:38:15,073 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [72830963] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:38:15,073 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 06:38:15,073 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2024-11-09 06:38:15,073 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1043804133] [2024-11-09 06:38:15,073 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:38:15,077 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-11-09 06:38:15,077 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:38:15,078 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-11-09 06:38:15,078 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90 [2024-11-09 06:38:15,078 INFO L87 Difference]: Start difference. First operand 790 states and 957 transitions. Second operand has 10 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (11), 4 states have call predecessors, (11), 3 states have return successors, (10), 4 states have call predecessors, (10), 5 states have call successors, (10) [2024-11-09 06:38:15,979 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:38:15,980 INFO L93 Difference]: Finished difference Result 1393 states and 1719 transitions. [2024-11-09 06:38:15,980 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-11-09 06:38:15,981 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (11), 4 states have call predecessors, (11), 3 states have return successors, (10), 4 states have call predecessors, (10), 5 states have call successors, (10) Word has length 76 [2024-11-09 06:38:15,983 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:38:15,990 INFO L225 Difference]: With dead ends: 1393 [2024-11-09 06:38:15,990 INFO L226 Difference]: Without dead ends: 840 [2024-11-09 06:38:15,992 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 30 GetRequests, 8 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 119 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=139, Invalid=413, Unknown=0, NotChecked=0, Total=552 [2024-11-09 06:38:15,993 INFO L432 NwaCegarLoop]: 42 mSDtfsCounter, 191 mSDsluCounter, 156 mSDsCounter, 0 mSdLazyCounter, 504 mSolverCounterSat, 96 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 200 SdHoareTripleChecker+Valid, 198 SdHoareTripleChecker+Invalid, 600 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 96 IncrementalHoareTripleChecker+Valid, 504 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-09 06:38:15,994 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [200 Valid, 198 Invalid, 600 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [96 Valid, 504 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-09 06:38:15,996 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 840 states. [2024-11-09 06:38:16,134 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 840 to 794. [2024-11-09 06:38:16,136 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 794 states, 524 states have (on average 1.1946564885496183) internal successors, (626), 559 states have internal predecessors, (626), 137 states have call successors, (137), 111 states have call predecessors, (137), 132 states have return successors, (194), 139 states have call predecessors, (194), 137 states have call successors, (194) [2024-11-09 06:38:16,140 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 794 states to 794 states and 957 transitions. [2024-11-09 06:38:16,142 INFO L78 Accepts]: Start accepts. Automaton has 794 states and 957 transitions. Word has length 76 [2024-11-09 06:38:16,142 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:38:16,142 INFO L471 AbstractCegarLoop]: Abstraction has 794 states and 957 transitions. [2024-11-09 06:38:16,142 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (11), 4 states have call predecessors, (11), 3 states have return successors, (10), 4 states have call predecessors, (10), 5 states have call successors, (10) [2024-11-09 06:38:16,143 INFO L276 IsEmpty]: Start isEmpty. Operand 794 states and 957 transitions. [2024-11-09 06:38:16,144 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 78 [2024-11-09 06:38:16,144 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:38:16,144 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:38:16,145 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2024-11-09 06:38:16,145 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:38:16,146 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:38:16,146 INFO L85 PathProgramCache]: Analyzing trace with hash -1552640418, now seen corresponding path program 1 times [2024-11-09 06:38:16,147 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:38:16,148 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2129165093] [2024-11-09 06:38:16,148 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:38:16,149 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:38:16,175 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:38:16,591 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 1 proven. 16 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-09 06:38:16,592 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:38:16,592 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2129165093] [2024-11-09 06:38:16,592 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2129165093] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 06:38:16,592 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1373669963] [2024-11-09 06:38:16,592 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:38:16,592 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 06:38:16,594 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 06:38:16,596 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 06:38:16,598 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-09 06:38:16,701 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:38:16,703 INFO L255 TraceCheckSpWp]: Trace formula consists of 280 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-11-09 06:38:16,706 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 06:38:16,840 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 28 proven. 1 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-11-09 06:38:16,841 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 06:38:17,064 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 17 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-09 06:38:17,065 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1373669963] provided 1 perfect and 1 imperfect interpolant sequences [2024-11-09 06:38:17,065 INFO L185 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2024-11-09 06:38:17,065 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [12, 7] total 17 [2024-11-09 06:38:17,065 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [185015731] [2024-11-09 06:38:17,065 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:38:17,065 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-09 06:38:17,066 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:38:17,066 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-09 06:38:17,066 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=62, Invalid=210, Unknown=0, NotChecked=0, Total=272 [2024-11-09 06:38:17,066 INFO L87 Difference]: Start difference. First operand 794 states and 957 transitions. Second operand has 7 states, 7 states have (on average 7.0) internal successors, (49), 7 states have internal predecessors, (49), 3 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (10), 3 states have call predecessors, (10), 2 states have call successors, (10) [2024-11-09 06:38:17,454 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:38:17,454 INFO L93 Difference]: Finished difference Result 1568 states and 1936 transitions. [2024-11-09 06:38:17,454 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-09 06:38:17,455 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 7.0) internal successors, (49), 7 states have internal predecessors, (49), 3 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (10), 3 states have call predecessors, (10), 2 states have call successors, (10) Word has length 77 [2024-11-09 06:38:17,455 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:38:17,462 INFO L225 Difference]: With dead ends: 1568 [2024-11-09 06:38:17,462 INFO L226 Difference]: Without dead ends: 1045 [2024-11-09 06:38:17,465 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 168 GetRequests, 149 SyntacticMatches, 2 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 98 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=80, Invalid=262, Unknown=0, NotChecked=0, Total=342 [2024-11-09 06:38:17,466 INFO L432 NwaCegarLoop]: 68 mSDtfsCounter, 132 mSDsluCounter, 117 mSDsCounter, 0 mSdLazyCounter, 116 mSolverCounterSat, 30 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 132 SdHoareTripleChecker+Valid, 185 SdHoareTripleChecker+Invalid, 146 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 30 IncrementalHoareTripleChecker+Valid, 116 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 06:38:17,466 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [132 Valid, 185 Invalid, 146 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [30 Valid, 116 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 06:38:17,468 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1045 states. [2024-11-09 06:38:17,638 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1045 to 1011. [2024-11-09 06:38:17,641 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1011 states, 665 states have (on average 1.1654135338345866) internal successors, (775), 708 states have internal predecessors, (775), 172 states have call successors, (172), 144 states have call predecessors, (172), 173 states have return successors, (262), 175 states have call predecessors, (262), 172 states have call successors, (262) [2024-11-09 06:38:17,646 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1011 states to 1011 states and 1209 transitions. [2024-11-09 06:38:17,649 INFO L78 Accepts]: Start accepts. Automaton has 1011 states and 1209 transitions. Word has length 77 [2024-11-09 06:38:17,649 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:38:17,649 INFO L471 AbstractCegarLoop]: Abstraction has 1011 states and 1209 transitions. [2024-11-09 06:38:17,649 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 7.0) internal successors, (49), 7 states have internal predecessors, (49), 3 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (10), 3 states have call predecessors, (10), 2 states have call successors, (10) [2024-11-09 06:38:17,650 INFO L276 IsEmpty]: Start isEmpty. Operand 1011 states and 1209 transitions. [2024-11-09 06:38:17,651 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 84 [2024-11-09 06:38:17,651 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 06:38:17,652 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:38:17,676 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-09 06:38:17,856 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-11-09 06:38:17,857 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 06:38:17,857 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 06:38:17,858 INFO L85 PathProgramCache]: Analyzing trace with hash 1967871326, now seen corresponding path program 1 times [2024-11-09 06:38:17,858 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 06:38:17,858 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [579275875] [2024-11-09 06:38:17,858 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:38:17,858 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 06:38:17,873 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:38:18,044 INFO L134 CoverageAnalysis]: Checked inductivity of 35 backedges. 5 proven. 15 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-11-09 06:38:18,044 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 06:38:18,044 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [579275875] [2024-11-09 06:38:18,044 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [579275875] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 06:38:18,045 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1561554276] [2024-11-09 06:38:18,045 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 06:38:18,045 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 06:38:18,045 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 06:38:18,047 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 06:38:18,051 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-09 06:38:18,167 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 06:38:18,169 INFO L255 TraceCheckSpWp]: Trace formula consists of 284 conjuncts, 5 conjuncts are in the unsatisfiable core [2024-11-09 06:38:18,173 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 06:38:18,264 INFO L134 CoverageAnalysis]: Checked inductivity of 35 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 21 trivial. 0 not checked. [2024-11-09 06:38:18,264 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-09 06:38:18,264 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1561554276] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 06:38:18,265 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-09 06:38:18,265 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [7] total 8 [2024-11-09 06:38:18,265 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [24887795] [2024-11-09 06:38:18,266 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 06:38:18,266 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-09 06:38:18,266 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 06:38:18,267 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-09 06:38:18,267 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-09 06:38:18,267 INFO L87 Difference]: Start difference. First operand 1011 states and 1209 transitions. Second operand has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-09 06:38:18,556 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 06:38:18,556 INFO L93 Difference]: Finished difference Result 1488 states and 1794 transitions. [2024-11-09 06:38:18,556 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-09 06:38:18,557 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 83 [2024-11-09 06:38:18,557 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 06:38:18,559 INFO L225 Difference]: With dead ends: 1488 [2024-11-09 06:38:18,559 INFO L226 Difference]: Without dead ends: 0 [2024-11-09 06:38:18,565 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 93 GetRequests, 85 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=26, Invalid=64, Unknown=0, NotChecked=0, Total=90 [2024-11-09 06:38:18,566 INFO L432 NwaCegarLoop]: 57 mSDtfsCounter, 28 mSDsluCounter, 155 mSDsCounter, 0 mSdLazyCounter, 89 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 28 SdHoareTripleChecker+Valid, 212 SdHoareTripleChecker+Invalid, 92 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 89 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 06:38:18,566 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [28 Valid, 212 Invalid, 92 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 89 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 06:38:18,567 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-09 06:38:18,567 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-09 06:38:18,567 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 06:38:18,567 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-09 06:38:18,569 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 83 [2024-11-09 06:38:18,569 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 06:38:18,569 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-09 06:38:18,570 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-09 06:38:18,570 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-09 06:38:18,570 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-09 06:38:18,572 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-09 06:38:18,598 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-09 06:38:18,774 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2024-11-09 06:38:18,778 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 06:38:18,781 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-09 06:38:37,167 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-09 06:38:37,188 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (not (= |old(~pumpRunning~0)| 0)) (<= ~waterLevel~0 1) (= 1 ~systemActive~0)) Eliminated clause: (and (not (= ~pumpRunning~0 0)) (<= ~waterLevel~0 1) (= 1 ~systemActive~0)) [2024-11-09 06:38:37,198 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (and (or (= |old(~methaneLevelCritical~0)| 0) (not (= ~methaneLevelCritical~0 0)) (< ~waterLevel~0 2) (= ~pumpRunning~0 1)) (= 1 ~systemActive~0) (< ~waterLevel~0 3)) Eliminated clause: (and (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) [2024-11-09 06:38:37,207 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 1 ~systemActive~0) (= |old(~waterLevel~0)| ~waterLevel~0) (< |old(~waterLevel~0)| 3)) Eliminated clause: (and (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) [2024-11-09 06:38:37,222 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and .cse0 (= |old(~pumpRunning~0)| 0) (<= ~waterLevel~0 2))))) Eliminated clause: (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and (= ~pumpRunning~0 0) .cse0 (<= ~waterLevel~0 2)))) [2024-11-09 06:38:37,228 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (= |old(~waterLevel~0)| ~waterLevel~0) (let ((.cse0 (= 1 ~systemActive~0))) (or (and .cse0 (<= |old(~waterLevel~0)| 1)) (and (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) .cse0 (< |old(~waterLevel~0)| 3)) (and (= ~pumpRunning~0 0) .cse0 (<= |old(~waterLevel~0)| 2))))) Eliminated clause: (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (<= ~waterLevel~0 2))) (or (and (<= ~waterLevel~0 1) .cse0) (and (= ~pumpRunning~0 0) .cse0 .cse1) (and (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) .cse0 .cse1))) [2024-11-09 06:38:37,236 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and .cse0 (= |old(~pumpRunning~0)| 0) (<= ~waterLevel~0 2))))) Eliminated clause: (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and (= ~pumpRunning~0 0) .cse0 (<= ~waterLevel~0 2)))) [2024-11-09 06:38:37,246 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 09.11 06:38:37 BoogieIcfgContainer [2024-11-09 06:38:37,246 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-09 06:38:37,247 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-09 06:38:37,247 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-09 06:38:37,247 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-09 06:38:37,248 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 06:37:43" (3/4) ... [2024-11-09 06:38:37,251 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-09 06:38:37,255 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-09 06:38:37,255 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-09 06:38:37,255 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-09 06:38:37,255 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-09 06:38:37,256 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-09 06:38:37,256 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-09 06:38:37,256 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 06:38:37,257 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-09 06:38:37,257 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-09 06:38:37,257 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-09 06:38:37,265 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 47 nodes and edges [2024-11-09 06:38:37,265 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-09 06:38:37,266 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-09 06:38:37,266 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 06:38:37,267 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 06:38:37,298 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == \old(pumpRunning)) && (1 == systemActive)) && (\old(waterLevel) == waterLevel)) && (\old(waterLevel) < 3)) [2024-11-09 06:38:37,352 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == \old(pumpRunning)) && (1 == systemActive)) && (\old(waterLevel) == waterLevel)) && (\old(waterLevel) < 3)) [2024-11-09 06:38:37,412 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/witness.graphml [2024-11-09 06:38:37,412 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/witness.yml [2024-11-09 06:38:37,412 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-09 06:38:37,413 INFO L158 Benchmark]: Toolchain (without parser) took 55497.49ms. Allocated memory was 151.0MB in the beginning and 574.6MB in the end (delta: 423.6MB). Free memory was 112.3MB in the beginning and 331.8MB in the end (delta: -219.4MB). Peak memory consumption was 206.8MB. Max. memory is 16.1GB. [2024-11-09 06:38:37,413 INFO L158 Benchmark]: CDTParser took 0.30ms. Allocated memory is still 151.0MB. Free memory is still 117.0MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-09 06:38:37,414 INFO L158 Benchmark]: CACSL2BoogieTranslator took 628.05ms. Allocated memory is still 151.0MB. Free memory was 112.3MB in the beginning and 90.2MB in the end (delta: 22.1MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. [2024-11-09 06:38:37,414 INFO L158 Benchmark]: Boogie Procedure Inliner took 67.87ms. Allocated memory is still 151.0MB. Free memory was 90.2MB in the beginning and 87.7MB in the end (delta: 2.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 06:38:37,414 INFO L158 Benchmark]: Boogie Preprocessor took 46.36ms. Allocated memory is still 151.0MB. Free memory was 87.7MB in the beginning and 86.1MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 06:38:37,415 INFO L158 Benchmark]: RCFGBuilder took 645.39ms. Allocated memory is still 151.0MB. Free memory was 86.1MB in the beginning and 54.7MB in the end (delta: 31.5MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. [2024-11-09 06:38:37,415 INFO L158 Benchmark]: TraceAbstraction took 53937.56ms. Allocated memory was 151.0MB in the beginning and 574.6MB in the end (delta: 423.6MB). Free memory was 54.1MB in the beginning and 340.1MB in the end (delta: -286.0MB). Peak memory consumption was 284.6MB. Max. memory is 16.1GB. [2024-11-09 06:38:37,415 INFO L158 Benchmark]: Witness Printer took 165.21ms. Allocated memory is still 574.6MB. Free memory was 340.1MB in the beginning and 331.8MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-09 06:38:37,417 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.30ms. Allocated memory is still 151.0MB. Free memory is still 117.0MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 628.05ms. Allocated memory is still 151.0MB. Free memory was 112.3MB in the beginning and 90.2MB in the end (delta: 22.1MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 67.87ms. Allocated memory is still 151.0MB. Free memory was 90.2MB in the beginning and 87.7MB in the end (delta: 2.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 46.36ms. Allocated memory is still 151.0MB. Free memory was 87.7MB in the beginning and 86.1MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 645.39ms. Allocated memory is still 151.0MB. Free memory was 86.1MB in the beginning and 54.7MB in the end (delta: 31.5MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. * TraceAbstraction took 53937.56ms. Allocated memory was 151.0MB in the beginning and 574.6MB in the end (delta: 423.6MB). Free memory was 54.1MB in the beginning and 340.1MB in the end (delta: -286.0MB). Peak memory consumption was 284.6MB. Max. memory is 16.1GB. * Witness Printer took 165.21ms. Allocated memory is still 574.6MB. Free memory was 340.1MB in the beginning and 331.8MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [49] - GenericResultAtLocation [Line: 118]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [118] - GenericResultAtLocation [Line: 368]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [368] - GenericResultAtLocation [Line: 472]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [472] - GenericResultAtLocation [Line: 481]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [481] - GenericResultAtLocation [Line: 580]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [580] - GenericResultAtLocation [Line: 614]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [614] - GenericResultAtLocation [Line: 649]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [649] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 477]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 75 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 35.4s, OverallIterations: 12, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 12.2s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 1435 SdHoareTripleChecker+Valid, 5.6s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 1384 mSDsluCounter, 3038 SdHoareTripleChecker+Invalid, 5.0s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2206 mSDsCounter, 569 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3604 IncrementalHoareTripleChecker+Invalid, 4173 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 569 mSolverCounterUnsat, 832 mSDtfsCounter, 3604 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 533 GetRequests, 367 SyntacticMatches, 5 SemanticMatches, 161 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1173 ImplicationChecksByTransitivity, 17.3s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1011occurred in iteration=11, InterpolantAutomatonStates: 125, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 1.0s AutomataMinimizationTime, 12 MinimizatonAttempts, 247 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 4.1s InterpolantComputationTime, 768 NumberOfCodeBlocks, 768 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 872 ConstructedInterpolants, 0 QuantifiedInterpolants, 2342 SizeOfPredicates, 8 NumberOfNonLiveVariables, 761 ConjunctsInSsa, 30 ConjunctsInUnsatCore, 17 InterpolantComputations, 11 PerfectInterpolantSequences, 205/241 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: OVERALL_TIME: 4.9s, ICFG_INTERPRETER_ENTERED_PROCEDURES: 7, DAG_INTERPRETER_EARLY_EXIT_QUERIES_NONTRIVIAL: 46, DAG_INTERPRETER_EARLY_EXITS: 1, TOOLS_POST_APPLICATIONS: 41, TOOLS_POST_TIME: 1.9s, TOOLS_POST_CALL_APPLICATIONS: 25, TOOLS_POST_CALL_TIME: 1.2s, TOOLS_POST_RETURN_APPLICATIONS: 18, TOOLS_POST_RETURN_TIME: 1.0s, TOOLS_QUANTIFIERELIM_APPLICATIONS: 84, TOOLS_QUANTIFIERELIM_TIME: 4.0s, TOOLS_QUANTIFIERELIM_MAX_TIME: 0.2s, FLUID_QUERY_TIME: 0.0s, FLUID_QUERIES: 124, FLUID_YES_ANSWERS: 0, DOMAIN_JOIN_APPLICATIONS: 16, DOMAIN_JOIN_TIME: 0.6s, DOMAIN_ALPHA_APPLICATIONS: 0, DOMAIN_ALPHA_TIME: 0.0s, DOMAIN_WIDEN_APPLICATIONS: 0, DOMAIN_WIDEN_TIME: 0.0s, DOMAIN_ISSUBSETEQ_APPLICATIONS: 0, DOMAIN_ISSUBSETEQ_TIME: 0.0s, DOMAIN_ISBOTTOM_APPLICATIONS: 46, DOMAIN_ISBOTTOM_TIME: 0.1s, LOOP_SUMMARIZER_APPLICATIONS: 0, LOOP_SUMMARIZER_CACHE_MISSES: 0, LOOP_SUMMARIZER_OVERALL_TIME: 0.0s, LOOP_SUMMARIZER_NEW_COMPUTATION_TIME: 0.0s, LOOP_SUMMARIZER_FIXPOINT_ITERATIONS: 0, CALL_SUMMARIZER_APPLICATIONS: 18, CALL_SUMMARIZER_CACHE_MISSES: 5, CALL_SUMMARIZER_OVERALL_TIME: 0.1s, CALL_SUMMARIZER_NEW_COMPUTATION_TIME: 0.1s, PROCEDURE_GRAPH_BUILDER_TIME: 0.0s, PATH_EXPR_TIME: 0.0s, REGEX_TO_DAG_TIME: 0.0s, DAG_COMPRESSION_TIME: 0.0s, DAG_COMPRESSION_PROCESSED_NODES: 348, DAG_COMPRESSION_RETAINED_NODES: 122, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 63]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 493]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 64]: Loop Invariant Derived loop invariant: (((((2 == waterLevel) && ((methaneLevelCritical != 0) || (pumpRunning == 1))) && (1 == systemActive)) && (splverifierCounter == 0)) || (((waterLevel <= 1) && (1 == systemActive)) && (splverifierCounter == 0))) - InvariantResult [Line: 132]: Location Invariant Derived location invariant: ((((pumpRunning == \old(pumpRunning)) && (1 == systemActive)) && (\old(waterLevel) == waterLevel)) && (\old(waterLevel) < 3)) - ProcedureContractResult [Line: 266]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: (((pumpRunning != 0) && (waterLevel <= 1)) && (1 == systemActive)) Ensures: (((((\old(pumpRunning) != 0) && (pumpRunning == 0)) && (waterLevel <= 1)) && (1 == systemActive)) && (((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 156]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((waterLevel <= 1) && (1 == systemActive)) Ensures: (((waterLevel <= 1) && (1 == systemActive)) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 396]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((1 == systemActive) && (waterLevel <= 2)) Ensures: (((1 == systemActive) && (waterLevel <= 2)) && (((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 408]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: (((((pumpRunning == 0) || (waterLevel < 2)) && (1 == systemActive)) && (waterLevel <= 2)) || ((((methaneLevelCritical != 0) || (pumpRunning == 1)) && (1 == systemActive)) && (waterLevel <= 2))) Ensures: (((\result == methaneLevelCritical) && (((((pumpRunning == 0) || (waterLevel < 2)) && (1 == systemActive)) && (waterLevel <= 2)) || ((((methaneLevelCritical != 0) || (pumpRunning == 1)) && (1 == systemActive)) && (waterLevel <= 2)))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 483]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((systemActive == \old(systemActive)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 132]: Procedure Contract for timeShift Derived contract for procedure timeShift. Requires: ((1 == systemActive) && (waterLevel <= 2)) Ensures: ((((((((waterLevel < 2) || (\old(waterLevel) == 2)) && (((\old(pumpRunning) != 1) || ((waterLevel <= 1) && (pumpRunning == 1))) || ((pumpRunning == 0) && (waterLevel <= 1)))) && (1 == systemActive)) && (((((((pumpRunning == 0) && (waterLevel <= 1)) && (\old(pumpRunning) == 0)) && (\old(waterLevel) == waterLevel)) || ((((waterLevel != 1) && ((methaneLevelCritical != 0) || (pumpRunning == 1))) && (waterLevel <= 2)) && ((\old(pumpRunning) != 0) || (\old(waterLevel) == waterLevel)))) || (((pumpRunning == \old(pumpRunning)) && (\old(pumpRunning) != 0)) && (waterLevel <= 1))) || (((\old(pumpRunning) != 0) && (pumpRunning == 0)) && (waterLevel <= 1)))) && (((((pumpRunning == 0) && (waterLevel <= 1)) && (\old(waterLevel) == waterLevel)) || (\old(pumpRunning) != 0)) || (\old(waterLevel) == 2))) && (\old(waterLevel) <= 2)) && ((((systemActive == \old(systemActive)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 164]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: (((waterLevel <= 1) && (1 == systemActive)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) Ensures: ((((((waterLevel <= 1) && (1 == systemActive)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2))) && (((methaneLevelCritical != 0) || (waterLevel < 2)) || (pumpRunning == 1))) && ((pumpRunning == \old(pumpRunning)) || (2 == waterLevel))) && (((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 384]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: ((((waterLevel <= 1) && (1 == systemActive)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) || ((((methaneLevelCritical != 0) || (pumpRunning == 1)) && (1 == systemActive)) && (waterLevel <= 2))) Ensures: ((((((((((methaneLevelCritical != 0) || (pumpRunning == 1)) && (1 == systemActive)) && (\old(waterLevel) <= 2)) || ((1 == systemActive) && (\old(waterLevel) <= 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) <= 2))) && ((2 == waterLevel) || (\old(waterLevel) != 1))) && (waterLevel <= 2)) && (((2 == waterLevel) || (\old(waterLevel) < 2)) || ((methaneLevelCritical == 0) && (pumpRunning != 1)))) && (((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 190]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Requires: (((waterLevel <= 1) && (1 == systemActive)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) Ensures: (((((((waterLevel <= 1) && (1 == systemActive)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2))) && ((((\old(pumpRunning) != 0) || (methaneLevelCritical != 0)) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) || (pumpRunning == 1))) && (((\old(pumpRunning) != 0) || (1 < waterLevel)) || ((pumpRunning == 0) && (1 == systemActive)))) && (((pumpRunning == \old(pumpRunning)) || (pumpRunning == 0)) || (\old(pumpRunning) == 0))) && (((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) - ProcedureContractResult [Line: 274]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: (((((waterLevel != 1) && (pumpRunning == 0)) && (1 == systemActive)) && (waterLevel <= 2)) || (((pumpRunning != 0) && (waterLevel <= 1)) && (1 == systemActive))) Ensures: ((((\result == 0) || (methaneLevelCritical != 0)) && (((((waterLevel != 1) && (pumpRunning == 0)) && (1 == systemActive)) && (waterLevel <= 2)) || (((pumpRunning != 0) && (waterLevel <= 1)) && (1 == systemActive)))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head)))) RESULT: Ultimate proved your program to be correct! [2024-11-09 06:38:37,467 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a76fb367-a4f5-456d-9d4f-bd7b39c02c82/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE