./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec4_product56.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a0165632 Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec4_product56.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 03daf3415808298ae6016bdc33e04662b3dd63f1cba0029f4033bbf040a042d2 --- Real Ultimate output --- This is Ultimate 0.2.5-dev-a016563 [2024-11-09 04:29:25,788 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-09 04:29:25,909 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-09 04:29:25,915 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-09 04:29:25,916 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-09 04:29:25,950 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-09 04:29:25,952 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-09 04:29:25,953 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-09 04:29:25,954 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-09 04:29:25,955 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-09 04:29:25,956 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-09 04:29:25,956 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-09 04:29:25,957 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-09 04:29:25,957 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-09 04:29:25,960 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-09 04:29:25,960 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-09 04:29:25,961 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-09 04:29:25,961 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-09 04:29:25,961 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-09 04:29:25,962 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-09 04:29:25,962 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-09 04:29:25,966 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-09 04:29:25,966 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-09 04:29:25,967 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-09 04:29:25,967 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-09 04:29:25,967 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-09 04:29:25,967 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-09 04:29:25,968 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-09 04:29:25,968 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-09 04:29:25,968 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-09 04:29:25,968 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-09 04:29:25,971 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-09 04:29:25,972 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-09 04:29:25,972 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-09 04:29:25,973 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-09 04:29:25,973 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-09 04:29:25,973 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-09 04:29:25,974 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-09 04:29:25,974 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 04:29:25,974 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-09 04:29:25,974 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-09 04:29:25,976 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-09 04:29:25,977 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-09 04:29:25,977 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-09 04:29:25,978 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-09 04:29:25,978 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-09 04:29:25,978 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-09 04:29:25,979 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 03daf3415808298ae6016bdc33e04662b3dd63f1cba0029f4033bbf040a042d2 [2024-11-09 04:29:26,293 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-09 04:29:26,323 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-09 04:29:26,327 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-09 04:29:26,329 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-09 04:29:26,330 INFO L274 PluginConnector]: CDTParser initialized [2024-11-09 04:29:26,331 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/../../sv-benchmarks/c/product-lines/minepump_spec4_product56.cil.c Unable to find full path for "g++" [2024-11-09 04:29:28,304 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-09 04:29:28,621 INFO L384 CDTParser]: Found 1 translation units. [2024-11-09 04:29:28,622 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/sv-benchmarks/c/product-lines/minepump_spec4_product56.cil.c [2024-11-09 04:29:28,641 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/data/cf0074bcd/22d8c2e6dd8d42b09de67df77f9a9a0a/FLAG0db1ab2a8 [2024-11-09 04:29:28,660 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/data/cf0074bcd/22d8c2e6dd8d42b09de67df77f9a9a0a [2024-11-09 04:29:28,662 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-09 04:29:28,665 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-09 04:29:28,668 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-09 04:29:28,668 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-09 04:29:28,674 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-09 04:29:28,676 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 04:29:28" (1/1) ... [2024-11-09 04:29:28,678 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@4402c948 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:28, skipping insertion in model container [2024-11-09 04:29:28,678 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 04:29:28" (1/1) ... [2024-11-09 04:29:28,741 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-09 04:29:29,099 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/sv-benchmarks/c/product-lines/minepump_spec4_product56.cil.c[17338,17351] [2024-11-09 04:29:29,124 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 04:29:29,143 INFO L200 MainTranslator]: Completed pre-run [2024-11-09 04:29:29,158 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] [2024-11-09 04:29:29,159 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [308] [2024-11-09 04:29:29,160 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [674] [2024-11-09 04:29:29,160 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [746] [2024-11-09 04:29:29,160 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [774] [2024-11-09 04:29:29,161 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [873] [2024-11-09 04:29:29,161 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [882] [2024-11-09 04:29:29,161 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [985] [2024-11-09 04:29:29,258 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/sv-benchmarks/c/product-lines/minepump_spec4_product56.cil.c[17338,17351] [2024-11-09 04:29:29,264 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 04:29:29,293 INFO L204 MainTranslator]: Completed translation [2024-11-09 04:29:29,293 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29 WrapperNode [2024-11-09 04:29:29,294 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-09 04:29:29,295 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-09 04:29:29,295 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-09 04:29:29,296 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-09 04:29:29,304 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,325 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,373 INFO L138 Inliner]: procedures = 58, calls = 105, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 235 [2024-11-09 04:29:29,374 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-09 04:29:29,376 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-09 04:29:29,376 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-09 04:29:29,377 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-09 04:29:29,407 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,407 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,412 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,413 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,425 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,433 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,435 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,440 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,444 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-09 04:29:29,446 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-09 04:29:29,446 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-09 04:29:29,447 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-09 04:29:29,452 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (1/1) ... [2024-11-09 04:29:29,459 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 04:29:29,498 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:29:29,513 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-09 04:29:29,516 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-09 04:29:29,545 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-09 04:29:29,545 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-09 04:29:29,545 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-09 04:29:29,545 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-09 04:29:29,545 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-09 04:29:29,545 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-09 04:29:29,545 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-09 04:29:29,546 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:29:29,546 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:29:29,546 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-09 04:29:29,546 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-09 04:29:29,547 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2024-11-09 04:29:29,547 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2024-11-09 04:29:29,547 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-09 04:29:29,547 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-09 04:29:29,548 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-09 04:29:29,548 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-09 04:29:29,548 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-09 04:29:29,548 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-09 04:29:29,548 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-09 04:29:29,639 INFO L238 CfgBuilder]: Building ICFG [2024-11-09 04:29:29,640 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-09 04:29:30,067 INFO L? ?]: Removed 52 outVars from TransFormulas that were not future-live. [2024-11-09 04:29:30,067 INFO L287 CfgBuilder]: Performing block encoding [2024-11-09 04:29:30,219 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-09 04:29:30,219 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-09 04:29:30,221 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:29:30 BoogieIcfgContainer [2024-11-09 04:29:30,221 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-09 04:29:30,224 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-09 04:29:30,224 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-09 04:29:30,229 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-09 04:29:30,230 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 09.11 04:29:28" (1/3) ... [2024-11-09 04:29:30,231 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3d18b7 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 04:29:30, skipping insertion in model container [2024-11-09 04:29:30,231 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:29:29" (2/3) ... [2024-11-09 04:29:30,232 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3d18b7 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 04:29:30, skipping insertion in model container [2024-11-09 04:29:30,233 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:29:30" (3/3) ... [2024-11-09 04:29:30,234 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product56.cil.c [2024-11-09 04:29:30,253 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-09 04:29:30,253 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-09 04:29:30,325 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-09 04:29:30,333 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@76b11eb0, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-09 04:29:30,333 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-09 04:29:30,337 INFO L276 IsEmpty]: Start isEmpty. Operand has 67 states, 42 states have (on average 1.4761904761904763) internal successors, (62), 53 states have internal predecessors, (62), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-09 04:29:30,344 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2024-11-09 04:29:30,345 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:30,345 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:30,346 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:30,353 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:30,353 INFO L85 PathProgramCache]: Analyzing trace with hash 285208489, now seen corresponding path program 1 times [2024-11-09 04:29:30,366 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:30,367 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1521509245] [2024-11-09 04:29:30,367 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:30,368 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:30,468 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:30,534 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:29:30,534 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:30,534 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1521509245] [2024-11-09 04:29:30,535 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1521509245] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:30,535 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:29:30,535 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-09 04:29:30,537 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [574026100] [2024-11-09 04:29:30,537 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:30,541 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-09 04:29:30,541 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:30,561 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-09 04:29:30,561 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 04:29:30,563 INFO L87 Difference]: Start difference. First operand has 67 states, 42 states have (on average 1.4761904761904763) internal successors, (62), 53 states have internal predecessors, (62), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) Second operand has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:29:30,655 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:30,655 INFO L93 Difference]: Finished difference Result 132 states and 185 transitions. [2024-11-09 04:29:30,657 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-09 04:29:30,658 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 12 [2024-11-09 04:29:30,659 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:30,670 INFO L225 Difference]: With dead ends: 132 [2024-11-09 04:29:30,670 INFO L226 Difference]: Without dead ends: 62 [2024-11-09 04:29:30,674 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 04:29:30,678 INFO L432 NwaCegarLoop]: 70 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 70 SdHoareTripleChecker+Invalid, 20 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:30,679 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 70 Invalid, 20 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:29:30,698 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-11-09 04:29:30,717 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 62. [2024-11-09 04:29:30,719 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 39 states have (on average 1.3846153846153846) internal successors, (54), 49 states have internal predecessors, (54), 15 states have call successors, (15), 8 states have call predecessors, (15), 7 states have return successors, (14), 9 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-09 04:29:30,721 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 83 transitions. [2024-11-09 04:29:30,723 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 83 transitions. Word has length 12 [2024-11-09 04:29:30,723 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:30,723 INFO L471 AbstractCegarLoop]: Abstraction has 62 states and 83 transitions. [2024-11-09 04:29:30,724 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:29:30,724 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 83 transitions. [2024-11-09 04:29:30,726 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2024-11-09 04:29:30,726 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:30,726 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:30,727 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-09 04:29:30,727 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:30,728 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:30,728 INFO L85 PathProgramCache]: Analyzing trace with hash 1337703055, now seen corresponding path program 1 times [2024-11-09 04:29:30,728 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:30,729 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [406143784] [2024-11-09 04:29:30,729 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:30,729 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:30,749 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:30,876 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:29:30,877 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:30,877 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [406143784] [2024-11-09 04:29:30,878 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [406143784] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:30,878 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:29:30,878 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 04:29:30,878 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [662314987] [2024-11-09 04:29:30,879 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:30,882 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 04:29:30,884 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:30,885 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 04:29:30,885 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:29:30,885 INFO L87 Difference]: Start difference. First operand 62 states and 83 transitions. Second operand has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:29:30,967 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:30,968 INFO L93 Difference]: Finished difference Result 96 states and 128 transitions. [2024-11-09 04:29:30,969 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 04:29:30,970 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 13 [2024-11-09 04:29:30,970 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:30,972 INFO L225 Difference]: With dead ends: 96 [2024-11-09 04:29:30,973 INFO L226 Difference]: Without dead ends: 54 [2024-11-09 04:29:30,974 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:29:30,976 INFO L432 NwaCegarLoop]: 56 mSDtfsCounter, 14 mSDsluCounter, 40 mSDsCounter, 0 mSdLazyCounter, 28 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 96 SdHoareTripleChecker+Invalid, 28 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 28 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:30,976 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 96 Invalid, 28 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 28 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:29:30,977 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 54 states. [2024-11-09 04:29:30,991 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 54 to 54. [2024-11-09 04:29:30,991 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 54 states, 34 states have (on average 1.411764705882353) internal successors, (48), 44 states have internal predecessors, (48), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 7 states have call predecessors, (12), 12 states have call successors, (12) [2024-11-09 04:29:30,996 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 54 states to 54 states and 72 transitions. [2024-11-09 04:29:30,997 INFO L78 Accepts]: Start accepts. Automaton has 54 states and 72 transitions. Word has length 13 [2024-11-09 04:29:30,997 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:30,997 INFO L471 AbstractCegarLoop]: Abstraction has 54 states and 72 transitions. [2024-11-09 04:29:30,998 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:29:30,998 INFO L276 IsEmpty]: Start isEmpty. Operand 54 states and 72 transitions. [2024-11-09 04:29:31,001 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2024-11-09 04:29:31,001 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:31,001 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:31,002 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-09 04:29:31,002 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:31,003 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:31,003 INFO L85 PathProgramCache]: Analyzing trace with hash -927025751, now seen corresponding path program 1 times [2024-11-09 04:29:31,004 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:31,004 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [352112626] [2024-11-09 04:29:31,004 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:31,006 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:31,051 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:31,215 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:29:31,216 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:31,216 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [352112626] [2024-11-09 04:29:31,216 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [352112626] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:31,216 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:29:31,217 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-09 04:29:31,217 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [399144821] [2024-11-09 04:29:31,217 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:31,218 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 04:29:31,218 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:31,218 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 04:29:31,219 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 04:29:31,219 INFO L87 Difference]: Start difference. First operand 54 states and 72 transitions. Second operand has 4 states, 4 states have (on average 3.75) internal successors, (15), 4 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:29:31,353 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:31,353 INFO L93 Difference]: Finished difference Result 135 states and 180 transitions. [2024-11-09 04:29:31,358 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 04:29:31,358 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 3.75) internal successors, (15), 4 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 16 [2024-11-09 04:29:31,359 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:31,360 INFO L225 Difference]: With dead ends: 135 [2024-11-09 04:29:31,360 INFO L226 Difference]: Without dead ends: 83 [2024-11-09 04:29:31,361 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-09 04:29:31,366 INFO L432 NwaCegarLoop]: 60 mSDtfsCounter, 67 mSDsluCounter, 84 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 144 SdHoareTripleChecker+Invalid, 51 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:31,367 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 144 Invalid, 51 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:29:31,368 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 83 states. [2024-11-09 04:29:31,387 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 83 to 80. [2024-11-09 04:29:31,388 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 80 states, 52 states have (on average 1.4038461538461537) internal successors, (73), 65 states have internal predecessors, (73), 16 states have call successors, (16), 11 states have call predecessors, (16), 11 states have return successors, (17), 10 states have call predecessors, (17), 16 states have call successors, (17) [2024-11-09 04:29:31,390 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 80 states to 80 states and 106 transitions. [2024-11-09 04:29:31,390 INFO L78 Accepts]: Start accepts. Automaton has 80 states and 106 transitions. Word has length 16 [2024-11-09 04:29:31,391 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:31,391 INFO L471 AbstractCegarLoop]: Abstraction has 80 states and 106 transitions. [2024-11-09 04:29:31,391 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 3.75) internal successors, (15), 4 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:29:31,391 INFO L276 IsEmpty]: Start isEmpty. Operand 80 states and 106 transitions. [2024-11-09 04:29:31,393 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 20 [2024-11-09 04:29:31,393 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:31,393 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:31,393 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-09 04:29:31,394 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:31,394 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:31,394 INFO L85 PathProgramCache]: Analyzing trace with hash 592145113, now seen corresponding path program 1 times [2024-11-09 04:29:31,395 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:31,395 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [767729823] [2024-11-09 04:29:31,395 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:31,395 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:31,414 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:31,578 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:29:31,578 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:31,578 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [767729823] [2024-11-09 04:29:31,578 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [767729823] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:31,579 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:29:31,579 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 04:29:31,579 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1017176951] [2024-11-09 04:29:31,579 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:31,580 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 04:29:31,580 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:31,582 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 04:29:31,582 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 04:29:31,582 INFO L87 Difference]: Start difference. First operand 80 states and 106 transitions. Second operand has 4 states, 4 states have (on average 4.5) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:29:31,738 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:31,740 INFO L93 Difference]: Finished difference Result 190 states and 262 transitions. [2024-11-09 04:29:31,741 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 04:29:31,741 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 4.5) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19 [2024-11-09 04:29:31,742 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:31,745 INFO L225 Difference]: With dead ends: 190 [2024-11-09 04:29:31,747 INFO L226 Difference]: Without dead ends: 112 [2024-11-09 04:29:31,749 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-09 04:29:31,750 INFO L432 NwaCegarLoop]: 58 mSDtfsCounter, 38 mSDsluCounter, 99 mSDsCounter, 0 mSdLazyCounter, 54 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 38 SdHoareTripleChecker+Valid, 157 SdHoareTripleChecker+Invalid, 63 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 54 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:31,754 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [38 Valid, 157 Invalid, 63 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 54 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:29:31,755 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 112 states. [2024-11-09 04:29:31,786 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 112 to 111. [2024-11-09 04:29:31,790 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 111 states, 76 states have (on average 1.3157894736842106) internal successors, (100), 87 states have internal predecessors, (100), 18 states have call successors, (18), 16 states have call predecessors, (18), 16 states have return successors, (26), 16 states have call predecessors, (26), 18 states have call successors, (26) [2024-11-09 04:29:31,791 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 111 states to 111 states and 144 transitions. [2024-11-09 04:29:31,792 INFO L78 Accepts]: Start accepts. Automaton has 111 states and 144 transitions. Word has length 19 [2024-11-09 04:29:31,792 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:31,793 INFO L471 AbstractCegarLoop]: Abstraction has 111 states and 144 transitions. [2024-11-09 04:29:31,793 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 4.5) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:29:31,793 INFO L276 IsEmpty]: Start isEmpty. Operand 111 states and 144 transitions. [2024-11-09 04:29:31,794 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-09 04:29:31,795 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:31,795 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:31,795 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-09 04:29:31,795 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:31,796 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:31,796 INFO L85 PathProgramCache]: Analyzing trace with hash -1387639971, now seen corresponding path program 1 times [2024-11-09 04:29:31,796 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:31,797 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1458594888] [2024-11-09 04:29:31,797 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:31,797 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:31,813 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:31,851 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:29:31,852 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:31,852 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1458594888] [2024-11-09 04:29:31,852 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1458594888] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:31,852 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:29:31,853 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 04:29:31,853 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [483469950] [2024-11-09 04:29:31,853 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:31,854 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 04:29:31,854 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:31,855 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 04:29:31,855 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:29:31,856 INFO L87 Difference]: Start difference. First operand 111 states and 144 transitions. Second operand has 3 states, 3 states have (on average 9.0) internal successors, (27), 3 states have internal predecessors, (27), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-09 04:29:31,948 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:31,948 INFO L93 Difference]: Finished difference Result 222 states and 288 transitions. [2024-11-09 04:29:31,953 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 04:29:31,953 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 9.0) internal successors, (27), 3 states have internal predecessors, (27), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 32 [2024-11-09 04:29:31,954 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:31,955 INFO L225 Difference]: With dead ends: 222 [2024-11-09 04:29:31,955 INFO L226 Difference]: Without dead ends: 113 [2024-11-09 04:29:31,956 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:29:31,961 INFO L432 NwaCegarLoop]: 71 mSDtfsCounter, 25 mSDsluCounter, 54 mSDsCounter, 0 mSdLazyCounter, 40 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 25 SdHoareTripleChecker+Valid, 125 SdHoareTripleChecker+Invalid, 40 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 40 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:31,962 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [25 Valid, 125 Invalid, 40 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 40 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:29:31,963 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 113 states. [2024-11-09 04:29:31,995 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 113 to 111. [2024-11-09 04:29:31,996 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 111 states, 76 states have (on average 1.3026315789473684) internal successors, (99), 87 states have internal predecessors, (99), 18 states have call successors, (18), 16 states have call predecessors, (18), 16 states have return successors, (24), 16 states have call predecessors, (24), 18 states have call successors, (24) [2024-11-09 04:29:31,997 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 111 states to 111 states and 141 transitions. [2024-11-09 04:29:31,997 INFO L78 Accepts]: Start accepts. Automaton has 111 states and 141 transitions. Word has length 32 [2024-11-09 04:29:31,997 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:31,998 INFO L471 AbstractCegarLoop]: Abstraction has 111 states and 141 transitions. [2024-11-09 04:29:31,998 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 9.0) internal successors, (27), 3 states have internal predecessors, (27), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-09 04:29:31,998 INFO L276 IsEmpty]: Start isEmpty. Operand 111 states and 141 transitions. [2024-11-09 04:29:31,999 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 30 [2024-11-09 04:29:31,999 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:31,999 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:32,000 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-09 04:29:32,000 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:32,000 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:32,004 INFO L85 PathProgramCache]: Analyzing trace with hash 1530073741, now seen corresponding path program 1 times [2024-11-09 04:29:32,005 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:32,006 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1405624230] [2024-11-09 04:29:32,006 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:32,006 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:32,033 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:32,354 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:29:32,354 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:32,354 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1405624230] [2024-11-09 04:29:32,355 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1405624230] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:32,355 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:29:32,355 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 04:29:32,355 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [786165977] [2024-11-09 04:29:32,356 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:32,356 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 04:29:32,356 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:32,357 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 04:29:32,357 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-11-09 04:29:32,357 INFO L87 Difference]: Start difference. First operand 111 states and 141 transitions. Second operand has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-09 04:29:32,589 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:32,589 INFO L93 Difference]: Finished difference Result 335 states and 428 transitions. [2024-11-09 04:29:32,590 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-09 04:29:32,590 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 29 [2024-11-09 04:29:32,590 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:32,593 INFO L225 Difference]: With dead ends: 335 [2024-11-09 04:29:32,593 INFO L226 Difference]: Without dead ends: 226 [2024-11-09 04:29:32,594 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2024-11-09 04:29:32,595 INFO L432 NwaCegarLoop]: 79 mSDtfsCounter, 95 mSDsluCounter, 138 mSDsCounter, 0 mSdLazyCounter, 125 mSolverCounterSat, 13 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 95 SdHoareTripleChecker+Valid, 217 SdHoareTripleChecker+Invalid, 138 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 13 IncrementalHoareTripleChecker+Valid, 125 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:32,596 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [95 Valid, 217 Invalid, 138 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [13 Valid, 125 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 04:29:32,597 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 226 states. [2024-11-09 04:29:32,627 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 226 to 192. [2024-11-09 04:29:32,628 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 192 states, 136 states have (on average 1.2941176470588236) internal successors, (176), 150 states have internal predecessors, (176), 27 states have call successors, (27), 25 states have call predecessors, (27), 28 states have return successors, (36), 27 states have call predecessors, (36), 27 states have call successors, (36) [2024-11-09 04:29:32,629 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 192 states to 192 states and 239 transitions. [2024-11-09 04:29:32,630 INFO L78 Accepts]: Start accepts. Automaton has 192 states and 239 transitions. Word has length 29 [2024-11-09 04:29:32,630 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:32,630 INFO L471 AbstractCegarLoop]: Abstraction has 192 states and 239 transitions. [2024-11-09 04:29:32,631 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-09 04:29:32,631 INFO L276 IsEmpty]: Start isEmpty. Operand 192 states and 239 transitions. [2024-11-09 04:29:32,632 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-09 04:29:32,632 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:32,632 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:32,633 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-09 04:29:32,633 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:32,633 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:32,634 INFO L85 PathProgramCache]: Analyzing trace with hash 1689667990, now seen corresponding path program 1 times [2024-11-09 04:29:32,634 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:32,634 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1735066555] [2024-11-09 04:29:32,634 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:32,634 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:32,649 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:32,940 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:29:32,940 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:32,941 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1735066555] [2024-11-09 04:29:32,941 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1735066555] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:32,941 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:29:32,941 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-09 04:29:32,941 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [755698240] [2024-11-09 04:29:32,941 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:32,942 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-09 04:29:32,942 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:32,944 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-09 04:29:32,944 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2024-11-09 04:29:32,944 INFO L87 Difference]: Start difference. First operand 192 states and 239 transitions. Second operand has 8 states, 7 states have (on average 3.5714285714285716) internal successors, (25), 7 states have internal predecessors, (25), 4 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-09 04:29:33,545 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:33,545 INFO L93 Difference]: Finished difference Result 459 states and 579 transitions. [2024-11-09 04:29:33,545 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-09 04:29:33,546 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 3.5714285714285716) internal successors, (25), 7 states have internal predecessors, (25), 4 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Word has length 32 [2024-11-09 04:29:33,546 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:33,550 INFO L225 Difference]: With dead ends: 459 [2024-11-09 04:29:33,551 INFO L226 Difference]: Without dead ends: 325 [2024-11-09 04:29:33,551 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=86, Unknown=0, NotChecked=0, Total=132 [2024-11-09 04:29:33,552 INFO L432 NwaCegarLoop]: 59 mSDtfsCounter, 147 mSDsluCounter, 188 mSDsCounter, 0 mSdLazyCounter, 376 mSolverCounterSat, 46 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 157 SdHoareTripleChecker+Valid, 247 SdHoareTripleChecker+Invalid, 422 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 46 IncrementalHoareTripleChecker+Valid, 376 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:33,554 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [157 Valid, 247 Invalid, 422 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [46 Valid, 376 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-09 04:29:33,555 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 325 states. [2024-11-09 04:29:33,620 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 325 to 305. [2024-11-09 04:29:33,622 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 305 states, 215 states have (on average 1.283720930232558) internal successors, (276), 239 states have internal predecessors, (276), 43 states have call successors, (43), 38 states have call predecessors, (43), 46 states have return successors, (60), 45 states have call predecessors, (60), 43 states have call successors, (60) [2024-11-09 04:29:33,624 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 305 states to 305 states and 379 transitions. [2024-11-09 04:29:33,625 INFO L78 Accepts]: Start accepts. Automaton has 305 states and 379 transitions. Word has length 32 [2024-11-09 04:29:33,625 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:33,625 INFO L471 AbstractCegarLoop]: Abstraction has 305 states and 379 transitions. [2024-11-09 04:29:33,626 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 3.5714285714285716) internal successors, (25), 7 states have internal predecessors, (25), 4 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-09 04:29:33,626 INFO L276 IsEmpty]: Start isEmpty. Operand 305 states and 379 transitions. [2024-11-09 04:29:33,628 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2024-11-09 04:29:33,631 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:33,632 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:33,632 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-09 04:29:33,632 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:33,633 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:33,633 INFO L85 PathProgramCache]: Analyzing trace with hash 987367462, now seen corresponding path program 1 times [2024-11-09 04:29:33,633 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:33,633 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [711154721] [2024-11-09 04:29:33,633 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:33,633 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:33,658 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:33,801 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 17 proven. 4 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 04:29:33,801 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:33,802 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [711154721] [2024-11-09 04:29:33,802 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [711154721] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:29:33,802 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [244174315] [2024-11-09 04:29:33,802 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:33,803 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:29:33,803 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:29:33,805 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:29:33,808 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-09 04:29:33,926 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:33,932 INFO L255 TraceCheckSpWp]: Trace formula consists of 236 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-11-09 04:29:33,946 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:29:34,113 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 17 proven. 4 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 04:29:34,115 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:29:34,377 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 17 proven. 4 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 04:29:34,378 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [244174315] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:29:34,378 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [733212073] [2024-11-09 04:29:34,405 INFO L159 IcfgInterpreter]: Started Sifa with 37 locations of interest [2024-11-09 04:29:34,405 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:29:34,410 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:29:34,417 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:29:34,418 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:29:38,178 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 41 for LOIs [2024-11-09 04:29:38,193 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 22 for LOIs [2024-11-09 04:29:38,324 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 31 for LOIs [2024-11-09 04:29:38,360 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 19 for LOIs [2024-11-09 04:29:38,386 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:29:40,177 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSifa [733212073] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:40,177 INFO L185 FreeRefinementEngine]: Found 1 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:29:40,178 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [23] imperfect sequences [7, 5, 5] total 33 [2024-11-09 04:29:40,182 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1890558342] [2024-11-09 04:29:40,182 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:40,183 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 24 states [2024-11-09 04:29:40,183 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:40,183 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2024-11-09 04:29:40,184 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=155, Invalid=901, Unknown=0, NotChecked=0, Total=1056 [2024-11-09 04:29:40,184 INFO L87 Difference]: Start difference. First operand 305 states and 379 transitions. Second operand has 24 states, 20 states have (on average 1.5) internal successors, (30), 21 states have internal predecessors, (30), 5 states have call successors, (5), 4 states have call predecessors, (5), 3 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-09 04:29:42,705 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:42,705 INFO L93 Difference]: Finished difference Result 743 states and 964 transitions. [2024-11-09 04:29:42,710 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-11-09 04:29:42,713 INFO L78 Accepts]: Start accepts. Automaton has has 24 states, 20 states have (on average 1.5) internal successors, (30), 21 states have internal predecessors, (30), 5 states have call successors, (5), 4 states have call predecessors, (5), 3 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) Word has length 60 [2024-11-09 04:29:42,714 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:42,720 INFO L225 Difference]: With dead ends: 743 [2024-11-09 04:29:42,720 INFO L226 Difference]: Without dead ends: 597 [2024-11-09 04:29:42,722 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 196 GetRequests, 151 SyntacticMatches, 5 SemanticMatches, 40 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 545 ImplicationChecksByTransitivity, 2.5s TimeCoverageRelationStatistics Valid=253, Invalid=1469, Unknown=0, NotChecked=0, Total=1722 [2024-11-09 04:29:42,733 INFO L432 NwaCegarLoop]: 28 mSDtfsCounter, 133 mSDsluCounter, 265 mSDsCounter, 0 mSdLazyCounter, 1196 mSolverCounterSat, 69 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 293 SdHoareTripleChecker+Invalid, 1265 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 69 IncrementalHoareTripleChecker+Valid, 1196 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.8s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:42,734 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 293 Invalid, 1265 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [69 Valid, 1196 Invalid, 0 Unknown, 0 Unchecked, 1.8s Time] [2024-11-09 04:29:42,735 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 597 states. [2024-11-09 04:29:42,809 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 597 to 552. [2024-11-09 04:29:42,811 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 552 states, 391 states have (on average 1.2915601023017902) internal successors, (505), 430 states have internal predecessors, (505), 79 states have call successors, (79), 65 states have call predecessors, (79), 81 states have return successors, (115), 82 states have call predecessors, (115), 79 states have call successors, (115) [2024-11-09 04:29:42,815 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 552 states to 552 states and 699 transitions. [2024-11-09 04:29:42,816 INFO L78 Accepts]: Start accepts. Automaton has 552 states and 699 transitions. Word has length 60 [2024-11-09 04:29:42,816 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:42,817 INFO L471 AbstractCegarLoop]: Abstraction has 552 states and 699 transitions. [2024-11-09 04:29:42,817 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 24 states, 20 states have (on average 1.5) internal successors, (30), 21 states have internal predecessors, (30), 5 states have call successors, (5), 4 states have call predecessors, (5), 3 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-09 04:29:42,817 INFO L276 IsEmpty]: Start isEmpty. Operand 552 states and 699 transitions. [2024-11-09 04:29:42,820 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 64 [2024-11-09 04:29:42,821 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:42,821 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:42,844 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-09 04:29:43,023 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable7 [2024-11-09 04:29:43,023 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:43,024 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:43,024 INFO L85 PathProgramCache]: Analyzing trace with hash 1489626089, now seen corresponding path program 1 times [2024-11-09 04:29:43,024 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:43,024 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [142436257] [2024-11-09 04:29:43,024 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:43,025 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:43,047 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:43,653 INFO L134 CoverageAnalysis]: Checked inductivity of 22 backedges. 3 proven. 15 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-11-09 04:29:43,653 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:43,653 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [142436257] [2024-11-09 04:29:43,653 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [142436257] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:29:43,655 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1542250272] [2024-11-09 04:29:43,656 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:43,656 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:29:43,656 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:29:43,657 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:29:43,659 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-09 04:29:43,746 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:43,752 INFO L255 TraceCheckSpWp]: Trace formula consists of 237 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-09 04:29:43,755 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:29:44,118 INFO L134 CoverageAnalysis]: Checked inductivity of 22 backedges. 8 proven. 14 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:29:44,118 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:29:44,554 INFO L134 CoverageAnalysis]: Checked inductivity of 22 backedges. 4 proven. 5 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-11-09 04:29:44,554 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1542250272] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:29:44,555 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [149358883] [2024-11-09 04:29:44,558 INFO L159 IcfgInterpreter]: Started Sifa with 42 locations of interest [2024-11-09 04:29:44,560 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:29:44,561 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:29:44,561 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:29:44,561 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:29:46,554 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 18 for LOIs [2024-11-09 04:29:46,558 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 21 for LOIs [2024-11-09 04:29:46,644 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 29 for LOIs [2024-11-09 04:29:46,703 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 31 for LOIs [2024-11-09 04:29:46,751 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 22 for LOIs [2024-11-09 04:29:46,754 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:29:48,513 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6458#(and (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (= 1 ~systemActive~0) (<= 0 (+ ~pumpRunning~0 2147483648)) (= ~waterLevel~0 0))' at error location [2024-11-09 04:29:48,513 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:29:48,513 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:29:48,513 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [15, 12, 10] total 29 [2024-11-09 04:29:48,513 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [272772983] [2024-11-09 04:29:48,514 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:29:48,514 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 29 states [2024-11-09 04:29:48,514 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:48,515 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 29 interpolants. [2024-11-09 04:29:48,517 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=345, Invalid=2847, Unknown=0, NotChecked=0, Total=3192 [2024-11-09 04:29:48,517 INFO L87 Difference]: Start difference. First operand 552 states and 699 transitions. Second operand has 29 states, 26 states have (on average 4.0) internal successors, (104), 25 states have internal predecessors, (104), 12 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 12 states have call predecessors, (19), 11 states have call successors, (19) [2024-11-09 04:29:50,878 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:50,878 INFO L93 Difference]: Finished difference Result 1336 states and 1707 transitions. [2024-11-09 04:29:50,878 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 49 states. [2024-11-09 04:29:50,879 INFO L78 Accepts]: Start accepts. Automaton has has 29 states, 26 states have (on average 4.0) internal successors, (104), 25 states have internal predecessors, (104), 12 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 12 states have call predecessors, (19), 11 states have call successors, (19) Word has length 63 [2024-11-09 04:29:50,879 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:50,884 INFO L225 Difference]: With dead ends: 1336 [2024-11-09 04:29:50,884 INFO L226 Difference]: Without dead ends: 786 [2024-11-09 04:29:50,889 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 257 GetRequests, 152 SyntacticMatches, 9 SemanticMatches, 96 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 3797 ImplicationChecksByTransitivity, 2.9s TimeCoverageRelationStatistics Valid=1118, Invalid=8388, Unknown=0, NotChecked=0, Total=9506 [2024-11-09 04:29:50,890 INFO L432 NwaCegarLoop]: 134 mSDtfsCounter, 1310 mSDsluCounter, 925 mSDsCounter, 0 mSdLazyCounter, 1882 mSolverCounterSat, 772 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1314 SdHoareTripleChecker+Valid, 1059 SdHoareTripleChecker+Invalid, 2654 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 772 IncrementalHoareTripleChecker+Valid, 1882 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:50,890 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1314 Valid, 1059 Invalid, 2654 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [772 Valid, 1882 Invalid, 0 Unknown, 0 Unchecked, 1.4s Time] [2024-11-09 04:29:50,892 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 786 states. [2024-11-09 04:29:50,973 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 786 to 383. [2024-11-09 04:29:50,974 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 383 states, 270 states have (on average 1.2259259259259259) internal successors, (331), 297 states have internal predecessors, (331), 52 states have call successors, (52), 49 states have call predecessors, (52), 60 states have return successors, (63), 58 states have call predecessors, (63), 52 states have call successors, (63) [2024-11-09 04:29:50,977 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 383 states to 383 states and 446 transitions. [2024-11-09 04:29:50,978 INFO L78 Accepts]: Start accepts. Automaton has 383 states and 446 transitions. Word has length 63 [2024-11-09 04:29:50,979 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:50,979 INFO L471 AbstractCegarLoop]: Abstraction has 383 states and 446 transitions. [2024-11-09 04:29:50,979 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 29 states, 26 states have (on average 4.0) internal successors, (104), 25 states have internal predecessors, (104), 12 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 12 states have call predecessors, (19), 11 states have call successors, (19) [2024-11-09 04:29:50,979 INFO L276 IsEmpty]: Start isEmpty. Operand 383 states and 446 transitions. [2024-11-09 04:29:50,981 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2024-11-09 04:29:50,982 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:50,982 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:51,003 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-11-09 04:29:51,186 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:29:51,186 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:51,186 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:51,186 INFO L85 PathProgramCache]: Analyzing trace with hash 225184846, now seen corresponding path program 1 times [2024-11-09 04:29:51,187 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:51,187 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [704778544] [2024-11-09 04:29:51,187 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:51,187 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:51,205 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:51,296 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 56 proven. 5 refuted. 0 times theorem prover too weak. 57 trivial. 0 not checked. [2024-11-09 04:29:51,296 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:51,296 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [704778544] [2024-11-09 04:29:51,297 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [704778544] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:29:51,297 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1993107991] [2024-11-09 04:29:51,297 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:51,297 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:29:51,297 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:29:51,299 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:29:51,301 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-09 04:29:51,407 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:51,409 INFO L255 TraceCheckSpWp]: Trace formula consists of 352 conjuncts, 5 conjuncts are in the unsatisfiable core [2024-11-09 04:29:51,413 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:29:51,495 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 77 proven. 0 refuted. 0 times theorem prover too weak. 41 trivial. 0 not checked. [2024-11-09 04:29:51,495 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-09 04:29:51,495 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1993107991] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:29:51,495 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-09 04:29:51,496 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-09 04:29:51,496 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [223936097] [2024-11-09 04:29:51,496 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:29:51,497 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 04:29:51,497 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:29:51,497 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 04:29:51,497 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-11-09 04:29:51,498 INFO L87 Difference]: Start difference. First operand 383 states and 446 transitions. Second operand has 4 states, 4 states have (on average 14.5) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-09 04:29:51,671 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:29:51,671 INFO L93 Difference]: Finished difference Result 1077 states and 1270 transitions. [2024-11-09 04:29:51,672 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 04:29:51,672 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 14.5) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 110 [2024-11-09 04:29:51,673 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:29:51,677 INFO L225 Difference]: With dead ends: 1077 [2024-11-09 04:29:51,677 INFO L226 Difference]: Without dead ends: 750 [2024-11-09 04:29:51,678 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 114 GetRequests, 110 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-11-09 04:29:51,679 INFO L432 NwaCegarLoop]: 64 mSDtfsCounter, 33 mSDsluCounter, 84 mSDsCounter, 0 mSdLazyCounter, 70 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 148 SdHoareTripleChecker+Invalid, 70 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 70 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:29:51,679 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 148 Invalid, 70 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 70 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:29:51,681 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 750 states. [2024-11-09 04:29:51,762 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 750 to 724. [2024-11-09 04:29:51,764 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 724 states, 525 states have (on average 1.2285714285714286) internal successors, (645), 564 states have internal predecessors, (645), 90 states have call successors, (90), 86 states have call predecessors, (90), 108 states have return successors, (112), 104 states have call predecessors, (112), 90 states have call successors, (112) [2024-11-09 04:29:51,767 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 724 states to 724 states and 847 transitions. [2024-11-09 04:29:51,769 INFO L78 Accepts]: Start accepts. Automaton has 724 states and 847 transitions. Word has length 110 [2024-11-09 04:29:51,769 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:29:51,769 INFO L471 AbstractCegarLoop]: Abstraction has 724 states and 847 transitions. [2024-11-09 04:29:51,770 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 14.5) internal successors, (58), 3 states have internal predecessors, (58), 2 states have call successors, (11), 2 states have call predecessors, (11), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-09 04:29:51,770 INFO L276 IsEmpty]: Start isEmpty. Operand 724 states and 847 transitions. [2024-11-09 04:29:51,772 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 114 [2024-11-09 04:29:51,772 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:29:51,772 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:29:51,794 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-09 04:29:51,977 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:29:51,977 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:29:51,977 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:29:51,977 INFO L85 PathProgramCache]: Analyzing trace with hash -1919151577, now seen corresponding path program 1 times [2024-11-09 04:29:51,978 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:29:51,978 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [213923141] [2024-11-09 04:29:51,978 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:51,978 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:29:52,012 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:52,253 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 19 proven. 29 refuted. 0 times theorem prover too weak. 70 trivial. 0 not checked. [2024-11-09 04:29:52,253 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:29:52,253 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [213923141] [2024-11-09 04:29:52,254 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [213923141] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:29:52,254 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1540565384] [2024-11-09 04:29:52,254 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:29:52,254 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:29:52,254 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:29:52,257 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:29:52,258 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-09 04:29:52,360 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:29:52,366 INFO L255 TraceCheckSpWp]: Trace formula consists of 358 conjuncts, 28 conjuncts are in the unsatisfiable core [2024-11-09 04:29:52,374 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:29:53,105 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 64 proven. 38 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-09 04:29:53,105 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:29:54,017 INFO L134 CoverageAnalysis]: Checked inductivity of 118 backedges. 69 proven. 23 refuted. 0 times theorem prover too weak. 26 trivial. 0 not checked. [2024-11-09 04:29:54,018 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1540565384] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:29:54,018 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1847695641] [2024-11-09 04:29:54,021 INFO L159 IcfgInterpreter]: Started Sifa with 48 locations of interest [2024-11-09 04:29:54,021 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:29:54,021 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:29:54,022 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:29:54,022 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:29:56,648 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 143 for LOIs [2024-11-09 04:29:56,696 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 24 for LOIs [2024-11-09 04:29:56,821 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 31 for LOIs [2024-11-09 04:29:56,906 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 33 for LOIs [2024-11-09 04:29:56,955 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 20 for LOIs [2024-11-09 04:29:56,958 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 22 for LOIs [2024-11-09 04:29:56,961 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 25 for LOIs [2024-11-09 04:29:56,964 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:30:01,411 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '12701#(and (<= ~methaneLevelCritical~0 1) (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (= 1 ~systemActive~0) (<= 0 ~methaneLevelCritical~0) (<= 0 (+ ~pumpRunning~0 2147483648)) (= ~waterLevel~0 0))' at error location [2024-11-09 04:30:01,411 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:30:01,412 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:30:01,412 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 13, 13] total 28 [2024-11-09 04:30:01,412 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1094312278] [2024-11-09 04:30:01,412 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:30:01,413 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2024-11-09 04:30:01,413 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:30:01,414 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2024-11-09 04:30:01,415 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=402, Invalid=3380, Unknown=0, NotChecked=0, Total=3782 [2024-11-09 04:30:01,416 INFO L87 Difference]: Start difference. First operand 724 states and 847 transitions. Second operand has 28 states, 26 states have (on average 6.038461538461538) internal successors, (157), 27 states have internal predecessors, (157), 14 states have call successors, (29), 9 states have call predecessors, (29), 12 states have return successors, (30), 15 states have call predecessors, (30), 14 states have call successors, (30) [2024-11-09 04:30:05,451 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:30:05,451 INFO L93 Difference]: Finished difference Result 1567 states and 1911 transitions. [2024-11-09 04:30:05,452 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 59 states. [2024-11-09 04:30:05,452 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 26 states have (on average 6.038461538461538) internal successors, (157), 27 states have internal predecessors, (157), 14 states have call successors, (29), 9 states have call predecessors, (29), 12 states have return successors, (30), 15 states have call predecessors, (30), 14 states have call successors, (30) Word has length 113 [2024-11-09 04:30:05,453 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:30:05,455 INFO L225 Difference]: With dead ends: 1567 [2024-11-09 04:30:05,455 INFO L226 Difference]: Without dead ends: 0 [2024-11-09 04:30:05,462 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 418 GetRequests, 293 SyntacticMatches, 8 SemanticMatches, 117 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 4704 ImplicationChecksByTransitivity, 7.1s TimeCoverageRelationStatistics Valid=1464, Invalid=12578, Unknown=0, NotChecked=0, Total=14042 [2024-11-09 04:30:05,463 INFO L432 NwaCegarLoop]: 70 mSDtfsCounter, 1097 mSDsluCounter, 639 mSDsCounter, 0 mSdLazyCounter, 2018 mSolverCounterSat, 606 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1097 SdHoareTripleChecker+Valid, 709 SdHoareTripleChecker+Invalid, 2624 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 606 IncrementalHoareTripleChecker+Valid, 2018 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.7s IncrementalHoareTripleChecker+Time [2024-11-09 04:30:05,464 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1097 Valid, 709 Invalid, 2624 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [606 Valid, 2018 Invalid, 0 Unknown, 0 Unchecked, 1.7s Time] [2024-11-09 04:30:05,464 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-09 04:30:05,464 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-09 04:30:05,465 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:30:05,465 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-09 04:30:05,466 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 113 [2024-11-09 04:30:05,466 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:30:05,466 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-09 04:30:05,467 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 28 states, 26 states have (on average 6.038461538461538) internal successors, (157), 27 states have internal predecessors, (157), 14 states have call successors, (29), 9 states have call predecessors, (29), 12 states have return successors, (30), 15 states have call predecessors, (30), 14 states have call successors, (30) [2024-11-09 04:30:05,467 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-09 04:30:05,467 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-09 04:30:05,471 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-09 04:30:05,494 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-09 04:30:05,676 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:30:05,678 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:30:05,680 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-09 04:30:19,101 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-09 04:30:19,137 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (let ((.cse2 (= ~waterLevel~0 1)) (.cse4 (= ~methaneLevelCritical~0 0)) (.cse5 (= 2 ~waterLevel~0)) (.cse0 (= |old(~pumpRunning~0)| 1)) (.cse1 (= ~methaneLevelCritical~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse0 .cse2 .cse3) (and .cse5 .cse4 .cse0 .cse3) (and .cse5 .cse0 .cse1 .cse3))) (= ~pumpRunning~0 1)) Eliminated clause: (and (let ((.cse1 (= ~waterLevel~0 1)) (.cse3 (= ~methaneLevelCritical~0 0)) (.cse4 (= 2 ~waterLevel~0)) (.cse0 (= ~methaneLevelCritical~0 1)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2) (and .cse3 .cse1 .cse2) (and .cse4 .cse3 .cse2) (and .cse4 .cse0 .cse2))) (= ~pumpRunning~0 1)) [2024-11-09 04:30:19,177 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse1 (= |old(~methaneLevelCritical~0)| 0)) (.cse3 (= |old(~methaneLevelCritical~0)| 1))) (and (let ((.cse7 (= 0 ~systemActive~0))) (let ((.cse2 (= ~waterLevel~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse4 (= 2 ~waterLevel~0)) (.cse5 (not .cse7)) (.cse6 (= ~pumpRunning~0 1))) (or (and .cse0 .cse1 .cse2) (and .cse0 .cse3 .cse2) (and .cse0 .cse4 .cse1 .cse5) (and .cse4 .cse1 .cse5 .cse6) (and .cse0 .cse4 .cse1 .cse7) (and .cse0 .cse4 .cse3 .cse5) (and .cse0 .cse4 .cse3 .cse7) (and .cse4 .cse3 .cse5 .cse6)))) (or (not .cse1) (= ~methaneLevelCritical~0 0)) (or (= ~methaneLevelCritical~0 1) (not .cse3)))) Eliminated clause: (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse1 (= |old(~methaneLevelCritical~0)| 0)) (.cse3 (= |old(~methaneLevelCritical~0)| 1))) (and (let ((.cse7 (= 0 ~systemActive~0))) (let ((.cse2 (= ~waterLevel~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse4 (= 2 ~waterLevel~0)) (.cse5 (not .cse7)) (.cse6 (= ~pumpRunning~0 1))) (or (and .cse0 .cse1 .cse2) (and .cse0 .cse3 .cse2) (and .cse0 .cse4 .cse1 .cse5) (and .cse4 .cse1 .cse5 .cse6) (and .cse0 .cse4 .cse1 .cse7) (and .cse0 .cse4 .cse3 .cse5) (and .cse0 .cse4 .cse3 .cse7) (and .cse4 .cse3 .cse5 .cse6)))) (or (not .cse1) (= ~methaneLevelCritical~0 0)) (or (= ~methaneLevelCritical~0 1) (not .cse3))))) [2024-11-09 04:30:19,189 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:30:19,214 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse5 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse3 (= 0 ~systemActive~0))) (let ((.cse1 (= |old(~waterLevel~0)| 1)) (.cse6 (not .cse3)) (.cse4 (= ~methaneLevelCritical~0 1)) (.cse2 (= ~methaneLevelCritical~0 0)) (.cse7 (= |old(~waterLevel~0)| 2))) (or (and .cse1 .cse2 .cse0 .cse3) (and .cse1 .cse0 .cse4 .cse3) (and .cse2 .cse5 .cse6 .cse7) (and .cse0 .cse4 .cse6 .cse7) (and .cse5 .cse4 .cse6 .cse7) (and .cse2 .cse0 .cse6 .cse7) (and .cse1 .cse0 .cse4 .cse6) (and .cse1 .cse2 .cse0 .cse6) (and .cse0 .cse4 .cse3 .cse7) (and .cse2 .cse0 .cse3 .cse7)))) (or (not .cse5) (and (= 2 ~waterLevel~0) (= ~pumpRunning~0 1))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse5 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse3 (= 0 ~systemActive~0))) (let ((.cse1 (= |old(~waterLevel~0)| 1)) (.cse6 (not .cse3)) (.cse4 (= ~methaneLevelCritical~0 1)) (.cse2 (= ~methaneLevelCritical~0 0)) (.cse7 (= |old(~waterLevel~0)| 2))) (or (and .cse1 .cse2 .cse0 .cse3) (and .cse1 .cse0 .cse4 .cse3) (and .cse2 .cse5 .cse6 .cse7) (and .cse0 .cse4 .cse6 .cse7) (and .cse5 .cse4 .cse6 .cse7) (and .cse2 .cse0 .cse6 .cse7) (and .cse1 .cse0 .cse4 .cse6) (and .cse1 .cse2 .cse0 .cse6) (and .cse0 .cse4 .cse3 .cse7) (and .cse2 .cse0 .cse3 .cse7)))) (or (not .cse5) (and (= 2 ~waterLevel~0) (= ~pumpRunning~0 1)))))) [2024-11-09 04:30:19,227 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:30:19,233 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (let ((.cse0 (= 2 ~waterLevel~0)) (.cse1 (= ~methaneLevelCritical~0 0)) (.cse2 (= |old(~pumpRunning~0)| 0)) (.cse4 (= ~methaneLevelCritical~0 1)) (.cse5 (= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse2 .cse4 .cse3) (and .cse1 .cse2 .cse5 .cse3) (and .cse2 .cse4 .cse5 .cse3))) (= ~pumpRunning~0 0)) Eliminated clause: (and (= ~pumpRunning~0 0) (let ((.cse1 (= ~waterLevel~0 1)) (.cse3 (= ~methaneLevelCritical~0 0)) (.cse4 (= 2 ~waterLevel~0)) (.cse0 (= ~methaneLevelCritical~0 1)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2) (and .cse3 .cse1 .cse2) (and .cse4 .cse3 .cse2) (and .cse4 .cse0 .cse2)))) [2024-11-09 04:30:19,247 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse1 (= |old(~waterLevel~0)| 1)) (.cse6 (= |old(~waterLevel~0)| 2))) (and (let ((.cse5 (= 0 ~systemActive~0))) (let ((.cse2 (= ~methaneLevelCritical~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse4 (= ~methaneLevelCritical~0 0)) (.cse3 (not .cse5)) (.cse7 (= ~pumpRunning~0 1))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse5) (and .cse0 .cse2 .cse5) (and .cse2 .cse3 .cse6 .cse7) (and .cse0 .cse4 (<= |old(~waterLevel~0)| 1) .cse3) (and .cse4 .cse3 .cse6 .cse7)))) (or (and .cse1 (= ~waterLevel~0 1)) (and (= 2 ~waterLevel~0) .cse6)))) Eliminated clause: (exists ((|old(~waterLevel~0)| Int)) (let ((.cse1 (= |old(~waterLevel~0)| 1)) (.cse6 (= |old(~waterLevel~0)| 2))) (and (let ((.cse5 (= 0 ~systemActive~0))) (let ((.cse2 (= ~methaneLevelCritical~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse4 (= ~methaneLevelCritical~0 0)) (.cse3 (not .cse5)) (.cse7 (= ~pumpRunning~0 1))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse5) (and .cse0 .cse2 .cse5) (and .cse2 .cse3 .cse6 .cse7) (and .cse0 .cse4 (<= |old(~waterLevel~0)| 1) .cse3) (and .cse4 .cse3 .cse6 .cse7)))) (or (and .cse1 (= ~waterLevel~0 1)) (and (= 2 ~waterLevel~0) .cse6))))) [2024-11-09 04:30:19,258 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:30:19,268 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__lowWaterSensor contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse4 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (let ((.cse1 (= 2 ~waterLevel~0)) (.cse2 (= ~methaneLevelCritical~0 0)) (.cse6 (= ~methaneLevelCritical~0 1)) (.cse5 (= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse1 .cse2 .cse0 .cse3) (and .cse2 .cse4 .cse5 .cse3) (and .cse1 .cse0 .cse6 .cse3) (and .cse2 .cse0 .cse5 .cse3) (and .cse0 .cse6 .cse5 .cse3))) (or (not .cse4) (= ~pumpRunning~0 1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse4 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (let ((.cse1 (= 2 ~waterLevel~0)) (.cse2 (= ~methaneLevelCritical~0 0)) (.cse6 (= ~methaneLevelCritical~0 1)) (.cse5 (= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse1 .cse2 .cse0 .cse3) (and .cse2 .cse4 .cse5 .cse3) (and .cse1 .cse0 .cse6 .cse3) (and .cse2 .cse0 .cse5 .cse3) (and .cse0 .cse6 .cse5 .cse3))) (or (not .cse4) (= ~pumpRunning~0 1))))) [2024-11-09 04:30:19,274 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:30:19,276 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 09.11 04:30:19 BoogieIcfgContainer [2024-11-09 04:30:19,276 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-09 04:30:19,277 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-09 04:30:19,277 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-09 04:30:19,277 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-09 04:30:19,278 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:29:30" (3/4) ... [2024-11-09 04:30:19,280 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-09 04:30:19,287 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-09 04:30:19,288 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-09 04:30:19,288 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-09 04:30:19,288 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-09 04:30:19,288 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-09 04:30:19,289 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:30:19,289 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-09 04:30:19,289 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2024-11-09 04:30:19,299 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 43 nodes and edges [2024-11-09 04:30:19,299 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-09 04:30:19,303 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-09 04:30:19,303 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 04:30:19,304 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 04:30:19,340 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) && (((((((((((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 == systemActive)) || ((((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 == systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 1) && (methaneLevelCritical == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 != systemActive))) || ((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 != systemActive))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (0 == systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (0 == systemActive)) && (\old(waterLevel) == 2)))) && ((\old(pumpRunning) != 1) || ((2 == waterLevel) && (pumpRunning == 1)))) [2024-11-09 04:30:19,397 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) && (((((((((((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 == systemActive)) || ((((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 == systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 1) && (methaneLevelCritical == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 != systemActive))) || ((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 != systemActive))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (0 == systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (0 == systemActive)) && (\old(waterLevel) == 2)))) && ((\old(pumpRunning) != 1) || ((2 == waterLevel) && (pumpRunning == 1)))) [2024-11-09 04:30:19,461 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/witness.graphml [2024-11-09 04:30:19,461 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/witness.yml [2024-11-09 04:30:19,461 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-09 04:30:19,462 INFO L158 Benchmark]: Toolchain (without parser) took 50798.34ms. Allocated memory was 146.8MB in the beginning and 677.4MB in the end (delta: 530.6MB). Free memory was 116.6MB in the beginning and 291.6MB in the end (delta: -174.9MB). Peak memory consumption was 355.3MB. Max. memory is 16.1GB. [2024-11-09 04:30:19,462 INFO L158 Benchmark]: CDTParser took 0.34ms. Allocated memory is still 117.4MB. Free memory is still 89.8MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-09 04:30:19,463 INFO L158 Benchmark]: CACSL2BoogieTranslator took 626.24ms. Allocated memory is still 146.8MB. Free memory was 116.6MB in the beginning and 95.0MB in the end (delta: 21.6MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-09 04:30:19,463 INFO L158 Benchmark]: Boogie Procedure Inliner took 79.03ms. Allocated memory is still 146.8MB. Free memory was 94.3MB in the beginning and 92.2MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 04:30:19,463 INFO L158 Benchmark]: Boogie Preprocessor took 67.74ms. Allocated memory is still 146.8MB. Free memory was 92.2MB in the beginning and 116.5MB in the end (delta: -24.3MB). Peak memory consumption was 3.5MB. Max. memory is 16.1GB. [2024-11-09 04:30:19,464 INFO L158 Benchmark]: RCFGBuilder took 775.03ms. Allocated memory is still 146.8MB. Free memory was 116.5MB in the beginning and 85.8MB in the end (delta: 30.7MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. [2024-11-09 04:30:19,464 INFO L158 Benchmark]: TraceAbstraction took 49052.21ms. Allocated memory was 146.8MB in the beginning and 677.4MB in the end (delta: 530.6MB). Free memory was 85.1MB in the beginning and 301.0MB in the end (delta: -215.9MB). Peak memory consumption was 379.2MB. Max. memory is 16.1GB. [2024-11-09 04:30:19,464 INFO L158 Benchmark]: Witness Printer took 184.82ms. Allocated memory is still 677.4MB. Free memory was 301.0MB in the beginning and 291.6MB in the end (delta: 9.4MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. [2024-11-09 04:30:19,467 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.34ms. Allocated memory is still 117.4MB. Free memory is still 89.8MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 626.24ms. Allocated memory is still 146.8MB. Free memory was 116.6MB in the beginning and 95.0MB in the end (delta: 21.6MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 79.03ms. Allocated memory is still 146.8MB. Free memory was 94.3MB in the beginning and 92.2MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 67.74ms. Allocated memory is still 146.8MB. Free memory was 92.2MB in the beginning and 116.5MB in the end (delta: -24.3MB). Peak memory consumption was 3.5MB. Max. memory is 16.1GB. * RCFGBuilder took 775.03ms. Allocated memory is still 146.8MB. Free memory was 116.5MB in the beginning and 85.8MB in the end (delta: 30.7MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. * TraceAbstraction took 49052.21ms. Allocated memory was 146.8MB in the beginning and 677.4MB in the end (delta: 530.6MB). Free memory was 85.1MB in the beginning and 301.0MB in the end (delta: -215.9MB). Peak memory consumption was 379.2MB. Max. memory is 16.1GB. * Witness Printer took 184.82ms. Allocated memory is still 677.4MB. Free memory was 301.0MB in the beginning and 291.6MB in the end (delta: 9.4MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] - GenericResultAtLocation [Line: 308]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [308] - GenericResultAtLocation [Line: 674]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [674] - GenericResultAtLocation [Line: 746]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [746] - GenericResultAtLocation [Line: 774]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [774] - GenericResultAtLocation [Line: 873]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [873] - GenericResultAtLocation [Line: 882]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [882] - GenericResultAtLocation [Line: 985]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [985] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 878]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 67 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 35.4s, OverallIterations: 11, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 10.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2980 SdHoareTripleChecker+Valid, 6.1s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2959 mSDsluCounter, 3265 SdHoareTripleChecker+Invalid, 5.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2516 mSDsCounter, 1518 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 5857 IncrementalHoareTripleChecker+Invalid, 7375 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1518 mSolverCounterUnsat, 749 mSDtfsCounter, 5857 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1027 GetRequests, 725 SyntacticMatches, 22 SemanticMatches, 280 ConstructedPredicates, 0 IntricatePredicates, 2 DeprecatedPredicates, 9060 ImplicationChecksByTransitivity, 12.7s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=724occurred in iteration=10, InterpolantAutomatonStates: 167, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.5s AutomataMinimizationTime, 11 MinimizatonAttempts, 534 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 5.2s InterpolantComputationTime, 845 NumberOfCodeBlocks, 845 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 1063 ConstructedInterpolants, 0 QuantifiedInterpolants, 2929 SizeOfPredicates, 14 NumberOfNonLiveVariables, 1183 ConjunctsInSsa, 57 ConjunctsInUnsatCore, 18 InterpolantComputations, 8 PerfectInterpolantSequences, 587/728 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: OVERALL_TIME: 4.0s, ICFG_INTERPRETER_ENTERED_PROCEDURES: 5, DAG_INTERPRETER_EARLY_EXIT_QUERIES_NONTRIVIAL: 47, DAG_INTERPRETER_EARLY_EXITS: 1, TOOLS_POST_APPLICATIONS: 61, TOOLS_POST_TIME: 1.9s, TOOLS_POST_CALL_APPLICATIONS: 29, TOOLS_POST_CALL_TIME: 0.8s, TOOLS_POST_RETURN_APPLICATIONS: 24, TOOLS_POST_RETURN_TIME: 0.7s, TOOLS_QUANTIFIERELIM_APPLICATIONS: 114, TOOLS_QUANTIFIERELIM_TIME: 3.3s, TOOLS_QUANTIFIERELIM_MAX_TIME: 0.5s, FLUID_QUERY_TIME: 0.0s, FLUID_QUERIES: 142, FLUID_YES_ANSWERS: 0, DOMAIN_JOIN_APPLICATIONS: 25, DOMAIN_JOIN_TIME: 0.4s, DOMAIN_ALPHA_APPLICATIONS: 0, DOMAIN_ALPHA_TIME: 0.0s, DOMAIN_WIDEN_APPLICATIONS: 1, DOMAIN_WIDEN_TIME: 0.0s, DOMAIN_ISSUBSETEQ_APPLICATIONS: 2, DOMAIN_ISSUBSETEQ_TIME: 0.0s, DOMAIN_ISBOTTOM_APPLICATIONS: 47, DOMAIN_ISBOTTOM_TIME: 0.1s, LOOP_SUMMARIZER_APPLICATIONS: 1, LOOP_SUMMARIZER_CACHE_MISSES: 1, LOOP_SUMMARIZER_OVERALL_TIME: 3.3s, LOOP_SUMMARIZER_NEW_COMPUTATION_TIME: 3.3s, LOOP_SUMMARIZER_FIXPOINT_ITERATIONS: 2, CALL_SUMMARIZER_APPLICATIONS: 24, CALL_SUMMARIZER_CACHE_MISSES: 4, CALL_SUMMARIZER_OVERALL_TIME: 0.1s, CALL_SUMMARIZER_NEW_COMPUTATION_TIME: 0.1s, PROCEDURE_GRAPH_BUILDER_TIME: 0.0s, PATH_EXPR_TIME: 0.0s, REGEX_TO_DAG_TIME: 0.0s, DAG_COMPRESSION_TIME: 0.0s, DAG_COMPRESSION_PROCESSED_NODES: 414, DAG_COMPRESSION_RETAINED_NODES: 116, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 687]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 688]: Loop Invariant Derived loop invariant: ((((((((((2 == waterLevel) && (methaneLevelCritical == 1)) && (splverifierCounter == 0)) && (0 != systemActive)) && (pumpRunning == 1)) || (((((pumpRunning == 0) && (2 == waterLevel)) && (methaneLevelCritical == 1)) && (splverifierCounter == 0)) && (0 == systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 1)) && (splverifierCounter == 0)) && (waterLevel == 1))) || (((((pumpRunning == 0) && (2 == waterLevel)) && (methaneLevelCritical == 0)) && (splverifierCounter == 0)) && (0 == systemActive))) || (((((2 == waterLevel) && (methaneLevelCritical == 0)) && (splverifierCounter == 0)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (splverifierCounter == 0)) && (waterLevel == 1))) - InvariantResult [Line: 66]: Location Invariant Derived location invariant: ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) && (((((((((((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 == systemActive)) || ((((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 == systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 1) && (methaneLevelCritical == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 != systemActive))) || ((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 != systemActive))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (0 == systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (0 == systemActive)) && (\old(waterLevel) == 2)))) && ((\old(pumpRunning) != 1) || ((2 == waterLevel) && (pumpRunning == 1)))) - InvariantResult [Line: 786]: Loop Invariant Derived loop invariant: 0 - ProcedureContractResult [Line: 183]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: (((((((methaneLevelCritical == 1) && (waterLevel == 1)) && (0 != systemActive)) || (((methaneLevelCritical == 0) && (waterLevel == 1)) && (0 != systemActive))) || (((2 == waterLevel) && (methaneLevelCritical == 0)) && (0 != systemActive))) || (((2 == waterLevel) && (methaneLevelCritical == 1)) && (0 != systemActive))) && (pumpRunning == 1)) Ensures: (((pumpRunning == 0) && (((((((\old(pumpRunning) == 1) && (methaneLevelCritical == 1)) && (waterLevel == 1)) && (0 != systemActive)) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (0 != systemActive))) || ((((2 == waterLevel) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 1)) && (0 != systemActive))) || ((((2 == waterLevel) && (\old(pumpRunning) == 1)) && (methaneLevelCritical == 1)) && (0 != systemActive)))) && (((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 90]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((((pumpRunning == 0) && (methaneLevelCritical == 1)) && (waterLevel == 1)) && (0 != systemActive)) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel == 1)) && (0 != systemActive))) Ensures: ((((((pumpRunning == 0) && (methaneLevelCritical == 1)) && (waterLevel == 1)) && (0 != systemActive)) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel == 1)) && (0 != systemActive))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 909]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Ensures: (((((((((((((pumpRunning == 0) && (\old(methaneLevelCritical) == 0)) && (waterLevel == 1)) || (((pumpRunning == 0) && (\old(methaneLevelCritical) == 1)) && (waterLevel == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (\old(methaneLevelCritical) == 0)) && (0 != systemActive))) || ((((2 == waterLevel) && (\old(methaneLevelCritical) == 0)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (\old(methaneLevelCritical) == 0)) && (0 == systemActive))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (\old(methaneLevelCritical) == 1)) && (0 != systemActive))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (\old(methaneLevelCritical) == 1)) && (0 == systemActive))) || ((((2 == waterLevel) && (\old(methaneLevelCritical) == 1)) && (0 != systemActive)) && (pumpRunning == 1))) && ((methaneLevelCritical == 0) || (\old(methaneLevelCritical) != 1))) && ((\old(methaneLevelCritical) != 0) || (methaneLevelCritical == 1))) && (((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel)))) - ProcedureContractResult [Line: 776]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 66]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: (((((((\old(pumpRunning) != 1) || ((pumpRunning == 0) && (waterLevel == 1))) && ((((pumpRunning == 0) && (2 == waterLevel)) || (\old(waterLevel) != 2)) || (0 != systemActive))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 2)) || (0 == systemActive)) || ((2 == waterLevel) && (pumpRunning == 1)))) && (((((((((((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 == systemActive)) || ((((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 == systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 1) && (methaneLevelCritical == 1)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (0 != systemActive)) && (\old(waterLevel) == 2))) || ((((\old(waterLevel) == 1) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 != systemActive))) || ((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 != systemActive))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (0 == systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (0 == systemActive)) && (\old(waterLevel) == 2)))) && ((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1)))) && ((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 98]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: ((pumpRunning == 0) && ((((((methaneLevelCritical == 1) && (waterLevel == 1)) && (0 != systemActive)) || (((methaneLevelCritical == 0) && (waterLevel == 1)) && (0 != systemActive))) || (((2 == waterLevel) && (methaneLevelCritical == 0)) && (0 != systemActive))) || (((2 == waterLevel) && (methaneLevelCritical == 1)) && (0 != systemActive)))) Ensures: (((((2 != waterLevel) || ((0 != systemActive) && (pumpRunning == 1))) && ((((((2 == waterLevel) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (waterLevel == 1)) && (0 != systemActive))) || (((2 == waterLevel) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (waterLevel == 1)) && (0 != systemActive)))) && ((pumpRunning == 0) || (1 < waterLevel))) && (((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 897]: Procedure Contract for waterRise Derived contract for procedure waterRise. Ensures: ((((waterLevel <= 2) && (((((((((pumpRunning == 0) && (\old(waterLevel) == 1)) && (methaneLevelCritical == 1)) && (0 != systemActive)) || ((methaneLevelCritical == 1) && ((((pumpRunning == 0) && (0 == systemActive)) && (\old(waterLevel) == 2)) || (((pumpRunning == 0) && (\old(waterLevel) == 1)) && (0 == systemActive))))) || ((methaneLevelCritical == 0) && ((((pumpRunning == 0) && (0 == systemActive)) && (\old(waterLevel) == 2)) || (((pumpRunning == 0) && (\old(waterLevel) == 1)) && (0 == systemActive))))) || ((((methaneLevelCritical == 1) && (0 != systemActive)) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || ((((methaneLevelCritical == 0) && (0 != systemActive)) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (\old(waterLevel) == 1)) && (methaneLevelCritical == 0)) && (0 != systemActive)))) && ((((long long) \old(waterLevel) + 1) == waterLevel) || ((2 <= \old(waterLevel)) && (\old(waterLevel) == waterLevel)))) && (((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 124]: Procedure Contract for processEnvironment__wrappee__lowWaterSensor Derived contract for procedure processEnvironment__wrappee__lowWaterSensor. Ensures: (((((2 != waterLevel) || (pumpRunning == 1)) && ((((((((2 == waterLevel) && (methaneLevelCritical == 0)) && (\old(pumpRunning) == 0)) && (0 != systemActive)) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (0 != systemActive))) || ((((2 == waterLevel) && (\old(pumpRunning) == 0)) && (methaneLevelCritical == 1)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (waterLevel == 1)) && (0 != systemActive))) || ((((\old(pumpRunning) == 0) && (methaneLevelCritical == 1)) && (waterLevel == 1)) && (0 != systemActive)))) && ((pumpRunning == 0) || (1 < waterLevel))) && (((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) RESULT: Ultimate proved your program to be correct! [2024-11-09 04:30:19,534 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_656b3376-cf02-4cce-bf3c-7af9f166fde8/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE