./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product56.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a0165632 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product56.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 7bcd24ea8f621c8db79e853f5aaf064ffcae573e6c1e9f03eb1f84bb0c15fc3c --- Real Ultimate output --- This is Ultimate 0.2.5-dev-a016563 [2024-11-09 04:56:57,357 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-09 04:56:57,453 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-09 04:56:57,460 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-09 04:56:57,460 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-09 04:56:57,488 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-09 04:56:57,489 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-09 04:56:57,489 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-09 04:56:57,490 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-09 04:56:57,491 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-09 04:56:57,491 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-09 04:56:57,492 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-09 04:56:57,492 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-09 04:56:57,493 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-09 04:56:57,493 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-09 04:56:57,494 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-09 04:56:57,494 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-09 04:56:57,495 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-09 04:56:57,495 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-09 04:56:57,496 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-09 04:56:57,496 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-09 04:56:57,497 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-09 04:56:57,498 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-09 04:56:57,498 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-09 04:56:57,499 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-09 04:56:57,499 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-09 04:56:57,500 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-09 04:56:57,500 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-09 04:56:57,504 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-09 04:56:57,505 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-09 04:56:57,505 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-09 04:56:57,506 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-09 04:56:57,506 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-09 04:56:57,506 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-09 04:56:57,507 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-09 04:56:57,507 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-09 04:56:57,507 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-09 04:56:57,508 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-09 04:56:57,512 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 04:56:57,512 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-09 04:56:57,513 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-09 04:56:57,513 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-09 04:56:57,513 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-09 04:56:57,514 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-09 04:56:57,514 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-09 04:56:57,515 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-09 04:56:57,515 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-09 04:56:57,515 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 7bcd24ea8f621c8db79e853f5aaf064ffcae573e6c1e9f03eb1f84bb0c15fc3c [2024-11-09 04:56:57,832 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-09 04:56:57,861 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-09 04:56:57,865 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-09 04:56:57,868 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-09 04:56:57,869 INFO L274 PluginConnector]: CDTParser initialized [2024-11-09 04:56:57,871 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/../../sv-benchmarks/c/product-lines/minepump_spec5_product56.cil.c Unable to find full path for "g++" [2024-11-09 04:57:00,354 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-09 04:57:00,652 INFO L384 CDTParser]: Found 1 translation units. [2024-11-09 04:57:00,653 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/sv-benchmarks/c/product-lines/minepump_spec5_product56.cil.c [2024-11-09 04:57:00,683 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/data/f0bf3da5d/46d6a8b8d8a142099d556abd2f1b464d/FLAG0a2da6524 [2024-11-09 04:57:00,959 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/data/f0bf3da5d/46d6a8b8d8a142099d556abd2f1b464d [2024-11-09 04:57:00,963 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-09 04:57:00,965 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-09 04:57:00,967 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-09 04:57:00,967 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-09 04:57:00,977 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-09 04:57:00,978 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 04:57:00" (1/1) ... [2024-11-09 04:57:00,979 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@3b270c3d and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:00, skipping insertion in model container [2024-11-09 04:57:00,980 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 04:57:00" (1/1) ... [2024-11-09 04:57:01,029 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-09 04:57:01,374 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/sv-benchmarks/c/product-lines/minepump_spec5_product56.cil.c[8146,8159] [2024-11-09 04:57:01,467 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 04:57:01,482 INFO L200 MainTranslator]: Completed pre-run [2024-11-09 04:57:01,501 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] [2024-11-09 04:57:01,503 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [160] [2024-11-09 04:57:01,504 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [418] [2024-11-09 04:57:01,504 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [488] [2024-11-09 04:57:01,504 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [526] [2024-11-09 04:57:01,505 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [535] [2024-11-09 04:57:01,505 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [584] [2024-11-09 04:57:01,505 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [950] [2024-11-09 04:57:01,573 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/sv-benchmarks/c/product-lines/minepump_spec5_product56.cil.c[8146,8159] [2024-11-09 04:57:01,664 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 04:57:01,702 INFO L204 MainTranslator]: Completed translation [2024-11-09 04:57:01,703 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01 WrapperNode [2024-11-09 04:57:01,703 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-09 04:57:01,705 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-09 04:57:01,705 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-09 04:57:01,706 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-09 04:57:01,716 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,742 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,792 INFO L138 Inliner]: procedures = 60, calls = 108, calls flagged for inlining = 27, calls inlined = 24, statements flattened = 240 [2024-11-09 04:57:01,793 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-09 04:57:01,794 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-09 04:57:01,794 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-09 04:57:01,794 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-09 04:57:01,807 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,808 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,810 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,811 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,824 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,833 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,839 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,841 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,851 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-09 04:57:01,852 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-09 04:57:01,852 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-09 04:57:01,852 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-09 04:57:01,854 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (1/1) ... [2024-11-09 04:57:01,862 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 04:57:01,876 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:57:01,890 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-09 04:57:01,896 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-09 04:57:01,924 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-09 04:57:01,924 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-09 04:57:01,925 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-09 04:57:01,925 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-09 04:57:01,925 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-09 04:57:01,925 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-09 04:57:01,925 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-09 04:57:01,926 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:57:01,926 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:57:01,926 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-09 04:57:01,927 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-09 04:57:01,927 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2024-11-09 04:57:01,927 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2024-11-09 04:57:01,927 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-09 04:57:01,927 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-09 04:57:01,928 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-09 04:57:01,928 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-09 04:57:01,928 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-09 04:57:01,928 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-09 04:57:01,928 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-09 04:57:01,928 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-09 04:57:01,929 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-09 04:57:02,040 INFO L238 CfgBuilder]: Building ICFG [2024-11-09 04:57:02,043 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-09 04:57:02,466 INFO L? ?]: Removed 51 outVars from TransFormulas that were not future-live. [2024-11-09 04:57:02,466 INFO L287 CfgBuilder]: Performing block encoding [2024-11-09 04:57:02,643 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-09 04:57:02,643 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-09 04:57:02,644 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:57:02 BoogieIcfgContainer [2024-11-09 04:57:02,644 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-09 04:57:02,647 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-09 04:57:02,647 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-09 04:57:02,651 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-09 04:57:02,651 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 09.11 04:57:00" (1/3) ... [2024-11-09 04:57:02,652 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6741c9b6 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 04:57:02, skipping insertion in model container [2024-11-09 04:57:02,653 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:57:01" (2/3) ... [2024-11-09 04:57:02,655 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6741c9b6 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 04:57:02, skipping insertion in model container [2024-11-09 04:57:02,655 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:57:02" (3/3) ... [2024-11-09 04:57:02,656 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product56.cil.c [2024-11-09 04:57:02,678 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-09 04:57:02,678 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-09 04:57:02,776 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-09 04:57:02,785 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@540110ac, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-09 04:57:02,785 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-09 04:57:02,790 INFO L276 IsEmpty]: Start isEmpty. Operand has 74 states, 46 states have (on average 1.4565217391304348) internal successors, (67), 57 states have internal predecessors, (67), 17 states have call successors, (17), 9 states have call predecessors, (17), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2024-11-09 04:57:02,800 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2024-11-09 04:57:02,801 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:02,801 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:02,802 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:02,806 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:02,807 INFO L85 PathProgramCache]: Analyzing trace with hash 1896956197, now seen corresponding path program 1 times [2024-11-09 04:57:02,817 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:02,817 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2112039360] [2024-11-09 04:57:02,817 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:02,818 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:02,942 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:03,024 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:57:03,024 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:03,025 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2112039360] [2024-11-09 04:57:03,026 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2112039360] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:03,026 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:57:03,026 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-09 04:57:03,028 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1334371617] [2024-11-09 04:57:03,029 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:03,035 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-09 04:57:03,035 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:03,065 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-09 04:57:03,066 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 04:57:03,070 INFO L87 Difference]: Start difference. First operand has 74 states, 46 states have (on average 1.4565217391304348) internal successors, (67), 57 states have internal predecessors, (67), 17 states have call successors, (17), 9 states have call predecessors, (17), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:57:03,190 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:03,191 INFO L93 Difference]: Finished difference Result 146 states and 203 transitions. [2024-11-09 04:57:03,192 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-09 04:57:03,194 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2024-11-09 04:57:03,195 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:03,207 INFO L225 Difference]: With dead ends: 146 [2024-11-09 04:57:03,207 INFO L226 Difference]: Without dead ends: 69 [2024-11-09 04:57:03,212 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 04:57:03,218 INFO L432 NwaCegarLoop]: 79 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 79 SdHoareTripleChecker+Invalid, 20 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:03,220 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 79 Invalid, 20 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:57:03,240 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 69 states. [2024-11-09 04:57:03,268 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 69 to 69. [2024-11-09 04:57:03,270 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 69 states, 43 states have (on average 1.372093023255814) internal successors, (59), 53 states have internal predecessors, (59), 17 states have call successors, (17), 9 states have call predecessors, (17), 8 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) [2024-11-09 04:57:03,273 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 69 states to 69 states and 92 transitions. [2024-11-09 04:57:03,276 INFO L78 Accepts]: Start accepts. Automaton has 69 states and 92 transitions. Word has length 21 [2024-11-09 04:57:03,276 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:03,277 INFO L471 AbstractCegarLoop]: Abstraction has 69 states and 92 transitions. [2024-11-09 04:57:03,277 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:57:03,277 INFO L276 IsEmpty]: Start isEmpty. Operand 69 states and 92 transitions. [2024-11-09 04:57:03,280 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2024-11-09 04:57:03,281 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:03,281 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:03,282 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-09 04:57:03,282 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:03,283 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:03,283 INFO L85 PathProgramCache]: Analyzing trace with hash 1553531262, now seen corresponding path program 1 times [2024-11-09 04:57:03,284 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:03,284 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1642779762] [2024-11-09 04:57:03,285 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:03,285 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:03,315 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:03,500 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:57:03,500 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:03,500 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1642779762] [2024-11-09 04:57:03,500 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1642779762] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:03,501 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:57:03,501 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 04:57:03,501 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1898915506] [2024-11-09 04:57:03,501 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:03,505 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 04:57:03,505 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:03,506 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 04:57:03,508 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:57:03,509 INFO L87 Difference]: Start difference. First operand 69 states and 92 transitions. Second operand has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:57:03,596 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:03,596 INFO L93 Difference]: Finished difference Result 110 states and 146 transitions. [2024-11-09 04:57:03,597 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 04:57:03,597 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 22 [2024-11-09 04:57:03,598 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:03,599 INFO L225 Difference]: With dead ends: 110 [2024-11-09 04:57:03,602 INFO L226 Difference]: Without dead ends: 61 [2024-11-09 04:57:03,603 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:57:03,606 INFO L432 NwaCegarLoop]: 65 mSDtfsCounter, 14 mSDsluCounter, 49 mSDsCounter, 0 mSdLazyCounter, 28 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 114 SdHoareTripleChecker+Invalid, 28 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 28 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:03,607 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 114 Invalid, 28 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 28 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:57:03,609 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 61 states. [2024-11-09 04:57:03,620 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 61 to 61. [2024-11-09 04:57:03,621 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 61 states, 38 states have (on average 1.394736842105263) internal successors, (53), 48 states have internal predecessors, (53), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 9 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-09 04:57:03,622 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61 states to 61 states and 81 transitions. [2024-11-09 04:57:03,623 INFO L78 Accepts]: Start accepts. Automaton has 61 states and 81 transitions. Word has length 22 [2024-11-09 04:57:03,623 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:03,623 INFO L471 AbstractCegarLoop]: Abstraction has 61 states and 81 transitions. [2024-11-09 04:57:03,624 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:57:03,624 INFO L276 IsEmpty]: Start isEmpty. Operand 61 states and 81 transitions. [2024-11-09 04:57:03,625 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-11-09 04:57:03,625 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:03,626 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:03,626 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-09 04:57:03,626 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:03,627 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:03,627 INFO L85 PathProgramCache]: Analyzing trace with hash 1353270980, now seen corresponding path program 1 times [2024-11-09 04:57:03,628 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:03,628 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [70297029] [2024-11-09 04:57:03,628 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:03,629 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:03,653 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:03,724 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:57:03,724 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:03,725 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [70297029] [2024-11-09 04:57:03,725 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [70297029] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:03,725 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:57:03,726 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 04:57:03,726 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2055511777] [2024-11-09 04:57:03,726 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:03,727 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 04:57:03,727 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:03,728 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 04:57:03,728 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:57:03,728 INFO L87 Difference]: Start difference. First operand 61 states and 81 transitions. Second operand has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-09 04:57:03,829 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:03,830 INFO L93 Difference]: Finished difference Result 179 states and 240 transitions. [2024-11-09 04:57:03,830 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 04:57:03,831 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 25 [2024-11-09 04:57:03,831 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:03,833 INFO L225 Difference]: With dead ends: 179 [2024-11-09 04:57:03,834 INFO L226 Difference]: Without dead ends: 120 [2024-11-09 04:57:03,834 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:57:03,836 INFO L432 NwaCegarLoop]: 77 mSDtfsCounter, 73 mSDsluCounter, 63 mSDsCounter, 0 mSdLazyCounter, 34 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 73 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 35 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 34 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:03,837 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [73 Valid, 140 Invalid, 35 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 34 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:57:03,838 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 120 states. [2024-11-09 04:57:03,859 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 120 to 117. [2024-11-09 04:57:03,860 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 117 states, 72 states have (on average 1.4027777777777777) internal successors, (101), 91 states have internal predecessors, (101), 28 states have call successors, (28), 16 states have call predecessors, (28), 16 states have return successors, (28), 17 states have call predecessors, (28), 28 states have call successors, (28) [2024-11-09 04:57:03,862 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 117 states to 117 states and 157 transitions. [2024-11-09 04:57:03,863 INFO L78 Accepts]: Start accepts. Automaton has 117 states and 157 transitions. Word has length 25 [2024-11-09 04:57:03,863 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:03,863 INFO L471 AbstractCegarLoop]: Abstraction has 117 states and 157 transitions. [2024-11-09 04:57:03,864 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-09 04:57:03,864 INFO L276 IsEmpty]: Start isEmpty. Operand 117 states and 157 transitions. [2024-11-09 04:57:03,865 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2024-11-09 04:57:03,866 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:03,866 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:03,866 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-09 04:57:03,867 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:03,867 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:03,867 INFO L85 PathProgramCache]: Analyzing trace with hash 1034739562, now seen corresponding path program 1 times [2024-11-09 04:57:03,868 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:03,868 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2046617420] [2024-11-09 04:57:03,868 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:03,868 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:03,894 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:04,065 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-09 04:57:04,065 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:04,065 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2046617420] [2024-11-09 04:57:04,066 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2046617420] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:04,066 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:57:04,066 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 04:57:04,066 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [940059481] [2024-11-09 04:57:04,066 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:04,067 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 04:57:04,067 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:04,068 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 04:57:04,068 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-09 04:57:04,068 INFO L87 Difference]: Start difference. First operand 117 states and 157 transitions. Second operand has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:57:04,359 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:04,362 INFO L93 Difference]: Finished difference Result 314 states and 433 transitions. [2024-11-09 04:57:04,363 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 04:57:04,363 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 28 [2024-11-09 04:57:04,364 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:04,367 INFO L225 Difference]: With dead ends: 314 [2024-11-09 04:57:04,370 INFO L226 Difference]: Without dead ends: 199 [2024-11-09 04:57:04,372 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-09 04:57:04,377 INFO L432 NwaCegarLoop]: 70 mSDtfsCounter, 41 mSDsluCounter, 230 mSDsCounter, 0 mSdLazyCounter, 126 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 300 SdHoareTripleChecker+Invalid, 135 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 126 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:04,378 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 300 Invalid, 135 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 126 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 04:57:04,383 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 199 states. [2024-11-09 04:57:04,427 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 199 to 198. [2024-11-09 04:57:04,428 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 198 states, 129 states have (on average 1.310077519379845) internal successors, (169), 146 states have internal predecessors, (169), 38 states have call successors, (38), 30 states have call predecessors, (38), 30 states have return successors, (50), 33 states have call predecessors, (50), 38 states have call successors, (50) [2024-11-09 04:57:04,431 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 198 states to 198 states and 257 transitions. [2024-11-09 04:57:04,432 INFO L78 Accepts]: Start accepts. Automaton has 198 states and 257 transitions. Word has length 28 [2024-11-09 04:57:04,432 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:04,432 INFO L471 AbstractCegarLoop]: Abstraction has 198 states and 257 transitions. [2024-11-09 04:57:04,433 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:57:04,433 INFO L276 IsEmpty]: Start isEmpty. Operand 198 states and 257 transitions. [2024-11-09 04:57:04,435 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2024-11-09 04:57:04,435 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:04,435 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:04,436 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-09 04:57:04,436 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:04,437 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:04,437 INFO L85 PathProgramCache]: Analyzing trace with hash 1274500405, now seen corresponding path program 1 times [2024-11-09 04:57:04,437 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:04,438 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [145287464] [2024-11-09 04:57:04,438 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:04,438 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:04,474 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:04,916 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:57:04,917 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:04,917 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [145287464] [2024-11-09 04:57:04,917 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [145287464] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:04,918 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:57:04,918 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-09 04:57:04,918 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [170893341] [2024-11-09 04:57:04,918 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:04,919 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-09 04:57:04,919 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:04,920 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-09 04:57:04,920 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-09 04:57:04,921 INFO L87 Difference]: Start difference. First operand 198 states and 257 transitions. Second operand has 8 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-09 04:57:05,431 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:05,431 INFO L93 Difference]: Finished difference Result 592 states and 764 transitions. [2024-11-09 04:57:05,448 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-11-09 04:57:05,448 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 38 [2024-11-09 04:57:05,448 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:05,453 INFO L225 Difference]: With dead ends: 592 [2024-11-09 04:57:05,453 INFO L226 Difference]: Without dead ends: 396 [2024-11-09 04:57:05,455 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=32, Invalid=58, Unknown=0, NotChecked=0, Total=90 [2024-11-09 04:57:05,456 INFO L432 NwaCegarLoop]: 104 mSDtfsCounter, 218 mSDsluCounter, 242 mSDsCounter, 0 mSdLazyCounter, 214 mSolverCounterSat, 54 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 218 SdHoareTripleChecker+Valid, 346 SdHoareTripleChecker+Invalid, 268 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 54 IncrementalHoareTripleChecker+Valid, 214 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:05,457 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [218 Valid, 346 Invalid, 268 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [54 Valid, 214 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-09 04:57:05,459 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 396 states. [2024-11-09 04:57:05,537 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 396 to 384. [2024-11-09 04:57:05,539 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 384 states, 251 states have (on average 1.2868525896414342) internal successors, (323), 279 states have internal predecessors, (323), 71 states have call successors, (71), 59 states have call predecessors, (71), 61 states have return successors, (95), 64 states have call predecessors, (95), 71 states have call successors, (95) [2024-11-09 04:57:05,548 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 384 states to 384 states and 489 transitions. [2024-11-09 04:57:05,549 INFO L78 Accepts]: Start accepts. Automaton has 384 states and 489 transitions. Word has length 38 [2024-11-09 04:57:05,550 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:05,550 INFO L471 AbstractCegarLoop]: Abstraction has 384 states and 489 transitions. [2024-11-09 04:57:05,551 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-09 04:57:05,551 INFO L276 IsEmpty]: Start isEmpty. Operand 384 states and 489 transitions. [2024-11-09 04:57:05,558 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-11-09 04:57:05,561 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:05,561 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:05,561 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-09 04:57:05,562 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:05,563 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:05,564 INFO L85 PathProgramCache]: Analyzing trace with hash 360081496, now seen corresponding path program 1 times [2024-11-09 04:57:05,565 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:05,565 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1240670831] [2024-11-09 04:57:05,566 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:05,566 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:05,593 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:05,900 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:57:05,901 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:05,901 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1240670831] [2024-11-09 04:57:05,901 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1240670831] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:05,902 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:57:05,902 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-09 04:57:05,902 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1563350841] [2024-11-09 04:57:05,902 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:05,903 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-09 04:57:05,903 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:05,904 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-09 04:57:05,904 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2024-11-09 04:57:05,905 INFO L87 Difference]: Start difference. First operand 384 states and 489 transitions. Second operand has 8 states, 7 states have (on average 4.142857142857143) internal successors, (29), 7 states have internal predecessors, (29), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-09 04:57:06,568 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:06,568 INFO L93 Difference]: Finished difference Result 872 states and 1131 transitions. [2024-11-09 04:57:06,569 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-11-09 04:57:06,570 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 4.142857142857143) internal successors, (29), 7 states have internal predecessors, (29), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) Word has length 41 [2024-11-09 04:57:06,570 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:06,578 INFO L225 Difference]: With dead ends: 872 [2024-11-09 04:57:06,578 INFO L226 Difference]: Without dead ends: 602 [2024-11-09 04:57:06,581 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 18 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=54, Invalid=102, Unknown=0, NotChecked=0, Total=156 [2024-11-09 04:57:06,583 INFO L432 NwaCegarLoop]: 73 mSDtfsCounter, 262 mSDsluCounter, 171 mSDsCounter, 0 mSdLazyCounter, 300 mSolverCounterSat, 101 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 270 SdHoareTripleChecker+Valid, 244 SdHoareTripleChecker+Invalid, 401 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 101 IncrementalHoareTripleChecker+Valid, 300 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:06,583 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [270 Valid, 244 Invalid, 401 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [101 Valid, 300 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-09 04:57:06,589 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 602 states. [2024-11-09 04:57:06,685 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 602 to 566. [2024-11-09 04:57:06,686 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 566 states, 376 states have (on average 1.2792553191489362) internal successors, (481), 416 states have internal predecessors, (481), 100 states have call successors, (100), 76 states have call predecessors, (100), 89 states have return successors, (139), 99 states have call predecessors, (139), 100 states have call successors, (139) [2024-11-09 04:57:06,694 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 566 states to 566 states and 720 transitions. [2024-11-09 04:57:06,695 INFO L78 Accepts]: Start accepts. Automaton has 566 states and 720 transitions. Word has length 41 [2024-11-09 04:57:06,698 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:06,698 INFO L471 AbstractCegarLoop]: Abstraction has 566 states and 720 transitions. [2024-11-09 04:57:06,699 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 4.142857142857143) internal successors, (29), 7 states have internal predecessors, (29), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-09 04:57:06,699 INFO L276 IsEmpty]: Start isEmpty. Operand 566 states and 720 transitions. [2024-11-09 04:57:06,703 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 64 [2024-11-09 04:57:06,703 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:06,703 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:06,703 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-09 04:57:06,704 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:06,704 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:06,704 INFO L85 PathProgramCache]: Analyzing trace with hash 2115606033, now seen corresponding path program 1 times [2024-11-09 04:57:06,705 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:06,705 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1164863314] [2024-11-09 04:57:06,705 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:06,705 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:06,733 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:06,773 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 15 proven. 0 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-09 04:57:06,774 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:06,774 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1164863314] [2024-11-09 04:57:06,774 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1164863314] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:06,774 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:57:06,774 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-09 04:57:06,775 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1245935950] [2024-11-09 04:57:06,775 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:06,775 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 04:57:06,775 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:06,776 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 04:57:06,776 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 04:57:06,778 INFO L87 Difference]: Start difference. First operand 566 states and 720 transitions. Second operand has 4 states, 3 states have (on average 15.333333333333334) internal successors, (46), 4 states have internal predecessors, (46), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) [2024-11-09 04:57:07,004 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:07,004 INFO L93 Difference]: Finished difference Result 943 states and 1198 transitions. [2024-11-09 04:57:07,007 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 04:57:07,008 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 15.333333333333334) internal successors, (46), 4 states have internal predecessors, (46), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) Word has length 63 [2024-11-09 04:57:07,008 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:07,015 INFO L225 Difference]: With dead ends: 943 [2024-11-09 04:57:07,015 INFO L226 Difference]: Without dead ends: 379 [2024-11-09 04:57:07,017 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 04:57:07,019 INFO L432 NwaCegarLoop]: 89 mSDtfsCounter, 104 mSDsluCounter, 51 mSDsCounter, 0 mSdLazyCounter, 92 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 104 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 96 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 92 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:07,020 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [104 Valid, 140 Invalid, 96 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 92 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:57:07,024 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 379 states. [2024-11-09 04:57:07,102 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 379 to 373. [2024-11-09 04:57:07,103 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 373 states, 250 states have (on average 1.26) internal successors, (315), 277 states have internal predecessors, (315), 65 states have call successors, (65), 51 states have call predecessors, (65), 57 states have return successors, (84), 64 states have call predecessors, (84), 65 states have call successors, (84) [2024-11-09 04:57:07,106 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 373 states to 373 states and 464 transitions. [2024-11-09 04:57:07,107 INFO L78 Accepts]: Start accepts. Automaton has 373 states and 464 transitions. Word has length 63 [2024-11-09 04:57:07,108 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:07,108 INFO L471 AbstractCegarLoop]: Abstraction has 373 states and 464 transitions. [2024-11-09 04:57:07,108 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 15.333333333333334) internal successors, (46), 4 states have internal predecessors, (46), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) [2024-11-09 04:57:07,108 INFO L276 IsEmpty]: Start isEmpty. Operand 373 states and 464 transitions. [2024-11-09 04:57:07,111 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2024-11-09 04:57:07,111 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:07,112 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:07,112 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-09 04:57:07,112 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:07,113 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:07,113 INFO L85 PathProgramCache]: Analyzing trace with hash 869753847, now seen corresponding path program 1 times [2024-11-09 04:57:07,113 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:07,114 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1091872244] [2024-11-09 04:57:07,114 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:07,114 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:07,152 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:07,303 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 15 proven. 6 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-11-09 04:57:07,304 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:07,304 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1091872244] [2024-11-09 04:57:07,304 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1091872244] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:57:07,304 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [776473616] [2024-11-09 04:57:07,305 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:07,305 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:57:07,305 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:57:07,313 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:57:07,315 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-09 04:57:07,455 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:07,460 INFO L255 TraceCheckSpWp]: Trace formula consists of 276 conjuncts, 4 conjuncts are in the unsatisfiable core [2024-11-09 04:57:07,468 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:57:07,596 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 33 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:57:07,597 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-09 04:57:07,598 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [776473616] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:07,599 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-09 04:57:07,599 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [7] total 8 [2024-11-09 04:57:07,599 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1968896097] [2024-11-09 04:57:07,599 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:07,600 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 04:57:07,600 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:07,601 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 04:57:07,602 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2024-11-09 04:57:07,603 INFO L87 Difference]: Start difference. First operand 373 states and 464 transitions. Second operand has 3 states, 3 states have (on average 17.666666666666668) internal successors, (53), 3 states have internal predecessors, (53), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) [2024-11-09 04:57:07,720 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:07,720 INFO L93 Difference]: Finished difference Result 666 states and 836 transitions. [2024-11-09 04:57:07,721 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 04:57:07,722 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 17.666666666666668) internal successors, (53), 3 states have internal predecessors, (53), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) Word has length 72 [2024-11-09 04:57:07,726 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:07,729 INFO L225 Difference]: With dead ends: 666 [2024-11-09 04:57:07,729 INFO L226 Difference]: Without dead ends: 363 [2024-11-09 04:57:07,732 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 79 GetRequests, 73 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 8 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2024-11-09 04:57:07,733 INFO L432 NwaCegarLoop]: 94 mSDtfsCounter, 40 mSDsluCounter, 45 mSDsCounter, 0 mSdLazyCounter, 42 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 40 SdHoareTripleChecker+Valid, 139 SdHoareTripleChecker+Invalid, 45 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 42 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:07,736 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [40 Valid, 139 Invalid, 45 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 42 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:57:07,737 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 363 states. [2024-11-09 04:57:07,788 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 363 to 363. [2024-11-09 04:57:07,789 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 363 states, 243 states have (on average 1.2263374485596708) internal successors, (298), 268 states have internal predecessors, (298), 63 states have call successors, (63), 51 states have call predecessors, (63), 56 states have return successors, (74), 62 states have call predecessors, (74), 63 states have call successors, (74) [2024-11-09 04:57:07,792 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 363 states to 363 states and 435 transitions. [2024-11-09 04:57:07,795 INFO L78 Accepts]: Start accepts. Automaton has 363 states and 435 transitions. Word has length 72 [2024-11-09 04:57:07,795 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:07,796 INFO L471 AbstractCegarLoop]: Abstraction has 363 states and 435 transitions. [2024-11-09 04:57:07,796 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 17.666666666666668) internal successors, (53), 3 states have internal predecessors, (53), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) [2024-11-09 04:57:07,796 INFO L276 IsEmpty]: Start isEmpty. Operand 363 states and 435 transitions. [2024-11-09 04:57:07,797 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2024-11-09 04:57:07,799 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:07,799 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:07,823 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-09 04:57:08,003 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable7 [2024-11-09 04:57:08,004 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:08,004 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:08,004 INFO L85 PathProgramCache]: Analyzing trace with hash 393553930, now seen corresponding path program 1 times [2024-11-09 04:57:08,004 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:08,005 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [593223752] [2024-11-09 04:57:08,005 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:08,005 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:08,042 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:08,308 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 12 proven. 10 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2024-11-09 04:57:08,311 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:08,312 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [593223752] [2024-11-09 04:57:08,312 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [593223752] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:57:08,312 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1386251331] [2024-11-09 04:57:08,312 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:08,313 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:57:08,313 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:57:08,320 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:57:08,330 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-09 04:57:08,464 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:08,466 INFO L255 TraceCheckSpWp]: Trace formula consists of 282 conjuncts, 7 conjuncts are in the unsatisfiable core [2024-11-09 04:57:08,471 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:57:08,698 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 21 proven. 9 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:57:08,698 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:57:09,026 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 14 proven. 8 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2024-11-09 04:57:09,027 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1386251331] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:57:09,027 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [374918656] [2024-11-09 04:57:09,061 INFO L159 IcfgInterpreter]: Started Sifa with 49 locations of interest [2024-11-09 04:57:09,062 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:57:09,066 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:57:09,073 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:57:09,074 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:57:18,324 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 145 for LOIs [2024-11-09 04:57:18,467 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 160 for LOIs [2024-11-09 04:57:24,831 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 20 for LOIs [2024-11-09 04:57:24,875 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 20 for LOIs [2024-11-09 04:57:24,912 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 3 for LOIs [2024-11-09 04:57:24,913 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 16 for LOIs [2024-11-09 04:57:24,915 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:57:34,966 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '9765#(and (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (not (= 2 ~waterLevel~0)) (= 1 ~systemActive~0) (<= 0 (+ ~waterLevel~0 2147483648)) (<= ~waterLevel~0 2147483647) (<= 0 (+ ~pumpRunning~0 2147483648)) (= ~switchedOnBeforeTS~0 0))' at error location [2024-11-09 04:57:34,967 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:57:34,967 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:57:34,967 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 6, 6] total 15 [2024-11-09 04:57:34,967 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1011006194] [2024-11-09 04:57:34,967 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:57:34,968 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2024-11-09 04:57:34,968 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:34,969 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2024-11-09 04:57:34,970 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=243, Invalid=1827, Unknown=0, NotChecked=0, Total=2070 [2024-11-09 04:57:34,970 INFO L87 Difference]: Start difference. First operand 363 states and 435 transitions. Second operand has 15 states, 11 states have (on average 8.272727272727273) internal successors, (91), 13 states have internal predecessors, (91), 7 states have call successors, (22), 4 states have call predecessors, (22), 8 states have return successors, (21), 9 states have call predecessors, (21), 7 states have call successors, (21) [2024-11-09 04:57:36,067 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:36,067 INFO L93 Difference]: Finished difference Result 469 states and 572 transitions. [2024-11-09 04:57:36,068 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2024-11-09 04:57:36,068 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 11 states have (on average 8.272727272727273) internal successors, (91), 13 states have internal predecessors, (91), 7 states have call successors, (22), 4 states have call predecessors, (22), 8 states have return successors, (21), 9 states have call predecessors, (21), 7 states have call successors, (21) Word has length 76 [2024-11-09 04:57:36,068 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:36,072 INFO L225 Difference]: With dead ends: 469 [2024-11-09 04:57:36,072 INFO L226 Difference]: Without dead ends: 467 [2024-11-09 04:57:36,075 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 261 GetRequests, 195 SyntacticMatches, 4 SemanticMatches, 62 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1352 ImplicationChecksByTransitivity, 10.7s TimeCoverageRelationStatistics Valid=462, Invalid=3570, Unknown=0, NotChecked=0, Total=4032 [2024-11-09 04:57:36,075 INFO L432 NwaCegarLoop]: 136 mSDtfsCounter, 387 mSDsluCounter, 441 mSDsCounter, 0 mSdLazyCounter, 432 mSolverCounterSat, 197 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 392 SdHoareTripleChecker+Valid, 577 SdHoareTripleChecker+Invalid, 629 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 197 IncrementalHoareTripleChecker+Valid, 432 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:36,076 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [392 Valid, 577 Invalid, 629 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [197 Valid, 432 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-09 04:57:36,077 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 467 states. [2024-11-09 04:57:36,129 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 467 to 414. [2024-11-09 04:57:36,130 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 414 states, 276 states have (on average 1.2246376811594204) internal successors, (338), 307 states have internal predecessors, (338), 72 states have call successors, (72), 59 states have call predecessors, (72), 65 states have return successors, (87), 70 states have call predecessors, (87), 72 states have call successors, (87) [2024-11-09 04:57:36,133 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 414 states to 414 states and 497 transitions. [2024-11-09 04:57:36,135 INFO L78 Accepts]: Start accepts. Automaton has 414 states and 497 transitions. Word has length 76 [2024-11-09 04:57:36,136 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:36,137 INFO L471 AbstractCegarLoop]: Abstraction has 414 states and 497 transitions. [2024-11-09 04:57:36,137 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 11 states have (on average 8.272727272727273) internal successors, (91), 13 states have internal predecessors, (91), 7 states have call successors, (22), 4 states have call predecessors, (22), 8 states have return successors, (21), 9 states have call predecessors, (21), 7 states have call successors, (21) [2024-11-09 04:57:36,138 INFO L276 IsEmpty]: Start isEmpty. Operand 414 states and 497 transitions. [2024-11-09 04:57:36,140 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 97 [2024-11-09 04:57:36,141 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:36,141 INFO L215 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:36,167 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-11-09 04:57:36,345 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable8 [2024-11-09 04:57:36,346 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:36,347 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:36,347 INFO L85 PathProgramCache]: Analyzing trace with hash 1307475861, now seen corresponding path program 1 times [2024-11-09 04:57:36,347 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:36,347 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [877704546] [2024-11-09 04:57:36,348 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:36,348 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:36,374 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:36,488 INFO L134 CoverageAnalysis]: Checked inductivity of 73 backedges. 38 proven. 0 refuted. 0 times theorem prover too weak. 35 trivial. 0 not checked. [2024-11-09 04:57:36,488 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:36,488 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [877704546] [2024-11-09 04:57:36,488 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [877704546] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:57:36,488 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:57:36,488 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-09 04:57:36,489 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [932833614] [2024-11-09 04:57:36,489 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:57:36,489 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-09 04:57:36,489 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:36,490 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-09 04:57:36,490 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-09 04:57:36,490 INFO L87 Difference]: Start difference. First operand 414 states and 497 transitions. Second operand has 5 states, 5 states have (on average 10.4) internal successors, (52), 5 states have internal predecessors, (52), 4 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (10), 4 states have call predecessors, (10), 4 states have call successors, (10) [2024-11-09 04:57:36,836 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:36,837 INFO L93 Difference]: Finished difference Result 1054 states and 1273 transitions. [2024-11-09 04:57:36,837 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-09 04:57:36,837 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 10.4) internal successors, (52), 5 states have internal predecessors, (52), 4 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (10), 4 states have call predecessors, (10), 4 states have call successors, (10) Word has length 96 [2024-11-09 04:57:36,838 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:36,844 INFO L225 Difference]: With dead ends: 1054 [2024-11-09 04:57:36,844 INFO L226 Difference]: Without dead ends: 824 [2024-11-09 04:57:36,846 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-09 04:57:36,846 INFO L432 NwaCegarLoop]: 124 mSDtfsCounter, 137 mSDsluCounter, 136 mSDsCounter, 0 mSdLazyCounter, 209 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 137 SdHoareTripleChecker+Valid, 260 SdHoareTripleChecker+Invalid, 212 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 209 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:36,847 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [137 Valid, 260 Invalid, 212 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 209 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 04:57:36,849 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 824 states. [2024-11-09 04:57:36,940 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 824 to 822. [2024-11-09 04:57:36,942 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 822 states, 549 states have (on average 1.2222222222222223) internal successors, (671), 608 states have internal predecessors, (671), 142 states have call successors, (142), 118 states have call predecessors, (142), 130 states have return successors, (172), 140 states have call predecessors, (172), 142 states have call successors, (172) [2024-11-09 04:57:36,949 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 822 states to 822 states and 985 transitions. [2024-11-09 04:57:36,951 INFO L78 Accepts]: Start accepts. Automaton has 822 states and 985 transitions. Word has length 96 [2024-11-09 04:57:36,952 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:36,952 INFO L471 AbstractCegarLoop]: Abstraction has 822 states and 985 transitions. [2024-11-09 04:57:36,952 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 10.4) internal successors, (52), 5 states have internal predecessors, (52), 4 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (10), 4 states have call predecessors, (10), 4 states have call successors, (10) [2024-11-09 04:57:36,952 INFO L276 IsEmpty]: Start isEmpty. Operand 822 states and 985 transitions. [2024-11-09 04:57:36,955 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 100 [2024-11-09 04:57:36,956 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:36,956 INFO L215 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:36,956 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2024-11-09 04:57:36,956 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:36,957 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:36,957 INFO L85 PathProgramCache]: Analyzing trace with hash 739578478, now seen corresponding path program 1 times [2024-11-09 04:57:36,957 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:36,957 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1851348651] [2024-11-09 04:57:36,957 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:36,957 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:36,987 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:37,272 INFO L134 CoverageAnalysis]: Checked inductivity of 73 backedges. 35 proven. 3 refuted. 0 times theorem prover too weak. 35 trivial. 0 not checked. [2024-11-09 04:57:37,272 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:37,273 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1851348651] [2024-11-09 04:57:37,273 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1851348651] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:57:37,273 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1714026724] [2024-11-09 04:57:37,273 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:37,273 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:57:37,273 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:57:37,275 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:57:37,277 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-09 04:57:37,415 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:37,417 INFO L255 TraceCheckSpWp]: Trace formula consists of 347 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-11-09 04:57:37,420 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:57:37,708 INFO L134 CoverageAnalysis]: Checked inductivity of 73 backedges. 66 proven. 3 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-11-09 04:57:37,708 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:57:38,105 INFO L134 CoverageAnalysis]: Checked inductivity of 73 backedges. 48 proven. 3 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-09 04:57:38,105 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1714026724] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:57:38,105 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1028659354] [2024-11-09 04:57:38,110 INFO L159 IcfgInterpreter]: Started Sifa with 49 locations of interest [2024-11-09 04:57:38,110 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:57:38,111 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:57:38,111 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:57:38,111 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:57:41,075 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 149 for LOIs [2024-11-09 04:57:41,282 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 27 for LOIs [2024-11-09 04:57:41,490 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 24 for LOIs [2024-11-09 04:57:41,524 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2024-11-09 04:57:41,554 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 38 for LOIs [2024-11-09 04:57:41,564 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 3 for LOIs [2024-11-09 04:57:41,566 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 30 for LOIs [2024-11-09 04:57:41,569 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:57:45,485 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14595#(and (<= ~methaneLevelCritical~0 1) (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 1) (not (= 2 ~waterLevel~0)) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (<= |old(~pumpRunning~0)| 2147483647) (= 1 ~systemActive~0) (<= 0 (+ ~waterLevel~0 2147483648)) (<= 0 ~methaneLevelCritical~0) (<= ~waterLevel~0 2147483647) (<= 0 ~pumpRunning~0) (= ~switchedOnBeforeTS~0 0))' at error location [2024-11-09 04:57:45,485 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:57:45,486 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:57:45,486 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 9, 9] total 20 [2024-11-09 04:57:45,486 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [706817067] [2024-11-09 04:57:45,486 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:57:45,487 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-11-09 04:57:45,487 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:45,488 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-11-09 04:57:45,489 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=253, Invalid=2297, Unknown=0, NotChecked=0, Total=2550 [2024-11-09 04:57:45,490 INFO L87 Difference]: Start difference. First operand 822 states and 985 transitions. Second operand has 20 states, 20 states have (on average 5.75) internal successors, (115), 20 states have internal predecessors, (115), 9 states have call successors, (24), 5 states have call predecessors, (24), 8 states have return successors, (25), 10 states have call predecessors, (25), 9 states have call successors, (25) [2024-11-09 04:57:47,568 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:57:47,568 INFO L93 Difference]: Finished difference Result 2550 states and 3334 transitions. [2024-11-09 04:57:47,569 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2024-11-09 04:57:47,569 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 5.75) internal successors, (115), 20 states have internal predecessors, (115), 9 states have call successors, (24), 5 states have call predecessors, (24), 8 states have return successors, (25), 10 states have call predecessors, (25), 9 states have call successors, (25) Word has length 99 [2024-11-09 04:57:47,570 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:57:47,583 INFO L225 Difference]: With dead ends: 2550 [2024-11-09 04:57:47,584 INFO L226 Difference]: Without dead ends: 1714 [2024-11-09 04:57:47,590 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 344 GetRequests, 265 SyntacticMatches, 5 SemanticMatches, 74 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1979 ImplicationChecksByTransitivity, 4.8s TimeCoverageRelationStatistics Valid=577, Invalid=5123, Unknown=0, NotChecked=0, Total=5700 [2024-11-09 04:57:47,591 INFO L432 NwaCegarLoop]: 63 mSDtfsCounter, 575 mSDsluCounter, 421 mSDsCounter, 0 mSdLazyCounter, 963 mSolverCounterSat, 337 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 580 SdHoareTripleChecker+Valid, 484 SdHoareTripleChecker+Invalid, 1300 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 337 IncrementalHoareTripleChecker+Valid, 963 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:57:47,592 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [580 Valid, 484 Invalid, 1300 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [337 Valid, 963 Invalid, 0 Unknown, 0 Unchecked, 1.1s Time] [2024-11-09 04:57:47,595 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1714 states. [2024-11-09 04:57:47,748 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1714 to 1100. [2024-11-09 04:57:47,751 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1100 states, 741 states have (on average 1.1997300944669367) internal successors, (889), 810 states have internal predecessors, (889), 176 states have call successors, (176), 162 states have call predecessors, (176), 182 states have return successors, (220), 186 states have call predecessors, (220), 176 states have call successors, (220) [2024-11-09 04:57:47,756 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1100 states to 1100 states and 1285 transitions. [2024-11-09 04:57:47,759 INFO L78 Accepts]: Start accepts. Automaton has 1100 states and 1285 transitions. Word has length 99 [2024-11-09 04:57:47,760 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:57:47,760 INFO L471 AbstractCegarLoop]: Abstraction has 1100 states and 1285 transitions. [2024-11-09 04:57:47,761 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 20 states have (on average 5.75) internal successors, (115), 20 states have internal predecessors, (115), 9 states have call successors, (24), 5 states have call predecessors, (24), 8 states have return successors, (25), 10 states have call predecessors, (25), 9 states have call successors, (25) [2024-11-09 04:57:47,761 INFO L276 IsEmpty]: Start isEmpty. Operand 1100 states and 1285 transitions. [2024-11-09 04:57:47,764 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 105 [2024-11-09 04:57:47,764 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:57:47,765 INFO L215 NwaCegarLoop]: trace histogram [5, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:57:47,788 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-11-09 04:57:47,969 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-11-09 04:57:47,970 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:57:47,971 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:57:47,971 INFO L85 PathProgramCache]: Analyzing trace with hash 1250008468, now seen corresponding path program 1 times [2024-11-09 04:57:47,971 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:57:47,971 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [432538128] [2024-11-09 04:57:47,971 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:47,972 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:57:47,998 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:49,092 INFO L134 CoverageAnalysis]: Checked inductivity of 84 backedges. 10 proven. 46 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-09 04:57:49,093 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:57:49,093 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [432538128] [2024-11-09 04:57:49,093 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [432538128] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:57:49,093 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1013634034] [2024-11-09 04:57:49,093 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:57:49,093 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:57:49,093 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:57:49,096 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:57:49,098 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-09 04:57:49,216 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:57:49,218 INFO L255 TraceCheckSpWp]: Trace formula consists of 359 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-09 04:57:49,226 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:57:49,720 INFO L134 CoverageAnalysis]: Checked inductivity of 84 backedges. 62 proven. 16 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-09 04:57:49,720 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:57:50,334 INFO L134 CoverageAnalysis]: Checked inductivity of 84 backedges. 54 proven. 5 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-09 04:57:50,335 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1013634034] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:57:50,335 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [247563953] [2024-11-09 04:57:50,340 INFO L159 IcfgInterpreter]: Started Sifa with 49 locations of interest [2024-11-09 04:57:50,341 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:57:50,341 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:57:50,341 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:57:50,342 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:57:52,401 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 151 for LOIs [2024-11-09 04:57:52,535 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 27 for LOIs [2024-11-09 04:57:52,728 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 24 for LOIs [2024-11-09 04:57:52,757 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2024-11-09 04:57:52,784 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 38 for LOIs [2024-11-09 04:57:52,793 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 19 for LOIs [2024-11-09 04:57:52,796 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 30 for LOIs [2024-11-09 04:57:52,799 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:57:58,343 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '20774#(and (<= ~methaneLevelCritical~0 1) (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 1) (not (= 2 ~waterLevel~0)) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (<= |old(~pumpRunning~0)| 2147483647) (= 1 ~systemActive~0) (<= 0 (+ ~waterLevel~0 2147483648)) (<= 0 ~methaneLevelCritical~0) (<= ~waterLevel~0 2147483647) (<= 0 ~pumpRunning~0) (= ~switchedOnBeforeTS~0 0))' at error location [2024-11-09 04:57:58,343 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:57:58,343 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:57:58,343 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 11, 11] total 34 [2024-11-09 04:57:58,344 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [944295378] [2024-11-09 04:57:58,344 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:57:58,344 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 34 states [2024-11-09 04:57:58,344 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:57:58,345 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 34 interpolants. [2024-11-09 04:57:58,351 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=431, Invalid=3991, Unknown=0, NotChecked=0, Total=4422 [2024-11-09 04:57:58,352 INFO L87 Difference]: Start difference. First operand 1100 states and 1285 transitions. Second operand has 34 states, 31 states have (on average 5.096774193548387) internal successors, (158), 33 states have internal predecessors, (158), 19 states have call successors, (33), 8 states have call predecessors, (33), 13 states have return successors, (33), 18 states have call predecessors, (33), 18 states have call successors, (33) [2024-11-09 04:58:02,698 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:58:02,699 INFO L93 Difference]: Finished difference Result 2864 states and 3469 transitions. [2024-11-09 04:58:02,700 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 58 states. [2024-11-09 04:58:02,701 INFO L78 Accepts]: Start accepts. Automaton has has 34 states, 31 states have (on average 5.096774193548387) internal successors, (158), 33 states have internal predecessors, (158), 19 states have call successors, (33), 8 states have call predecessors, (33), 13 states have return successors, (33), 18 states have call predecessors, (33), 18 states have call successors, (33) Word has length 104 [2024-11-09 04:58:02,701 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:58:02,705 INFO L225 Difference]: With dead ends: 2864 [2024-11-09 04:58:02,707 INFO L226 Difference]: Without dead ends: 0 [2024-11-09 04:58:02,719 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 410 GetRequests, 282 SyntacticMatches, 11 SemanticMatches, 117 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 5271 ImplicationChecksByTransitivity, 8.0s TimeCoverageRelationStatistics Valid=1590, Invalid=12452, Unknown=0, NotChecked=0, Total=14042 [2024-11-09 04:58:02,720 INFO L432 NwaCegarLoop]: 155 mSDtfsCounter, 1399 mSDsluCounter, 1293 mSDsCounter, 0 mSdLazyCounter, 2707 mSolverCounterSat, 1000 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1402 SdHoareTripleChecker+Valid, 1448 SdHoareTripleChecker+Invalid, 3707 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1000 IncrementalHoareTripleChecker+Valid, 2707 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.2s IncrementalHoareTripleChecker+Time [2024-11-09 04:58:02,720 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1402 Valid, 1448 Invalid, 3707 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1000 Valid, 2707 Invalid, 0 Unknown, 0 Unchecked, 2.2s Time] [2024-11-09 04:58:02,721 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-09 04:58:02,721 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-09 04:58:02,723 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:58:02,723 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-09 04:58:02,725 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 104 [2024-11-09 04:58:02,726 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:58:02,726 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-09 04:58:02,726 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 34 states, 31 states have (on average 5.096774193548387) internal successors, (158), 33 states have internal predecessors, (158), 19 states have call successors, (33), 8 states have call predecessors, (33), 13 states have return successors, (33), 18 states have call predecessors, (33), 18 states have call successors, (33) [2024-11-09 04:58:02,727 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-09 04:58:02,727 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-09 04:58:02,732 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-09 04:58:02,755 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-11-09 04:58:02,936 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:58:02,939 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:58:02,941 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-09 04:58:23,667 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-09 04:58:23,691 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (= |old(~pumpRunning~0)| 1)) (.cse2 (<= 1 ~switchedOnBeforeTS~0))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1) (and .cse0 .cse1 (<= ~waterLevel~0 0) .cse2) (and .cse0 .cse1 (= ~waterLevel~0 1) .cse2))) (= ~pumpRunning~0 1)) Eliminated clause: (and (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (<= 1 ~switchedOnBeforeTS~0))) (or (and .cse0 (= ~waterLevel~0 1) .cse1) (and (= 2 ~waterLevel~0) .cse0) (and .cse0 (<= ~waterLevel~0 0) .cse1))) (= ~pumpRunning~0 1)) [2024-11-09 04:58:23,712 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse0 (= |old(~methaneLevelCritical~0)| 0)) (.cse1 (= ~methaneLevelCritical~0 0))) (and (or .cse0 (not .cse1)) (let ((.cse3 (= 1 ~systemActive~0)) (.cse6 (<= 1 ~switchedOnBeforeTS~0)) (.cse5 (= ~pumpRunning~0 1)) (.cse2 (= ~pumpRunning~0 0)) (.cse4 (<= ~waterLevel~0 2))) (or (and .cse2 .cse3 .cse4) (and (= 2 ~waterLevel~0) .cse3 .cse5) (and .cse3 (= ~waterLevel~0 1) .cse6 .cse5) (and .cse3 (<= ~waterLevel~0 0) .cse6 .cse5) (and .cse2 .cse4 (= 0 ~systemActive~0)))) (or (not .cse0) .cse1))) Eliminated clause: (and (let ((.cse1 (= 1 ~systemActive~0)) (.cse4 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= ~pumpRunning~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse2 (<= ~waterLevel~0 2))) (or (and .cse0 .cse1 .cse2) (and (= 2 ~waterLevel~0) .cse1 .cse3) (and .cse1 (= ~waterLevel~0 1) .cse4 .cse3) (and .cse1 (<= ~waterLevel~0 0) .cse4 .cse3) (and .cse0 .cse2 (= 0 ~systemActive~0)))) (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse5 (= |old(~methaneLevelCritical~0)| 0)) (.cse6 (= ~methaneLevelCritical~0 0))) (and (or .cse5 (not .cse6)) (or (not .cse5) .cse6))))) [2024-11-09 04:58:23,720 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:58:23,729 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse2 (= 0 ~systemActive~0)) (.cse0 (= |old(~pumpRunning~0)| 0)) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or (not .cse0) (and (= ~pumpRunning~0 0) .cse1)) (or (< |old(~switchedOnBeforeTS~0)| 1) .cse2 (<= 1 ~switchedOnBeforeTS~0)) (let ((.cse4 (= |old(~pumpRunning~0)| 1)) (.cse3 (= 1 ~systemActive~0)) (.cse5 (<= |old(~waterLevel~0)| 2))) (or (and .cse3 .cse4 (= |old(~waterLevel~0)| 2)) (and .cse0 .cse2 .cse5) (and .cse3 .cse4 (<= 1 |old(~switchedOnBeforeTS~0)|) .cse5) (and .cse3 .cse0 .cse5))) (or (< |old(~pumpRunning~0)| 1) (and .cse1 (= ~pumpRunning~0 1))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~switchedOnBeforeTS~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse0 (= 0 ~systemActive~0)) (.cse1 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or (< |old(~switchedOnBeforeTS~0)| 1) (< 0 ~switchedOnBeforeTS~0) .cse0) (or (not .cse1) (and (= ~pumpRunning~0 0) .cse2)) (let ((.cse4 (= |old(~pumpRunning~0)| 1)) (.cse3 (= 1 ~systemActive~0)) (.cse5 (<= |old(~waterLevel~0)| 2))) (or (and .cse3 .cse4 (= |old(~waterLevel~0)| 2)) (and .cse1 .cse0 .cse5) (and .cse3 .cse4 (<= 1 |old(~switchedOnBeforeTS~0)|) .cse5) (and .cse3 .cse1 .cse5))) (or (< |old(~pumpRunning~0)| 1) (and .cse2 (= ~pumpRunning~0 1)))))) [2024-11-09 04:58:23,742 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:58:23,749 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (or (< |old(~pumpRunning~0)| 1) (= ~pumpRunning~0 1)) (let ((.cse1 (= 1 ~systemActive~0)) (.cse2 (= |old(~pumpRunning~0)| 1)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (or (and .cse1 .cse2 (<= ~waterLevel~0 0) .cse3) (and .cse1 .cse0 (<= ~waterLevel~0 2)) (and .cse1 .cse2 (= ~waterLevel~0 1) .cse3))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (or (< |old(~pumpRunning~0)| 1) (= ~pumpRunning~0 1)) (let ((.cse1 (= 1 ~systemActive~0)) (.cse2 (= |old(~pumpRunning~0)| 1)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (or (and .cse1 .cse2 (<= ~waterLevel~0 0) .cse3) (and .cse1 .cse0 (<= ~waterLevel~0 2)) (and .cse1 .cse2 (= ~waterLevel~0 1) .cse3)))))) [2024-11-09 04:58:23,758 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:58:23,766 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (let ((.cse3 (= ~pumpRunning~0 0)) (.cse1 (<= |old(~waterLevel~0)| 2)) (.cse0 (= 1 ~systemActive~0)) (.cse2 (= ~pumpRunning~0 1))) (or (and .cse0 (<= 1 ~switchedOnBeforeTS~0) .cse1 .cse2) (and .cse3 .cse0 .cse1) (and .cse3 (= 0 ~systemActive~0) .cse1) (and .cse0 (= |old(~waterLevel~0)| 2) .cse2))) (= |old(~waterLevel~0)| ~waterLevel~0)) Eliminated clause: (let ((.cse1 (= 1 ~systemActive~0)) (.cse3 (= ~pumpRunning~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse2 (<= ~waterLevel~0 2))) (or (and .cse0 .cse1 .cse2) (and (= 2 ~waterLevel~0) .cse1 .cse3) (and .cse1 .cse2 (<= 1 ~switchedOnBeforeTS~0) .cse3) (and .cse0 .cse2 (= 0 ~systemActive~0)))) [2024-11-09 04:58:23,776 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__lowWaterSensor contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (or (< |old(~pumpRunning~0)| 1) (= ~pumpRunning~0 1)) (let ((.cse1 (= 1 ~systemActive~0)) (.cse2 (= |old(~pumpRunning~0)| 1)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (or (and .cse1 .cse2 (<= ~waterLevel~0 0) .cse3) (and .cse1 .cse0 (<= ~waterLevel~0 2)) (and .cse1 .cse2 (= ~waterLevel~0 1) .cse3))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (or (< |old(~pumpRunning~0)| 1) (= ~pumpRunning~0 1)) (let ((.cse1 (= 1 ~systemActive~0)) (.cse2 (= |old(~pumpRunning~0)| 1)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (or (and .cse1 .cse2 (<= ~waterLevel~0 0) .cse3) (and .cse1 .cse0 (<= ~waterLevel~0 2)) (and .cse1 .cse2 (= ~waterLevel~0 1) .cse3)))))) [2024-11-09 04:58:23,779 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:58:23,788 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 09.11 04:58:23 BoogieIcfgContainer [2024-11-09 04:58:23,789 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-09 04:58:23,789 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-09 04:58:23,789 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-09 04:58:23,790 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-09 04:58:23,790 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:57:02" (3/4) ... [2024-11-09 04:58:23,795 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-09 04:58:23,799 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-09 04:58:23,799 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-09 04:58:23,799 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-09 04:58:23,799 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-09 04:58:23,799 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-09 04:58:23,799 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:58:23,799 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-09 04:58:23,799 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2024-11-09 04:58:23,800 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-09 04:58:23,815 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 46 nodes and edges [2024-11-09 04:58:23,817 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-09 04:58:23,818 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-09 04:58:23,819 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 04:58:23,819 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 04:58:23,965 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/witness.graphml [2024-11-09 04:58:23,965 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/witness.yml [2024-11-09 04:58:23,966 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-09 04:58:23,966 INFO L158 Benchmark]: Toolchain (without parser) took 83001.48ms. Allocated memory was 142.6MB in the beginning and 815.8MB in the end (delta: 673.2MB). Free memory was 107.4MB in the beginning and 313.4MB in the end (delta: -206.0MB). Peak memory consumption was 468.6MB. Max. memory is 16.1GB. [2024-11-09 04:58:23,967 INFO L158 Benchmark]: CDTParser took 0.39ms. Allocated memory is still 102.8MB. Free memory is still 49.4MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-09 04:58:23,968 INFO L158 Benchmark]: CACSL2BoogieTranslator took 736.81ms. Allocated memory is still 142.6MB. Free memory was 107.4MB in the beginning and 85.2MB in the end (delta: 22.2MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-09 04:58:23,968 INFO L158 Benchmark]: Boogie Procedure Inliner took 88.11ms. Allocated memory is still 142.6MB. Free memory was 84.9MB in the beginning and 82.7MB in the end (delta: 2.2MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 04:58:23,969 INFO L158 Benchmark]: Boogie Preprocessor took 57.16ms. Allocated memory is still 142.6MB. Free memory was 82.7MB in the beginning and 81.1MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 04:58:23,969 INFO L158 Benchmark]: RCFGBuilder took 792.19ms. Allocated memory is still 142.6MB. Free memory was 81.1MB in the beginning and 88.4MB in the end (delta: -7.3MB). Peak memory consumption was 11.6MB. Max. memory is 16.1GB. [2024-11-09 04:58:23,970 INFO L158 Benchmark]: TraceAbstraction took 81141.98ms. Allocated memory was 142.6MB in the beginning and 815.8MB in the end (delta: 673.2MB). Free memory was 87.9MB in the beginning and 321.8MB in the end (delta: -233.9MB). Peak memory consumption was 473.8MB. Max. memory is 16.1GB. [2024-11-09 04:58:23,970 INFO L158 Benchmark]: Witness Printer took 176.54ms. Allocated memory is still 815.8MB. Free memory was 321.8MB in the beginning and 313.4MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-09 04:58:23,972 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.39ms. Allocated memory is still 102.8MB. Free memory is still 49.4MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 736.81ms. Allocated memory is still 142.6MB. Free memory was 107.4MB in the beginning and 85.2MB in the end (delta: 22.2MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 88.11ms. Allocated memory is still 142.6MB. Free memory was 84.9MB in the beginning and 82.7MB in the end (delta: 2.2MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 57.16ms. Allocated memory is still 142.6MB. Free memory was 82.7MB in the beginning and 81.1MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 792.19ms. Allocated memory is still 142.6MB. Free memory was 81.1MB in the beginning and 88.4MB in the end (delta: -7.3MB). Peak memory consumption was 11.6MB. Max. memory is 16.1GB. * TraceAbstraction took 81141.98ms. Allocated memory was 142.6MB in the beginning and 815.8MB in the end (delta: 673.2MB). Free memory was 87.9MB in the beginning and 321.8MB in the end (delta: -233.9MB). Peak memory consumption was 473.8MB. Max. memory is 16.1GB. * Witness Printer took 176.54ms. Allocated memory is still 815.8MB. Free memory was 321.8MB in the beginning and 313.4MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] - GenericResultAtLocation [Line: 160]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [160] - GenericResultAtLocation [Line: 418]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [418] - GenericResultAtLocation [Line: 488]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [488] - GenericResultAtLocation [Line: 526]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [526] - GenericResultAtLocation [Line: 535]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [535] - GenericResultAtLocation [Line: 584]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [584] - GenericResultAtLocation [Line: 950]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [950] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 531]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 10 procedures, 74 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 60.2s, OverallIterations: 12, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 10.3s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3276 SdHoareTripleChecker+Valid, 5.5s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 3250 mSDsluCounter, 4271 SdHoareTripleChecker+Invalid, 4.6s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3142 mSDsCounter, 1710 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 5166 IncrementalHoareTripleChecker+Invalid, 6876 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1710 mSolverCounterUnsat, 1129 mSDtfsCounter, 5166 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1150 GetRequests, 836 SyntacticMatches, 20 SemanticMatches, 294 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 8642 ImplicationChecksByTransitivity, 23.9s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1100occurred in iteration=11, InterpolantAutomatonStates: 162, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.8s AutomataMinimizationTime, 12 MinimizatonAttempts, 727 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 5.7s InterpolantComputationTime, 1036 NumberOfCodeBlocks, 1036 NumberOfCodeBlocksAsserted, 16 NumberOfCheckSat, 1296 ConstructedInterpolants, 0 QuantifiedInterpolants, 3475 SizeOfPredicates, 10 NumberOfNonLiveVariables, 1264 ConjunctsInSsa, 41 ConjunctsInUnsatCore, 19 InterpolantComputations, 9 PerfectInterpolantSequences, 624/733 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 430]: Loop Invariant Derived loop invariant: (((((((((((((((((pumpRunning == 0) && (2 == waterLevel)) && (methaneLevelCritical != 0)) && (splverifierCounter == 0)) && (0 == systemActive)) || ((((((1 == systemActive) && (methaneLevelCritical != 0)) && (splverifierCounter == 0)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (methaneLevelCritical != 0)) && (splverifierCounter == 0))) || (((((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1))) || (((((2 == waterLevel) && (1 == systemActive)) && (methaneLevelCritical != 0)) && (splverifierCounter == 0)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((((methaneLevelCritical == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (2 == waterLevel)) && (methaneLevelCritical == 0)) && (splverifierCounter == 0)) && (0 == systemActive))) || ((((((1 == systemActive) && (methaneLevelCritical != 0)) && (splverifierCounter == 0)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((((methaneLevelCritical == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (waterLevel <= 1)) && (methaneLevelCritical != 0)) && (splverifierCounter == 0)) && (0 == systemActive))) || (((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (splverifierCounter == 0)) && (0 == systemActive))) || (((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (1 == systemActive)) && (splverifierCounter == 0))) - InvariantResult [Line: 962]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 429]: Location Invariant Derived location invariant: 0 - ProcedureContractResult [Line: 293]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((((((1 == systemActive) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) || ((2 == waterLevel) && (1 == systemActive))) || (((1 == systemActive) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS))) && (pumpRunning == 1)) Ensures: (((pumpRunning == 0) && (((((2 == waterLevel) && (1 == systemActive)) && (\old(pumpRunning) == 1)) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS))) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 200]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || ((((1 == systemActive) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((1 == systemActive) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) Ensures: ((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || ((((1 == systemActive) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((1 == systemActive) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 84]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: (((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || ((((1 == systemActive) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((1 == systemActive) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (waterLevel <= 2)) && (0 == systemActive))) Ensures: ((((((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || ((((1 == systemActive) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((1 == systemActive) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (waterLevel <= 2)) && (0 == systemActive))) && ((methaneLevelCritical == 0) || (\old(methaneLevelCritical) == 0))) && ((\old(methaneLevelCritical) != 0) || (methaneLevelCritical != 0))) && ((((((waterLevel == \old(waterLevel)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 952]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 173]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: ((((((((((pumpRunning == 0) && (((\old(waterLevel) == ((long long) waterLevel + 1)) && (1 <= \old(waterLevel))) || ((\old(waterLevel) <= 0) && (\old(waterLevel) == waterLevel)))) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) || ((((((\old(waterLevel) == ((long long) waterLevel + 1)) && (1 <= \old(waterLevel))) || ((\old(waterLevel) <= 0) && (\old(waterLevel) == waterLevel))) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (\old(pumpRunning) < 1)) && ((((\old(pumpRunning) == 1) && (\old(waterLevel) == 2)) || ((\old(pumpRunning) == 0) && (\old(waterLevel) <= 2))) || (((\old(pumpRunning) == 1) && (1 <= \old(switchedOnBeforeTS))) && (\old(waterLevel) <= 2)))) && (((pumpRunning == 0) && (\old(waterLevel) == waterLevel)) || (0 != systemActive))) && ((((((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == waterLevel)) || (\old(pumpRunning) != 0)) || ((((2 == waterLevel) && (1 == systemActive)) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || (0 == systemActive))) && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 208]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Ensures: ((((((\old(pumpRunning) < 1) || (pumpRunning == 1)) && ((((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2))) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)))) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || (1 < waterLevel))) && ((pumpRunning == 0) || (pumpRunning == 1))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 72]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: ((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || ((((1 == systemActive) && (waterLevel <= 2)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (waterLevel <= 2)) && (0 == systemActive))) Ensures: (((((((2 == waterLevel) || (\old(waterLevel) != 2)) && ((2 == waterLevel) || (\old(waterLevel) != 1))) && (((0 < \old(waterLevel)) || (pumpRunning != 1)) || (waterLevel < 2))) && (((((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (\old(waterLevel) <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) <= 2))) || (((pumpRunning == 0) && (0 == systemActive)) && (\old(waterLevel) <= 2))) || (((1 == systemActive) && (\old(waterLevel) == 2)) && (pumpRunning == 1)))) && (waterLevel <= 2)) && ((((((methaneLevelCritical == \old(methaneLevelCritical)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 234]: Procedure Contract for processEnvironment__wrappee__lowWaterSensor Derived contract for procedure processEnvironment__wrappee__lowWaterSensor. Ensures: (((((((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2))) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS))) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || (1 < waterLevel))) && ((pumpRunning == 0) || (pumpRunning == 1))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 312]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: (((((((pumpRunning == 0) && (waterLevel <= 1)) && (0 == systemActive)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || ((((1 == systemActive) && (waterLevel <= 2)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive))) Ensures: (((((((pumpRunning != 0) || ((\result == 0) && (1 == systemActive))) || (0 == systemActive)) && (((((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1)) || ((((1 == systemActive) && (waterLevel <= 2)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((pumpRunning == 0) && (waterLevel <= 2)))) && ((\result == 1) || (pumpRunning != 1))) && ((\result == 0) || (0 != systemActive))) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) RESULT: Ultimate proved your program to be correct! [2024-11-09 04:58:24,019 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_4e3d085c-4f6e-445f-9dc9-3643482aeaad/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE