./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a0165632 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash b57a794fa6b429f14911ed2b6a28ecb30bf580e5cb37ae05e7120c2d485c2d18 --- Real Ultimate output --- This is Ultimate 0.2.5-dev-a016563 [2024-11-09 04:31:10,903 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-09 04:31:11,036 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-09 04:31:11,046 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-09 04:31:11,050 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-09 04:31:11,101 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-09 04:31:11,102 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-09 04:31:11,102 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-09 04:31:11,103 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-09 04:31:11,105 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-09 04:31:11,106 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-09 04:31:11,106 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-09 04:31:11,107 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-09 04:31:11,109 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-09 04:31:11,109 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-09 04:31:11,110 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-09 04:31:11,110 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-09 04:31:11,111 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-09 04:31:11,111 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-09 04:31:11,116 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-09 04:31:11,116 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-09 04:31:11,119 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-09 04:31:11,121 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-09 04:31:11,122 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-09 04:31:11,122 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-09 04:31:11,123 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-09 04:31:11,124 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-09 04:31:11,124 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-09 04:31:11,125 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-09 04:31:11,125 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-09 04:31:11,126 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-09 04:31:11,127 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-09 04:31:11,127 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-09 04:31:11,128 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-09 04:31:11,129 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-09 04:31:11,129 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-09 04:31:11,129 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-09 04:31:11,130 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-09 04:31:11,130 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 04:31:11,130 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-09 04:31:11,131 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-09 04:31:11,131 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-09 04:31:11,132 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-09 04:31:11,132 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-09 04:31:11,132 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-09 04:31:11,133 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-09 04:31:11,133 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-09 04:31:11,133 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> b57a794fa6b429f14911ed2b6a28ecb30bf580e5cb37ae05e7120c2d485c2d18 [2024-11-09 04:31:11,442 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-09 04:31:11,476 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-09 04:31:11,480 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-09 04:31:11,483 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-09 04:31:11,484 INFO L274 PluginConnector]: CDTParser initialized [2024-11-09 04:31:11,485 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/../../sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c Unable to find full path for "g++" [2024-11-09 04:31:14,074 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-09 04:31:14,445 INFO L384 CDTParser]: Found 1 translation units. [2024-11-09 04:31:14,445 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c [2024-11-09 04:31:14,462 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/data/5eab3f5dc/249f971c3daa4fa7aeb6a7f278e4910c/FLAG31285dc8b [2024-11-09 04:31:14,481 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/data/5eab3f5dc/249f971c3daa4fa7aeb6a7f278e4910c [2024-11-09 04:31:14,485 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-09 04:31:14,487 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-09 04:31:14,489 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-09 04:31:14,489 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-09 04:31:14,496 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-09 04:31:14,497 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 04:31:14" (1/1) ... [2024-11-09 04:31:14,499 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@729920ae and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:14, skipping insertion in model container [2024-11-09 04:31:14,499 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 04:31:14" (1/1) ... [2024-11-09 04:31:14,583 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-09 04:31:15,088 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c[18075,18088] [2024-11-09 04:31:15,112 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 04:31:15,136 INFO L200 MainTranslator]: Completed pre-run [2024-11-09 04:31:15,149 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] [2024-11-09 04:31:15,151 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [304] [2024-11-09 04:31:15,152 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [376] [2024-11-09 04:31:15,152 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [427] [2024-11-09 04:31:15,152 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [793] [2024-11-09 04:31:15,153 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [893] [2024-11-09 04:31:15,153 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [928] [2024-11-09 04:31:15,153 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [937] [2024-11-09 04:31:15,241 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c[18075,18088] [2024-11-09 04:31:15,246 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 04:31:15,271 INFO L204 MainTranslator]: Completed translation [2024-11-09 04:31:15,272 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15 WrapperNode [2024-11-09 04:31:15,272 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-09 04:31:15,273 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-09 04:31:15,273 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-09 04:31:15,274 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-09 04:31:15,281 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,305 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,352 INFO L138 Inliner]: procedures = 60, calls = 106, calls flagged for inlining = 28, calls inlined = 25, statements flattened = 237 [2024-11-09 04:31:15,353 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-09 04:31:15,354 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-09 04:31:15,355 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-09 04:31:15,356 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-09 04:31:15,366 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,367 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,373 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,373 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,381 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,393 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,395 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,397 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,403 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-09 04:31:15,407 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-09 04:31:15,408 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-09 04:31:15,408 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-09 04:31:15,409 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (1/1) ... [2024-11-09 04:31:15,424 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-09 04:31:15,441 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:31:15,458 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-09 04:31:15,460 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-09 04:31:15,488 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-09 04:31:15,489 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-09 04:31:15,489 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-09 04:31:15,489 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-09 04:31:15,489 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-09 04:31:15,489 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-09 04:31:15,490 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-09 04:31:15,490 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:31:15,490 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:31:15,490 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-09 04:31:15,490 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-09 04:31:15,491 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-09 04:31:15,491 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-09 04:31:15,491 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-09 04:31:15,491 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-09 04:31:15,492 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-09 04:31:15,492 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-09 04:31:15,492 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-09 04:31:15,492 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-09 04:31:15,493 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-09 04:31:15,604 INFO L238 CfgBuilder]: Building ICFG [2024-11-09 04:31:15,606 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-09 04:31:15,981 INFO L? ?]: Removed 51 outVars from TransFormulas that were not future-live. [2024-11-09 04:31:15,981 INFO L287 CfgBuilder]: Performing block encoding [2024-11-09 04:31:16,166 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-09 04:31:16,167 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-09 04:31:16,168 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:31:16 BoogieIcfgContainer [2024-11-09 04:31:16,168 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-09 04:31:16,171 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-09 04:31:16,172 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-09 04:31:16,176 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-09 04:31:16,177 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 09.11 04:31:14" (1/3) ... [2024-11-09 04:31:16,178 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@44351947 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 04:31:16, skipping insertion in model container [2024-11-09 04:31:16,179 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 04:31:15" (2/3) ... [2024-11-09 04:31:16,179 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@44351947 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 04:31:16, skipping insertion in model container [2024-11-09 04:31:16,179 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:31:16" (3/3) ... [2024-11-09 04:31:16,181 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product60.cil.c [2024-11-09 04:31:16,207 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-09 04:31:16,207 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-09 04:31:16,303 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-09 04:31:16,310 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@13233da8, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-09 04:31:16,310 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-09 04:31:16,315 INFO L276 IsEmpty]: Start isEmpty. Operand has 66 states, 42 states have (on average 1.4523809523809523) internal successors, (61), 51 states have internal predecessors, (61), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-09 04:31:16,331 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2024-11-09 04:31:16,332 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:16,332 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:16,334 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:16,342 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:16,342 INFO L85 PathProgramCache]: Analyzing trace with hash 1479501126, now seen corresponding path program 1 times [2024-11-09 04:31:16,356 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:16,357 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [381107945] [2024-11-09 04:31:16,357 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:16,358 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:16,519 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:16,627 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:31:16,628 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:16,628 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [381107945] [2024-11-09 04:31:16,629 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [381107945] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:31:16,629 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:31:16,630 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-09 04:31:16,632 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [677689958] [2024-11-09 04:31:16,633 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:31:16,638 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-09 04:31:16,639 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:16,670 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-09 04:31:16,671 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 04:31:16,673 INFO L87 Difference]: Start difference. First operand has 66 states, 42 states have (on average 1.4523809523809523) internal successors, (61), 51 states have internal predecessors, (61), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:31:16,767 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:16,767 INFO L93 Difference]: Finished difference Result 130 states and 179 transitions. [2024-11-09 04:31:16,772 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-09 04:31:16,774 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2024-11-09 04:31:16,774 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:16,787 INFO L225 Difference]: With dead ends: 130 [2024-11-09 04:31:16,787 INFO L226 Difference]: Without dead ends: 61 [2024-11-09 04:31:16,791 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 04:31:16,795 INFO L432 NwaCegarLoop]: 68 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 68 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:16,796 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 68 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:31:16,815 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 61 states. [2024-11-09 04:31:16,842 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 61 to 61. [2024-11-09 04:31:16,844 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 61 states, 39 states have (on average 1.358974358974359) internal successors, (53), 47 states have internal predecessors, (53), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-09 04:31:16,847 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61 states to 61 states and 80 transitions. [2024-11-09 04:31:16,849 INFO L78 Accepts]: Start accepts. Automaton has 61 states and 80 transitions. Word has length 21 [2024-11-09 04:31:16,850 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:16,850 INFO L471 AbstractCegarLoop]: Abstraction has 61 states and 80 transitions. [2024-11-09 04:31:16,851 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:31:16,851 INFO L276 IsEmpty]: Start isEmpty. Operand 61 states and 80 transitions. [2024-11-09 04:31:16,853 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2024-11-09 04:31:16,854 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:16,854 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:16,855 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-09 04:31:16,855 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:16,856 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:16,856 INFO L85 PathProgramCache]: Analyzing trace with hash 611303048, now seen corresponding path program 1 times [2024-11-09 04:31:16,856 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:16,856 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1093126882] [2024-11-09 04:31:16,857 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:16,857 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:16,880 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:17,009 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:31:17,009 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:17,010 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1093126882] [2024-11-09 04:31:17,010 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1093126882] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:31:17,011 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:31:17,011 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 04:31:17,011 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [174374386] [2024-11-09 04:31:17,012 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:31:17,013 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 04:31:17,013 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:17,014 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 04:31:17,015 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:31:17,015 INFO L87 Difference]: Start difference. First operand 61 states and 80 transitions. Second operand has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:31:17,110 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:17,114 INFO L93 Difference]: Finished difference Result 94 states and 122 transitions. [2024-11-09 04:31:17,115 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 04:31:17,116 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 22 [2024-11-09 04:31:17,116 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:17,117 INFO L225 Difference]: With dead ends: 94 [2024-11-09 04:31:17,117 INFO L226 Difference]: Without dead ends: 53 [2024-11-09 04:31:17,118 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:31:17,122 INFO L432 NwaCegarLoop]: 54 mSDtfsCounter, 14 mSDsluCounter, 38 mSDsCounter, 0 mSdLazyCounter, 26 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 92 SdHoareTripleChecker+Invalid, 26 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 26 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:17,123 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 92 Invalid, 26 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 26 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:31:17,124 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 53 states. [2024-11-09 04:31:17,132 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 53 to 53. [2024-11-09 04:31:17,133 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 53 states, 34 states have (on average 1.3823529411764706) internal successors, (47), 42 states have internal predecessors, (47), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-09 04:31:17,135 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 53 states to 53 states and 69 transitions. [2024-11-09 04:31:17,136 INFO L78 Accepts]: Start accepts. Automaton has 53 states and 69 transitions. Word has length 22 [2024-11-09 04:31:17,136 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:17,136 INFO L471 AbstractCegarLoop]: Abstraction has 53 states and 69 transitions. [2024-11-09 04:31:17,137 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:31:17,137 INFO L276 IsEmpty]: Start isEmpty. Operand 53 states and 69 transitions. [2024-11-09 04:31:17,138 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-11-09 04:31:17,138 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:17,139 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:17,139 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-09 04:31:17,139 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:17,140 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:17,140 INFO L85 PathProgramCache]: Analyzing trace with hash 191016654, now seen corresponding path program 1 times [2024-11-09 04:31:17,141 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:17,141 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1084691164] [2024-11-09 04:31:17,141 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:17,142 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:17,192 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:17,418 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:31:17,418 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:17,419 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1084691164] [2024-11-09 04:31:17,419 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1084691164] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:31:17,419 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:31:17,419 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 04:31:17,420 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1418800344] [2024-11-09 04:31:17,420 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:31:17,421 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 04:31:17,421 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:17,422 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 04:31:17,422 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:31:17,423 INFO L87 Difference]: Start difference. First operand 53 states and 69 transitions. Second operand has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-09 04:31:17,526 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:17,526 INFO L93 Difference]: Finished difference Result 155 states and 204 transitions. [2024-11-09 04:31:17,527 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 04:31:17,528 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 25 [2024-11-09 04:31:17,528 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:17,530 INFO L225 Difference]: With dead ends: 155 [2024-11-09 04:31:17,530 INFO L226 Difference]: Without dead ends: 104 [2024-11-09 04:31:17,531 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 04:31:17,533 INFO L432 NwaCegarLoop]: 65 mSDtfsCounter, 61 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 32 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 61 SdHoareTripleChecker+Valid, 117 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 32 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:17,533 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [61 Valid, 117 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 32 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:31:17,535 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 104 states. [2024-11-09 04:31:17,578 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 104 to 101. [2024-11-09 04:31:17,579 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 101 states, 64 states have (on average 1.390625) internal successors, (89), 79 states have internal predecessors, (89), 22 states have call successors, (22), 14 states have call predecessors, (22), 14 states have return successors, (22), 15 states have call predecessors, (22), 22 states have call successors, (22) [2024-11-09 04:31:17,584 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 101 states to 101 states and 133 transitions. [2024-11-09 04:31:17,585 INFO L78 Accepts]: Start accepts. Automaton has 101 states and 133 transitions. Word has length 25 [2024-11-09 04:31:17,585 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:17,585 INFO L471 AbstractCegarLoop]: Abstraction has 101 states and 133 transitions. [2024-11-09 04:31:17,586 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-09 04:31:17,586 INFO L276 IsEmpty]: Start isEmpty. Operand 101 states and 133 transitions. [2024-11-09 04:31:17,587 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2024-11-09 04:31:17,588 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:17,590 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:17,590 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-09 04:31:17,591 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:17,591 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:17,591 INFO L85 PathProgramCache]: Analyzing trace with hash 1990460382, now seen corresponding path program 1 times [2024-11-09 04:31:17,592 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:17,592 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1889041711] [2024-11-09 04:31:17,592 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:17,593 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:17,635 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:17,837 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-09 04:31:17,837 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:17,838 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1889041711] [2024-11-09 04:31:17,838 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1889041711] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:31:17,838 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:31:17,838 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 04:31:17,839 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1906132333] [2024-11-09 04:31:17,839 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:31:17,840 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 04:31:17,840 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:17,841 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 04:31:17,841 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-09 04:31:17,841 INFO L87 Difference]: Start difference. First operand 101 states and 133 transitions. Second operand has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:31:18,100 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:18,101 INFO L93 Difference]: Finished difference Result 274 states and 369 transitions. [2024-11-09 04:31:18,101 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 04:31:18,102 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 28 [2024-11-09 04:31:18,102 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:18,104 INFO L225 Difference]: With dead ends: 274 [2024-11-09 04:31:18,105 INFO L226 Difference]: Without dead ends: 175 [2024-11-09 04:31:18,106 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-09 04:31:18,108 INFO L432 NwaCegarLoop]: 57 mSDtfsCounter, 34 mSDsluCounter, 187 mSDsCounter, 0 mSdLazyCounter, 113 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 35 SdHoareTripleChecker+Valid, 244 SdHoareTripleChecker+Invalid, 120 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 113 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:18,109 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [35 Valid, 244 Invalid, 120 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 113 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 04:31:18,110 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 175 states. [2024-11-09 04:31:18,140 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 175 to 174. [2024-11-09 04:31:18,141 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 174 states, 115 states have (on average 1.3130434782608695) internal successors, (151), 130 states have internal predecessors, (151), 32 states have call successors, (32), 26 states have call predecessors, (32), 26 states have return successors, (40), 29 states have call predecessors, (40), 32 states have call successors, (40) [2024-11-09 04:31:18,143 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 174 states to 174 states and 223 transitions. [2024-11-09 04:31:18,144 INFO L78 Accepts]: Start accepts. Automaton has 174 states and 223 transitions. Word has length 28 [2024-11-09 04:31:18,145 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:18,145 INFO L471 AbstractCegarLoop]: Abstraction has 174 states and 223 transitions. [2024-11-09 04:31:18,145 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-09 04:31:18,145 INFO L276 IsEmpty]: Start isEmpty. Operand 174 states and 223 transitions. [2024-11-09 04:31:18,150 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 34 [2024-11-09 04:31:18,150 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:18,150 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:18,153 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-09 04:31:18,154 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:18,155 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:18,155 INFO L85 PathProgramCache]: Analyzing trace with hash 90482833, now seen corresponding path program 1 times [2024-11-09 04:31:18,155 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:18,156 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [949384025] [2024-11-09 04:31:18,156 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:18,156 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:18,191 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:18,474 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:31:18,475 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:18,475 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [949384025] [2024-11-09 04:31:18,475 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [949384025] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:31:18,476 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:31:18,476 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 04:31:18,476 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1086438770] [2024-11-09 04:31:18,476 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:31:18,481 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 04:31:18,481 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:18,482 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 04:31:18,482 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-11-09 04:31:18,483 INFO L87 Difference]: Start difference. First operand 174 states and 223 transitions. Second operand has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-09 04:31:18,851 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:18,851 INFO L93 Difference]: Finished difference Result 528 states and 678 transitions. [2024-11-09 04:31:18,852 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-09 04:31:18,852 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 33 [2024-11-09 04:31:18,853 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:18,856 INFO L225 Difference]: With dead ends: 528 [2024-11-09 04:31:18,857 INFO L226 Difference]: Without dead ends: 356 [2024-11-09 04:31:18,858 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2024-11-09 04:31:18,860 INFO L432 NwaCegarLoop]: 85 mSDtfsCounter, 111 mSDsluCounter, 139 mSDsCounter, 0 mSdLazyCounter, 129 mSolverCounterSat, 22 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 111 SdHoareTripleChecker+Valid, 224 SdHoareTripleChecker+Invalid, 151 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 22 IncrementalHoareTripleChecker+Valid, 129 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:18,860 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [111 Valid, 224 Invalid, 151 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [22 Valid, 129 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-09 04:31:18,862 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 356 states. [2024-11-09 04:31:18,929 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 356 to 346. [2024-11-09 04:31:18,931 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 346 states, 229 states have (on average 1.296943231441048) internal successors, (297), 255 states have internal predecessors, (297), 63 states have call successors, (63), 53 states have call predecessors, (63), 53 states have return successors, (81), 56 states have call predecessors, (81), 63 states have call successors, (81) [2024-11-09 04:31:18,935 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 346 states to 346 states and 441 transitions. [2024-11-09 04:31:18,935 INFO L78 Accepts]: Start accepts. Automaton has 346 states and 441 transitions. Word has length 33 [2024-11-09 04:31:18,936 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:18,936 INFO L471 AbstractCegarLoop]: Abstraction has 346 states and 441 transitions. [2024-11-09 04:31:18,936 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-09 04:31:18,936 INFO L276 IsEmpty]: Start isEmpty. Operand 346 states and 441 transitions. [2024-11-09 04:31:18,938 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 37 [2024-11-09 04:31:18,938 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:18,939 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:18,939 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-09 04:31:18,939 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:18,940 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:18,940 INFO L85 PathProgramCache]: Analyzing trace with hash 853893644, now seen corresponding path program 1 times [2024-11-09 04:31:18,940 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:18,940 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [547379800] [2024-11-09 04:31:18,941 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:18,941 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:18,961 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:19,414 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-09 04:31:19,415 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:19,415 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [547379800] [2024-11-09 04:31:19,415 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [547379800] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:31:19,415 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:31:19,415 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-09 04:31:19,416 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1443282046] [2024-11-09 04:31:19,416 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:31:19,416 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-09 04:31:19,417 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:19,421 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-09 04:31:19,422 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2024-11-09 04:31:19,422 INFO L87 Difference]: Start difference. First operand 346 states and 441 transitions. Second operand has 8 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 4 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-09 04:31:20,094 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:20,095 INFO L93 Difference]: Finished difference Result 792 states and 1031 transitions. [2024-11-09 04:31:20,096 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-11-09 04:31:20,097 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 4 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 36 [2024-11-09 04:31:20,099 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:20,111 INFO L225 Difference]: With dead ends: 792 [2024-11-09 04:31:20,112 INFO L226 Difference]: Without dead ends: 550 [2024-11-09 04:31:20,114 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 18 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=54, Invalid=102, Unknown=0, NotChecked=0, Total=156 [2024-11-09 04:31:20,118 INFO L432 NwaCegarLoop]: 69 mSDtfsCounter, 184 mSDsluCounter, 199 mSDsCounter, 0 mSdLazyCounter, 288 mSolverCounterSat, 69 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 189 SdHoareTripleChecker+Valid, 268 SdHoareTripleChecker+Invalid, 357 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 69 IncrementalHoareTripleChecker+Valid, 288 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:20,119 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [189 Valid, 268 Invalid, 357 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [69 Valid, 288 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-09 04:31:20,121 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 550 states. [2024-11-09 04:31:20,260 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 550 to 514. [2024-11-09 04:31:20,262 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 514 states, 346 states have (on average 1.2919075144508672) internal successors, (447), 384 states have internal predecessors, (447), 90 states have call successors, (90), 68 states have call predecessors, (90), 77 states have return successors, (121), 87 states have call predecessors, (121), 90 states have call successors, (121) [2024-11-09 04:31:20,268 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 514 states to 514 states and 658 transitions. [2024-11-09 04:31:20,271 INFO L78 Accepts]: Start accepts. Automaton has 514 states and 658 transitions. Word has length 36 [2024-11-09 04:31:20,271 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:20,271 INFO L471 AbstractCegarLoop]: Abstraction has 514 states and 658 transitions. [2024-11-09 04:31:20,272 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 4 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-09 04:31:20,274 INFO L276 IsEmpty]: Start isEmpty. Operand 514 states and 658 transitions. [2024-11-09 04:31:20,277 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 59 [2024-11-09 04:31:20,280 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:20,281 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:20,281 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-09 04:31:20,281 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:20,282 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:20,282 INFO L85 PathProgramCache]: Analyzing trace with hash -1266712669, now seen corresponding path program 1 times [2024-11-09 04:31:20,282 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:20,283 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1327777066] [2024-11-09 04:31:20,283 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:20,284 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:20,317 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:20,365 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 15 proven. 0 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-09 04:31:20,365 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:20,366 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1327777066] [2024-11-09 04:31:20,366 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1327777066] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:31:20,366 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 04:31:20,366 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-09 04:31:20,367 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [645628121] [2024-11-09 04:31:20,367 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:31:20,368 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-09 04:31:20,369 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:20,369 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-09 04:31:20,370 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 04:31:20,370 INFO L87 Difference]: Start difference. First operand 514 states and 658 transitions. Second operand has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (7), 2 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) [2024-11-09 04:31:20,584 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:20,585 INFO L93 Difference]: Finished difference Result 865 states and 1105 transitions. [2024-11-09 04:31:20,585 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-09 04:31:20,586 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (7), 2 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) Word has length 58 [2024-11-09 04:31:20,586 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:20,589 INFO L225 Difference]: With dead ends: 865 [2024-11-09 04:31:20,590 INFO L226 Difference]: Without dead ends: 353 [2024-11-09 04:31:20,592 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-09 04:31:20,593 INFO L432 NwaCegarLoop]: 78 mSDtfsCounter, 92 mSDsluCounter, 46 mSDsCounter, 0 mSdLazyCounter, 84 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 92 SdHoareTripleChecker+Valid, 124 SdHoareTripleChecker+Invalid, 88 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 84 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:20,594 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [92 Valid, 124 Invalid, 88 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 84 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 04:31:20,596 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 353 states. [2024-11-09 04:31:20,650 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 353 to 347. [2024-11-09 04:31:20,651 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 347 states, 235 states have (on average 1.2680851063829788) internal successors, (298), 261 states have internal predecessors, (298), 60 states have call successors, (60), 47 states have call predecessors, (60), 51 states have return successors, (75), 58 states have call predecessors, (75), 60 states have call successors, (75) [2024-11-09 04:31:20,654 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 347 states to 347 states and 433 transitions. [2024-11-09 04:31:20,656 INFO L78 Accepts]: Start accepts. Automaton has 347 states and 433 transitions. Word has length 58 [2024-11-09 04:31:20,657 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:20,657 INFO L471 AbstractCegarLoop]: Abstraction has 347 states and 433 transitions. [2024-11-09 04:31:20,658 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (7), 2 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) [2024-11-09 04:31:20,658 INFO L276 IsEmpty]: Start isEmpty. Operand 347 states and 433 transitions. [2024-11-09 04:31:20,661 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2024-11-09 04:31:20,661 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:20,662 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:20,662 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-09 04:31:20,662 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:20,665 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:20,665 INFO L85 PathProgramCache]: Analyzing trace with hash -554209503, now seen corresponding path program 1 times [2024-11-09 04:31:20,665 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:20,666 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1898408663] [2024-11-09 04:31:20,666 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:20,666 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:20,700 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:20,955 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 8 proven. 11 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2024-11-09 04:31:20,958 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:20,959 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1898408663] [2024-11-09 04:31:20,959 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1898408663] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:31:20,959 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1440884329] [2024-11-09 04:31:20,959 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:20,960 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:31:20,960 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:31:20,962 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:31:20,965 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-09 04:31:21,105 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:21,108 INFO L255 TraceCheckSpWp]: Trace formula consists of 258 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-11-09 04:31:21,119 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:31:21,383 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 13 proven. 15 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:31:21,383 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:31:21,815 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 9 proven. 10 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2024-11-09 04:31:21,815 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1440884329] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:31:21,816 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [328456581] [2024-11-09 04:31:21,841 INFO L159 IcfgInterpreter]: Started Sifa with 37 locations of interest [2024-11-09 04:31:21,842 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:31:21,846 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:31:21,854 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:31:21,854 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:31:25,285 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 35 for LOIs [2024-11-09 04:31:25,301 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 24 for LOIs [2024-11-09 04:31:25,663 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 44 for LOIs [2024-11-09 04:31:25,696 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 21 for LOIs [2024-11-09 04:31:25,746 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:31:28,727 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7130#(and (= ~methaneLevelCritical~0 0) (exists ((|v_ULTIMATE.start_test_~tmp___2~0#1_20| Int)) (and (<= |v_ULTIMATE.start_test_~tmp___2~0#1_20| 2147483647) (not (= 0 |v_ULTIMATE.start_test_~tmp___2~0#1_20|)) (<= 0 (+ 2147483648 |v_ULTIMATE.start_test_~tmp___2~0#1_20|)))) (not (= 2 ~waterLevel~0)) (<= 2 ~waterLevel~0) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (<= ~waterLevel~0 2147483647) (= |old(~waterLevel~0)| ~waterLevel~0) (= ~switchedOnBeforeTS~0 0) (= ~pumpRunning~0 1))' at error location [2024-11-09 04:31:28,728 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:31:28,728 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:31:28,728 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 5, 5] total 12 [2024-11-09 04:31:28,732 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [63940683] [2024-11-09 04:31:28,732 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:31:28,733 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2024-11-09 04:31:28,733 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:28,734 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2024-11-09 04:31:28,735 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=210, Invalid=1272, Unknown=0, NotChecked=0, Total=1482 [2024-11-09 04:31:28,736 INFO L87 Difference]: Start difference. First operand 347 states and 433 transitions. Second operand has 12 states, 11 states have (on average 8.181818181818182) internal successors, (90), 12 states have internal predecessors, (90), 8 states have call successors, (20), 5 states have call predecessors, (20), 8 states have return successors, (17), 9 states have call predecessors, (17), 7 states have call successors, (17) [2024-11-09 04:31:29,829 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:29,829 INFO L93 Difference]: Finished difference Result 1436 states and 1845 transitions. [2024-11-09 04:31:29,834 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-11-09 04:31:29,834 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 11 states have (on average 8.181818181818182) internal successors, (90), 12 states have internal predecessors, (90), 8 states have call successors, (20), 5 states have call predecessors, (20), 8 states have return successors, (17), 9 states have call predecessors, (17), 7 states have call successors, (17) Word has length 62 [2024-11-09 04:31:29,835 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:29,845 INFO L225 Difference]: With dead ends: 1436 [2024-11-09 04:31:29,845 INFO L226 Difference]: Without dead ends: 1154 [2024-11-09 04:31:29,848 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 203 GetRequests, 159 SyntacticMatches, 2 SemanticMatches, 42 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 719 ImplicationChecksByTransitivity, 3.2s TimeCoverageRelationStatistics Valid=270, Invalid=1622, Unknown=0, NotChecked=0, Total=1892 [2024-11-09 04:31:29,849 INFO L432 NwaCegarLoop]: 117 mSDtfsCounter, 520 mSDsluCounter, 536 mSDsCounter, 0 mSdLazyCounter, 571 mSolverCounterSat, 214 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 522 SdHoareTripleChecker+Valid, 653 SdHoareTripleChecker+Invalid, 785 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 214 IncrementalHoareTripleChecker+Valid, 571 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:29,850 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [522 Valid, 653 Invalid, 785 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [214 Valid, 571 Invalid, 0 Unknown, 0 Unchecked, 0.8s Time] [2024-11-09 04:31:29,852 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1154 states. [2024-11-09 04:31:29,967 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1154 to 914. [2024-11-09 04:31:29,969 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 914 states, 631 states have (on average 1.2646592709984152) internal successors, (798), 681 states have internal predecessors, (798), 156 states have call successors, (156), 121 states have call predecessors, (156), 126 states have return successors, (186), 146 states have call predecessors, (186), 156 states have call successors, (186) [2024-11-09 04:31:29,975 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 914 states to 914 states and 1140 transitions. [2024-11-09 04:31:29,978 INFO L78 Accepts]: Start accepts. Automaton has 914 states and 1140 transitions. Word has length 62 [2024-11-09 04:31:29,978 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:29,979 INFO L471 AbstractCegarLoop]: Abstraction has 914 states and 1140 transitions. [2024-11-09 04:31:29,979 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 11 states have (on average 8.181818181818182) internal successors, (90), 12 states have internal predecessors, (90), 8 states have call successors, (20), 5 states have call predecessors, (20), 8 states have return successors, (17), 9 states have call predecessors, (17), 7 states have call successors, (17) [2024-11-09 04:31:29,979 INFO L276 IsEmpty]: Start isEmpty. Operand 914 states and 1140 transitions. [2024-11-09 04:31:29,983 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2024-11-09 04:31:29,983 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:29,983 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:30,010 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-09 04:31:30,184 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable7 [2024-11-09 04:31:30,184 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:30,185 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:30,185 INFO L85 PathProgramCache]: Analyzing trace with hash -144641353, now seen corresponding path program 1 times [2024-11-09 04:31:30,185 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:30,185 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1794363728] [2024-11-09 04:31:30,185 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:30,186 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:30,212 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:31,282 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 0 proven. 25 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-09 04:31:31,283 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:31,283 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1794363728] [2024-11-09 04:31:31,283 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1794363728] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:31:31,283 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1160425930] [2024-11-09 04:31:31,284 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:31,284 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:31:31,284 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:31:31,287 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:31:31,288 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-09 04:31:31,418 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:31,420 INFO L255 TraceCheckSpWp]: Trace formula consists of 270 conjuncts, 14 conjuncts are in the unsatisfiable core [2024-11-09 04:31:31,426 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:31:31,572 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 30 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:31:31,572 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:31:31,751 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 17 proven. 1 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-11-09 04:31:31,751 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1160425930] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:31:31,751 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [536881013] [2024-11-09 04:31:31,757 INFO L159 IcfgInterpreter]: Started Sifa with 40 locations of interest [2024-11-09 04:31:31,758 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:31:31,758 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:31:31,759 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:31:31,759 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:31:34,034 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 35 for LOIs [2024-11-09 04:31:34,050 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 40 for LOIs [2024-11-09 04:31:34,387 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 8 for LOIs [2024-11-09 04:31:34,389 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 40 for LOIs [2024-11-09 04:31:34,462 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 15 for LOIs [2024-11-09 04:31:34,465 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:31:37,220 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '11054#(and (<= ~methaneLevelCritical~0 1) (not (= 2 ~waterLevel~0)) (<= 2 ~waterLevel~0) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (<= 2 |old(~waterLevel~0)|) (<= 0 ~methaneLevelCritical~0) (<= ~waterLevel~0 2147483647) (= ~switchedOnBeforeTS~0 0) (= ~pumpRunning~0 1))' at error location [2024-11-09 04:31:37,221 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:31:37,221 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:31:37,221 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 6, 6] total 23 [2024-11-09 04:31:37,221 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1940508306] [2024-11-09 04:31:37,221 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:31:37,222 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-11-09 04:31:37,222 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:37,223 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-11-09 04:31:37,224 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=245, Invalid=2407, Unknown=0, NotChecked=0, Total=2652 [2024-11-09 04:31:37,224 INFO L87 Difference]: Start difference. First operand 914 states and 1140 transitions. Second operand has 23 states, 20 states have (on average 4.4) internal successors, (88), 21 states have internal predecessors, (88), 9 states have call successors, (22), 8 states have call predecessors, (22), 7 states have return successors, (20), 8 states have call predecessors, (20), 9 states have call successors, (20) [2024-11-09 04:31:44,044 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:44,044 INFO L93 Difference]: Finished difference Result 5355 states and 7550 transitions. [2024-11-09 04:31:44,045 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 103 states. [2024-11-09 04:31:44,045 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 20 states have (on average 4.4) internal successors, (88), 21 states have internal predecessors, (88), 9 states have call successors, (22), 8 states have call predecessors, (22), 7 states have return successors, (20), 8 states have call predecessors, (20), 9 states have call successors, (20) Word has length 68 [2024-11-09 04:31:44,046 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:44,080 INFO L225 Difference]: With dead ends: 5355 [2024-11-09 04:31:44,081 INFO L226 Difference]: Without dead ends: 4273 [2024-11-09 04:31:44,094 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 359 GetRequests, 215 SyntacticMatches, 4 SemanticMatches, 140 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 7998 ImplicationChecksByTransitivity, 6.1s TimeCoverageRelationStatistics Valid=2520, Invalid=17502, Unknown=0, NotChecked=0, Total=20022 [2024-11-09 04:31:44,095 INFO L432 NwaCegarLoop]: 111 mSDtfsCounter, 1135 mSDsluCounter, 1026 mSDsCounter, 0 mSdLazyCounter, 2604 mSolverCounterSat, 697 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1147 SdHoareTripleChecker+Valid, 1137 SdHoareTripleChecker+Invalid, 3301 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 697 IncrementalHoareTripleChecker+Valid, 2604 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.9s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:44,096 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1147 Valid, 1137 Invalid, 3301 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [697 Valid, 2604 Invalid, 0 Unknown, 0 Unchecked, 2.9s Time] [2024-11-09 04:31:44,102 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4273 states. [2024-11-09 04:31:44,540 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4273 to 2188. [2024-11-09 04:31:44,544 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2188 states, 1510 states have (on average 1.2417218543046358) internal successors, (1875), 1638 states have internal predecessors, (1875), 343 states have call successors, (343), 306 states have call predecessors, (343), 334 states have return successors, (458), 339 states have call predecessors, (458), 343 states have call successors, (458) [2024-11-09 04:31:44,554 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2188 states to 2188 states and 2676 transitions. [2024-11-09 04:31:44,559 INFO L78 Accepts]: Start accepts. Automaton has 2188 states and 2676 transitions. Word has length 68 [2024-11-09 04:31:44,559 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:44,560 INFO L471 AbstractCegarLoop]: Abstraction has 2188 states and 2676 transitions. [2024-11-09 04:31:44,560 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 20 states have (on average 4.4) internal successors, (88), 21 states have internal predecessors, (88), 9 states have call successors, (22), 8 states have call predecessors, (22), 7 states have return successors, (20), 8 states have call predecessors, (20), 9 states have call successors, (20) [2024-11-09 04:31:44,560 INFO L276 IsEmpty]: Start isEmpty. Operand 2188 states and 2676 transitions. [2024-11-09 04:31:44,566 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 66 [2024-11-09 04:31:44,567 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:44,567 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:44,589 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-11-09 04:31:44,772 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:31:44,772 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:44,773 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:44,773 INFO L85 PathProgramCache]: Analyzing trace with hash 1468774559, now seen corresponding path program 1 times [2024-11-09 04:31:44,773 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:44,773 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [400288824] [2024-11-09 04:31:44,773 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:44,774 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:44,793 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:45,066 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 5 proven. 15 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-09 04:31:45,066 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:45,066 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [400288824] [2024-11-09 04:31:45,066 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [400288824] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:31:45,067 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [477005948] [2024-11-09 04:31:45,067 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:45,067 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:31:45,067 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:31:45,069 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:31:45,073 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-09 04:31:45,179 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:45,182 INFO L255 TraceCheckSpWp]: Trace formula consists of 258 conjuncts, 9 conjuncts are in the unsatisfiable core [2024-11-09 04:31:45,185 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:31:45,413 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 0 proven. 26 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 04:31:45,414 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:31:45,754 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 6 proven. 14 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-09 04:31:45,754 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [477005948] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:31:45,757 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1092515617] [2024-11-09 04:31:45,764 INFO L159 IcfgInterpreter]: Started Sifa with 42 locations of interest [2024-11-09 04:31:45,764 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:31:45,765 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:31:45,765 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:31:45,765 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:31:48,702 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 19 for LOIs [2024-11-09 04:31:48,708 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 34 for LOIs [2024-11-09 04:31:49,103 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 3 for LOIs [2024-11-09 04:31:49,105 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 20 for LOIs [2024-11-09 04:31:49,154 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 16 for LOIs [2024-11-09 04:31:49,156 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:31:51,679 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '22708#(and (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (not (= 2 ~waterLevel~0)) (= 1 ~systemActive~0) (<= 0 (+ ~waterLevel~0 2147483648)) (<= ~waterLevel~0 2147483647) (<= 0 (+ ~pumpRunning~0 2147483648)) (= ~switchedOnBeforeTS~0 0))' at error location [2024-11-09 04:31:51,680 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:31:51,680 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:31:51,680 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 8, 8] total 19 [2024-11-09 04:31:51,681 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [882998771] [2024-11-09 04:31:51,681 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:31:51,682 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 19 states [2024-11-09 04:31:51,682 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:51,683 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2024-11-09 04:31:51,684 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=247, Invalid=2105, Unknown=0, NotChecked=0, Total=2352 [2024-11-09 04:31:51,684 INFO L87 Difference]: Start difference. First operand 2188 states and 2676 transitions. Second operand has 19 states, 15 states have (on average 6.733333333333333) internal successors, (101), 17 states have internal predecessors, (101), 9 states have call successors, (24), 5 states have call predecessors, (24), 10 states have return successors, (21), 12 states have call predecessors, (21), 8 states have call successors, (21) [2024-11-09 04:31:55,696 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:55,696 INFO L93 Difference]: Finished difference Result 3564 states and 4464 transitions. [2024-11-09 04:31:55,697 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 86 states. [2024-11-09 04:31:55,697 INFO L78 Accepts]: Start accepts. Automaton has has 19 states, 15 states have (on average 6.733333333333333) internal successors, (101), 17 states have internal predecessors, (101), 9 states have call successors, (24), 5 states have call predecessors, (24), 10 states have return successors, (21), 12 states have call predecessors, (21), 8 states have call successors, (21) Word has length 65 [2024-11-09 04:31:55,698 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:55,719 INFO L225 Difference]: With dead ends: 3564 [2024-11-09 04:31:55,719 INFO L226 Difference]: Without dead ends: 3562 [2024-11-09 04:31:55,725 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 303 GetRequests, 175 SyntacticMatches, 6 SemanticMatches, 122 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 5922 ImplicationChecksByTransitivity, 4.4s TimeCoverageRelationStatistics Valid=1598, Invalid=13654, Unknown=0, NotChecked=0, Total=15252 [2024-11-09 04:31:55,726 INFO L432 NwaCegarLoop]: 165 mSDtfsCounter, 783 mSDsluCounter, 1340 mSDsCounter, 0 mSdLazyCounter, 1481 mSolverCounterSat, 375 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 794 SdHoareTripleChecker+Valid, 1505 SdHoareTripleChecker+Invalid, 1856 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 375 IncrementalHoareTripleChecker+Valid, 1481 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.7s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:55,728 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [794 Valid, 1505 Invalid, 1856 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [375 Valid, 1481 Invalid, 0 Unknown, 0 Unchecked, 1.7s Time] [2024-11-09 04:31:55,733 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 3562 states. [2024-11-09 04:31:56,062 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 3562 to 2691. [2024-11-09 04:31:56,067 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2691 states, 1858 states have (on average 1.241119483315393) internal successors, (2306), 2022 states have internal predecessors, (2306), 416 states have call successors, (416), 370 states have call predecessors, (416), 416 states have return successors, (568), 410 states have call predecessors, (568), 416 states have call successors, (568) [2024-11-09 04:31:56,080 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2691 states to 2691 states and 3290 transitions. [2024-11-09 04:31:56,085 INFO L78 Accepts]: Start accepts. Automaton has 2691 states and 3290 transitions. Word has length 65 [2024-11-09 04:31:56,085 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:56,086 INFO L471 AbstractCegarLoop]: Abstraction has 2691 states and 3290 transitions. [2024-11-09 04:31:56,086 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 19 states, 15 states have (on average 6.733333333333333) internal successors, (101), 17 states have internal predecessors, (101), 9 states have call successors, (24), 5 states have call predecessors, (24), 10 states have return successors, (21), 12 states have call predecessors, (21), 8 states have call successors, (21) [2024-11-09 04:31:56,086 INFO L276 IsEmpty]: Start isEmpty. Operand 2691 states and 3290 transitions. [2024-11-09 04:31:56,092 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2024-11-09 04:31:56,092 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:56,093 INFO L215 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:56,116 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-09 04:31:56,297 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-09 04:31:56,298 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:56,298 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:56,299 INFO L85 PathProgramCache]: Analyzing trace with hash 1293449840, now seen corresponding path program 1 times [2024-11-09 04:31:56,299 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:56,299 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [947661010] [2024-11-09 04:31:56,299 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:56,300 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:56,319 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:56,734 INFO L134 CoverageAnalysis]: Checked inductivity of 62 backedges. 5 proven. 39 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-09 04:31:56,734 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:56,734 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [947661010] [2024-11-09 04:31:56,735 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [947661010] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:31:56,735 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [992607775] [2024-11-09 04:31:56,735 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:56,735 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:31:56,735 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:31:56,737 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:31:56,738 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-09 04:31:56,862 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:56,865 INFO L255 TraceCheckSpWp]: Trace formula consists of 321 conjuncts, 11 conjuncts are in the unsatisfiable core [2024-11-09 04:31:56,868 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:31:57,065 INFO L134 CoverageAnalysis]: Checked inductivity of 62 backedges. 47 proven. 0 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-11-09 04:31:57,065 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-09 04:31:57,065 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [992607775] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 04:31:57,065 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-09 04:31:57,066 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [12] total 17 [2024-11-09 04:31:57,066 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2129748213] [2024-11-09 04:31:57,066 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 04:31:57,067 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-09 04:31:57,067 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:31:57,067 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-09 04:31:57,068 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=42, Invalid=230, Unknown=0, NotChecked=0, Total=272 [2024-11-09 04:31:57,068 INFO L87 Difference]: Start difference. First operand 2691 states and 3290 transitions. Second operand has 7 states, 7 states have (on average 8.428571428571429) internal successors, (59), 7 states have internal predecessors, (59), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (10), 3 states have call predecessors, (10), 3 states have call successors, (10) [2024-11-09 04:31:57,626 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:31:57,626 INFO L93 Difference]: Finished difference Result 4520 states and 5554 transitions. [2024-11-09 04:31:57,628 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2024-11-09 04:31:57,628 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 8.428571428571429) internal successors, (59), 7 states have internal predecessors, (59), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (10), 3 states have call predecessors, (10), 3 states have call successors, (10) Word has length 89 [2024-11-09 04:31:57,628 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:31:57,646 INFO L225 Difference]: With dead ends: 4520 [2024-11-09 04:31:57,646 INFO L226 Difference]: Without dead ends: 2950 [2024-11-09 04:31:57,653 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 108 GetRequests, 89 SyntacticMatches, 0 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 53 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=61, Invalid=359, Unknown=0, NotChecked=0, Total=420 [2024-11-09 04:31:57,654 INFO L432 NwaCegarLoop]: 84 mSDtfsCounter, 62 mSDsluCounter, 336 mSDsCounter, 0 mSdLazyCounter, 221 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 62 SdHoareTripleChecker+Valid, 420 SdHoareTripleChecker+Invalid, 225 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 221 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 04:31:57,654 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [62 Valid, 420 Invalid, 225 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 221 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 04:31:57,658 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2950 states. [2024-11-09 04:31:58,057 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2950 to 2619. [2024-11-09 04:31:58,062 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2619 states, 1799 states have (on average 1.2390216787103947) internal successors, (2229), 1968 states have internal predecessors, (2229), 412 states have call successors, (412), 370 states have call predecessors, (412), 407 states have return successors, (559), 392 states have call predecessors, (559), 412 states have call successors, (559) [2024-11-09 04:31:58,079 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2619 states to 2619 states and 3200 transitions. [2024-11-09 04:31:58,084 INFO L78 Accepts]: Start accepts. Automaton has 2619 states and 3200 transitions. Word has length 89 [2024-11-09 04:31:58,085 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:31:58,086 INFO L471 AbstractCegarLoop]: Abstraction has 2619 states and 3200 transitions. [2024-11-09 04:31:58,086 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 8.428571428571429) internal successors, (59), 7 states have internal predecessors, (59), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (10), 3 states have call predecessors, (10), 3 states have call successors, (10) [2024-11-09 04:31:58,086 INFO L276 IsEmpty]: Start isEmpty. Operand 2619 states and 3200 transitions. [2024-11-09 04:31:58,094 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2024-11-09 04:31:58,094 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 04:31:58,094 INFO L215 NwaCegarLoop]: trace histogram [5, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:31:58,118 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-09 04:31:58,295 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-11-09 04:31:58,296 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 04:31:58,296 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 04:31:58,296 INFO L85 PathProgramCache]: Analyzing trace with hash -1372885739, now seen corresponding path program 1 times [2024-11-09 04:31:58,297 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-09 04:31:58,297 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [651403626] [2024-11-09 04:31:58,297 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:58,297 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 04:31:58,329 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:59,350 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 12 proven. 45 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-09 04:31:59,350 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-09 04:31:59,350 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [651403626] [2024-11-09 04:31:59,351 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [651403626] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 04:31:59,351 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [993925489] [2024-11-09 04:31:59,351 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 04:31:59,351 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 04:31:59,351 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 [2024-11-09 04:31:59,353 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 04:31:59,355 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-09 04:31:59,491 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 04:31:59,493 INFO L255 TraceCheckSpWp]: Trace formula consists of 336 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-09 04:31:59,497 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 04:31:59,871 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 57 proven. 16 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-09 04:31:59,872 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 04:32:00,324 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 52 proven. 5 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-09 04:32:00,324 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [993925489] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 04:32:00,324 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [436413246] [2024-11-09 04:32:00,327 INFO L159 IcfgInterpreter]: Started Sifa with 41 locations of interest [2024-11-09 04:32:00,328 INFO L166 IcfgInterpreter]: Building call graph [2024-11-09 04:32:00,328 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-09 04:32:00,328 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-09 04:32:00,329 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-09 04:32:01,663 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 31 for LOIs [2024-11-09 04:32:01,670 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 25 for LOIs [2024-11-09 04:32:01,849 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 44 for LOIs [2024-11-09 04:32:01,859 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 21 for LOIs [2024-11-09 04:32:01,876 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 27 for LOIs [2024-11-09 04:32:01,879 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-09 04:32:04,278 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '43678#(and (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 1) (not (= 2 ~waterLevel~0)) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (<= 0 (+ ~waterLevel~0 2147483648)) (<= ~waterLevel~0 2147483647) (<= 0 ~pumpRunning~0) (= ~switchedOnBeforeTS~0 0))' at error location [2024-11-09 04:32:04,278 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-09 04:32:04,278 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 04:32:04,279 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 11, 11] total 30 [2024-11-09 04:32:04,279 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [29371905] [2024-11-09 04:32:04,279 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 04:32:04,280 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 30 states [2024-11-09 04:32:04,280 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-09 04:32:04,280 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 30 interpolants. [2024-11-09 04:32:04,282 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=367, Invalid=3173, Unknown=0, NotChecked=0, Total=3540 [2024-11-09 04:32:04,282 INFO L87 Difference]: Start difference. First operand 2619 states and 3200 transitions. Second operand has 30 states, 28 states have (on average 5.0) internal successors, (140), 29 states have internal predecessors, (140), 17 states have call successors, (28), 8 states have call predecessors, (28), 12 states have return successors, (27), 15 states have call predecessors, (27), 16 states have call successors, (27) [2024-11-09 04:32:05,860 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 04:32:05,861 INFO L93 Difference]: Finished difference Result 3857 states and 4740 transitions. [2024-11-09 04:32:05,861 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 27 states. [2024-11-09 04:32:05,862 INFO L78 Accepts]: Start accepts. Automaton has has 30 states, 28 states have (on average 5.0) internal successors, (140), 29 states have internal predecessors, (140), 17 states have call successors, (28), 8 states have call predecessors, (28), 12 states have return successors, (27), 15 states have call predecessors, (27), 16 states have call successors, (27) Word has length 91 [2024-11-09 04:32:05,862 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 04:32:05,868 INFO L225 Difference]: With dead ends: 3857 [2024-11-09 04:32:05,868 INFO L226 Difference]: Without dead ends: 0 [2024-11-09 04:32:05,882 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 319 GetRequests, 231 SyntacticMatches, 8 SemanticMatches, 80 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2873 ImplicationChecksByTransitivity, 3.5s TimeCoverageRelationStatistics Valid=764, Invalid=5878, Unknown=0, NotChecked=0, Total=6642 [2024-11-09 04:32:05,883 INFO L432 NwaCegarLoop]: 50 mSDtfsCounter, 508 mSDsluCounter, 246 mSDsCounter, 0 mSdLazyCounter, 553 mSolverCounterSat, 335 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 511 SdHoareTripleChecker+Valid, 296 SdHoareTripleChecker+Invalid, 888 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 335 IncrementalHoareTripleChecker+Valid, 553 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-09 04:32:05,884 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [511 Valid, 296 Invalid, 888 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [335 Valid, 553 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-09 04:32:05,884 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-09 04:32:05,885 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-09 04:32:05,885 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 04:32:05,885 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-09 04:32:05,889 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 91 [2024-11-09 04:32:05,890 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 04:32:05,890 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-09 04:32:05,890 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 30 states, 28 states have (on average 5.0) internal successors, (140), 29 states have internal predecessors, (140), 17 states have call successors, (28), 8 states have call predecessors, (28), 12 states have return successors, (27), 15 states have call predecessors, (27), 16 states have call successors, (27) [2024-11-09 04:32:05,891 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-09 04:32:05,891 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-09 04:32:05,894 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-09 04:32:05,921 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-11-09 04:32:06,096 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2024-11-09 04:32:06,100 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 04:32:06,103 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-09 04:32:50,491 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-09 04:32:50,514 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (let ((.cse0 (not (= |old(~pumpRunning~0)| 0)))) (or (and .cse0 (<= ~waterLevel~0 1) (= 1 ~systemActive~0)) (and .cse0 (= 2 ~waterLevel~0) (not (= 0 ~systemActive~0)))))) Eliminated clause: (let ((.cse0 (not (= ~pumpRunning~0 0)))) (or (and .cse0 (<= ~waterLevel~0 1) (= 1 ~systemActive~0)) (and .cse0 (= 2 ~waterLevel~0) (not (= 0 ~systemActive~0))))) [2024-11-09 04:32:50,537 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (and (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0) (let ((.cse4 (= 0 ~systemActive~0)) (.cse2 (= ~waterLevel~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse3 (= 2 ~waterLevel~0)) (.cse1 (= 1 ~systemActive~0))) (or (and .cse0 .cse1 .cse2) (and .cse3 .cse1 (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~pumpRunning~0 1))) (and .cse0 .cse3 .cse4) (and .cse0 .cse4 .cse2) (and .cse0 .cse3 .cse1)))) Eliminated clause: (let ((.cse4 (= 0 ~systemActive~0)) (.cse2 (= ~waterLevel~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse3 (= 2 ~waterLevel~0)) (.cse1 (= 1 ~systemActive~0))) (or (and .cse0 .cse1 .cse2) (and .cse3 (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) .cse1) (and .cse0 .cse3 .cse4) (and .cse0 .cse4 .cse2) (and .cse0 .cse3 .cse1))) [2024-11-09 04:32:50,555 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse4 (= 0 ~systemActive~0)) (.cse7 (= |old(~waterLevel~0)| 1))) (let ((.cse1 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse2 (<= 1 ~switchedOnBeforeTS~0)) (.cse6 (= |old(~waterLevel~0)| 2)) (.cse0 (not .cse7)) (.cse3 (= |old(~pumpRunning~0)| 0)) (.cse5 (not .cse4))) (and (or .cse0 .cse1 .cse2) (or (not .cse3) .cse1 .cse4 .cse2) (or (not (= ~switchedOnBeforeTS~0 0)) .cse0 .cse5 (= |old(~switchedOnBeforeTS~0)| 0)) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse6)) (or (= 1 ~systemActive~0) .cse4) (or .cse7 .cse6) (or .cse0 (and (= ~pumpRunning~0 0) .cse3 (= ~waterLevel~0 1))) (or .cse3 .cse5)))) Eliminated clause: (let ((.cse0 (= 0 ~systemActive~0))) (and (or (= 1 ~systemActive~0) .cse0) (exists ((|old(~pumpRunning~0)| Int) (|old(~switchedOnBeforeTS~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse7 (= |old(~waterLevel~0)| 1))) (let ((.cse6 (= |old(~waterLevel~0)| 2)) (.cse3 (= |old(~pumpRunning~0)| 0)) (.cse2 (not .cse0)) (.cse1 (not .cse7)) (.cse4 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse5 (< 0 ~switchedOnBeforeTS~0))) (and (or (not (= ~switchedOnBeforeTS~0 0)) .cse1 .cse2 (= |old(~switchedOnBeforeTS~0)| 0)) (or (not .cse3) .cse4 .cse5 .cse0) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse6)) (or .cse7 .cse6) (or .cse1 (and (= ~pumpRunning~0 0) .cse3 (= ~waterLevel~0 1))) (or .cse3 .cse2) (or .cse1 .cse4 .cse5))))))) [2024-11-09 04:32:50,573 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:32:50,576 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (or (= 2 ~waterLevel~0) (= ~waterLevel~0 1)) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0)) Eliminated clause: (and (= ~pumpRunning~0 0) (or (= 2 ~waterLevel~0) (= ~waterLevel~0 1)) (= 1 ~systemActive~0)) [2024-11-09 04:32:50,585 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse3 (= |old(~waterLevel~0)| 1)) (.cse1 (= |old(~waterLevel~0)| 2)) (.cse0 (= 1 ~systemActive~0))) (and (let ((.cse2 (= ~pumpRunning~0 0))) (or (and (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) .cse0 .cse1) (and .cse2 .cse1) (and .cse2 .cse3))) (or (not .cse3) (= ~waterLevel~0 1)) (or (= 2 ~waterLevel~0) (not .cse1)) (or .cse0 (= 0 ~systemActive~0)))) Eliminated clause: (let ((.cse0 (= 1 ~systemActive~0))) (and (exists ((|old(~waterLevel~0)| Int)) (let ((.cse3 (= |old(~waterLevel~0)| 1)) (.cse1 (= |old(~waterLevel~0)| 2))) (and (let ((.cse2 (= ~pumpRunning~0 0))) (or (and (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) .cse0 .cse1) (and .cse2 .cse1) (and .cse2 .cse3))) (or (not .cse3) (= ~waterLevel~0 1)) (or (= 2 ~waterLevel~0) (not .cse1))))) (or .cse0 (= 0 ~systemActive~0)))) [2024-11-09 04:32:50,592 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 04:32:50,601 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 09.11 04:32:50 BoogieIcfgContainer [2024-11-09 04:32:50,602 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-09 04:32:50,602 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-09 04:32:50,602 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-09 04:32:50,603 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-09 04:32:50,603 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 09.11 04:31:16" (3/4) ... [2024-11-09 04:32:50,607 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-09 04:32:50,611 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-09 04:32:50,612 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-09 04:32:50,612 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-09 04:32:50,612 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-09 04:32:50,612 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-09 04:32:50,613 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 04:32:50,613 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-09 04:32:50,613 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-09 04:32:50,622 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 47 nodes and edges [2024-11-09 04:32:50,623 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-09 04:32:50,624 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-09 04:32:50,624 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 04:32:50,625 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 04:32:50,796 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/witness.graphml [2024-11-09 04:32:50,797 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/witness.yml [2024-11-09 04:32:50,797 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-09 04:32:50,798 INFO L158 Benchmark]: Toolchain (without parser) took 96311.56ms. Allocated memory was 130.0MB in the beginning and 1.3GB in the end (delta: 1.2GB). Free memory was 97.3MB in the beginning and 704.5MB in the end (delta: -607.2MB). Peak memory consumption was 546.8MB. Max. memory is 16.1GB. [2024-11-09 04:32:50,799 INFO L158 Benchmark]: CDTParser took 0.41ms. Allocated memory is still 130.0MB. Free memory is still 74.5MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-09 04:32:50,799 INFO L158 Benchmark]: CACSL2BoogieTranslator took 783.81ms. Allocated memory is still 130.0MB. Free memory was 96.9MB in the beginning and 74.6MB in the end (delta: 22.3MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. [2024-11-09 04:32:50,800 INFO L158 Benchmark]: Boogie Procedure Inliner took 80.70ms. Allocated memory is still 130.0MB. Free memory was 74.6MB in the beginning and 72.2MB in the end (delta: 2.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 04:32:50,800 INFO L158 Benchmark]: Boogie Preprocessor took 52.10ms. Allocated memory is still 130.0MB. Free memory was 72.2MB in the beginning and 70.5MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 04:32:50,801 INFO L158 Benchmark]: RCFGBuilder took 760.95ms. Allocated memory was 130.0MB in the beginning and 163.6MB in the end (delta: 33.6MB). Free memory was 70.5MB in the beginning and 110.8MB in the end (delta: -40.3MB). Peak memory consumption was 14.3MB. Max. memory is 16.1GB. [2024-11-09 04:32:50,802 INFO L158 Benchmark]: TraceAbstraction took 94430.38ms. Allocated memory was 163.6MB in the beginning and 1.3GB in the end (delta: 1.1GB). Free memory was 109.8MB in the beginning and 712.9MB in the end (delta: -603.1MB). Peak memory consumption was 759.4MB. Max. memory is 16.1GB. [2024-11-09 04:32:50,803 INFO L158 Benchmark]: Witness Printer took 194.96ms. Allocated memory is still 1.3GB. Free memory was 712.9MB in the beginning and 704.5MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-09 04:32:50,806 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.41ms. Allocated memory is still 130.0MB. Free memory is still 74.5MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 783.81ms. Allocated memory is still 130.0MB. Free memory was 96.9MB in the beginning and 74.6MB in the end (delta: 22.3MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 80.70ms. Allocated memory is still 130.0MB. Free memory was 74.6MB in the beginning and 72.2MB in the end (delta: 2.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 52.10ms. Allocated memory is still 130.0MB. Free memory was 72.2MB in the beginning and 70.5MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 760.95ms. Allocated memory was 130.0MB in the beginning and 163.6MB in the end (delta: 33.6MB). Free memory was 70.5MB in the beginning and 110.8MB in the end (delta: -40.3MB). Peak memory consumption was 14.3MB. Max. memory is 16.1GB. * TraceAbstraction took 94430.38ms. Allocated memory was 163.6MB in the beginning and 1.3GB in the end (delta: 1.1GB). Free memory was 109.8MB in the beginning and 712.9MB in the end (delta: -603.1MB). Peak memory consumption was 759.4MB. Max. memory is 16.1GB. * Witness Printer took 194.96ms. Allocated memory is still 1.3GB. Free memory was 712.9MB in the beginning and 704.5MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] - GenericResultAtLocation [Line: 304]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [304] - GenericResultAtLocation [Line: 376]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [376] - GenericResultAtLocation [Line: 427]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [427] - GenericResultAtLocation [Line: 793]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [793] - GenericResultAtLocation [Line: 893]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [893] - GenericResultAtLocation [Line: 928]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [928] - GenericResultAtLocation [Line: 937]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [937] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 933]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 66 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 49.8s, OverallIterations: 12, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 16.2s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3542 SdHoareTripleChecker+Valid, 7.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 3504 mSDsluCounter, 5148 SdHoareTripleChecker+Invalid, 6.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 4145 mSDsCounter, 1729 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 6120 IncrementalHoareTripleChecker+Invalid, 7849 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1729 mSolverCounterUnsat, 1003 mSDtfsCounter, 6120 mSolverCounterSat, 0.2s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1338 GetRequests, 888 SyntacticMatches, 20 SemanticMatches, 430 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 17588 ImplicationChecksByTransitivity, 17.8s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=2691occurred in iteration=10, InterpolantAutomatonStates: 275, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 1.8s AutomataMinimizationTime, 12 MinimizatonAttempts, 3583 StatesRemovedByMinimization, 9 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.2s SsaConstructionTime, 0.5s SatisfiabilityAnalysisTime, 7.1s InterpolantComputationTime, 973 NumberOfCodeBlocks, 973 NumberOfCodeBlocksAsserted, 17 NumberOfCheckSat, 1238 ConstructedInterpolants, 0 QuantifiedInterpolants, 3978 SizeOfPredicates, 17 NumberOfNonLiveVariables, 1443 ConjunctsInSsa, 58 ConjunctsInUnsatCore, 21 InterpolantComputations, 8 PerfectInterpolantSequences, 426/649 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 318]: Loop Invariant Derived loop invariant: (((((((((pumpRunning == 0) && (2 == waterLevel)) && (splverifierCounter == 0)) && (0 == systemActive)) || ((((pumpRunning == 0) && (splverifierCounter == 0)) && (0 == systemActive)) && (waterLevel == 1))) || ((((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1))) || ((((2 == waterLevel) && (1 == systemActive)) && (methaneLevelCritical != 0)) && (splverifierCounter == 0))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((2 == waterLevel) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1))) - InvariantResult [Line: 317]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 805]: Loop Invariant Derived loop invariant: 0 - ProcedureContractResult [Line: 179]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((((pumpRunning != 0) && (waterLevel <= 1)) && (1 == systemActive)) || (((pumpRunning != 0) && (2 == waterLevel)) && (0 != systemActive))) Ensures: (((pumpRunning == 0) && ((((\old(pumpRunning) != 0) && (waterLevel <= 1)) && (1 == systemActive)) || (((\old(pumpRunning) != 0) && (2 == waterLevel)) && (0 != systemActive)))) && ((((((systemActive == \old(systemActive)) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 94]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 964]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: (((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (((2 == waterLevel) && ((methaneLevelCritical != 0) || (pumpRunning == 1))) && (1 == systemActive))) || (((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive))) || (((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: (((((\old(methaneLevelCritical) != 0) || (methaneLevelCritical == 1)) && ((((pumpRunning != 0) || (methaneLevelCritical == 0)) || (2 != waterLevel)) || (\old(methaneLevelCritical) != 1))) && (((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (((2 == waterLevel) && (1 == systemActive)) && ((\old(methaneLevelCritical) != 0) || (pumpRunning == 1)))) || (((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive))) || (((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel)))) - ProcedureContractResult [Line: 795]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 67]: Procedure Contract for timeShift Derived contract for procedure timeShift. Requires: ((1 == systemActive) || (0 == systemActive)) Ensures: ((((((((((waterLevel <= 1) && (1 <= switchedOnBeforeTS)) || (\old(pumpRunning) != 1)) && ((((pumpRunning == 0) && (2 == waterLevel)) || (\old(waterLevel) != 2)) || (0 != systemActive))) && ((((1 == systemActive) && (\old(pumpRunning) == 0)) || (\old(waterLevel) != 1)) || (0 == systemActive))) && (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (((((2 == waterLevel) && ((methaneLevelCritical != 0) || (pumpRunning == 1))) && (1 == systemActive)) && ((pumpRunning == \old(pumpRunning)) || (methaneLevelCritical == 0))) && (\old(waterLevel) == 2))) || (\old(pumpRunning) == 0))) && ((\old(waterLevel) == 1) || (\old(waterLevel) == 2))) && (((((\old(pumpRunning) != 0) || ((((2 == waterLevel) && ((methaneLevelCritical != 0) || (pumpRunning == 1))) && (1 == systemActive)) && ((pumpRunning == 0) || (methaneLevelCritical == 0)))) || (\old(waterLevel) != 2)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || (0 == systemActive))) && ((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1)))) && ((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 102]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: (((pumpRunning == 0) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) Ensures: (((((2 == waterLevel) && (\old(pumpRunning) == 0)) || ((\old(pumpRunning) == 0) && (waterLevel == 1))) && (((((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (pumpRunning == 1)) || ((pumpRunning == 0) && (1 == systemActive)))) && ((((((systemActive == \old(systemActive)) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 952]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: ((1 == systemActive) || (0 == systemActive)) Ensures: ((((2 == waterLevel) && ((pumpRunning == 0) || (\old(waterLevel) != 1))) && (((((((pumpRunning == 0) && (0 == systemActive)) && (\old(waterLevel) == 2)) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical != 0) || (pumpRunning == 1)) && (1 == systemActive)) && (\old(waterLevel) == 2))) || ((\old(waterLevel) == 1) && (1 == systemActive))) || ((\old(waterLevel) == 1) && (0 == systemActive)))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 198]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: (((((2 == waterLevel) && (1 == systemActive)) || (((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive))) || (((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1))) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) Ensures: (((((((2 == waterLevel) && (1 == systemActive)) || (((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive))) || (((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1))) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) && (pumpRunning == \result)) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) RESULT: Ultimate proved your program to be correct! [2024-11-09 04:32:50,861 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_32437df8-02c3-4129-9021-1f9ab725137f/bin/utaipan-verify-YMUCfTKeje/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE