./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec1_product60.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 826ab2ba Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec1_product60.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 0fa225959be52b1defd5d055d32ae3a8dd944c37a01adb589e2f547028e60f67 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-826ab2b [2024-11-14 02:53:06,382 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-14 02:53:06,465 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-14 02:53:06,471 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-14 02:53:06,471 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-14 02:53:06,495 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-14 02:53:06,496 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-14 02:53:06,496 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-14 02:53:06,496 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-14 02:53:06,496 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-14 02:53:06,497 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-14 02:53:06,497 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-14 02:53:06,497 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-14 02:53:06,497 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-14 02:53:06,497 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-14 02:53:06,497 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-14 02:53:06,497 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-14 02:53:06,498 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-14 02:53:06,498 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-14 02:53:06,498 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-14 02:53:06,498 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-14 02:53:06,498 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-14 02:53:06,499 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-14 02:53:06,499 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-14 02:53:06,499 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-14 02:53:06,499 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-14 02:53:06,499 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-14 02:53:06,499 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-14 02:53:06,500 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-14 02:53:06,500 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-14 02:53:06,500 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-14 02:53:06,500 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-14 02:53:06,500 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-14 02:53:06,500 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-14 02:53:06,500 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-14 02:53:06,501 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-14 02:53:06,501 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-14 02:53:06,501 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-14 02:53:06,501 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 02:53:06,501 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-14 02:53:06,501 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-14 02:53:06,501 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-14 02:53:06,501 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-14 02:53:06,502 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-14 02:53:06,502 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-14 02:53:06,502 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-14 02:53:06,502 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-14 02:53:06,502 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 0fa225959be52b1defd5d055d32ae3a8dd944c37a01adb589e2f547028e60f67 [2024-11-14 02:53:06,825 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-14 02:53:06,833 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-14 02:53:06,836 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-14 02:53:06,837 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-14 02:53:06,838 INFO L274 PluginConnector]: CDTParser initialized [2024-11-14 02:53:06,839 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/../../sv-benchmarks/c/product-lines/minepump_spec1_product60.cil.c Unable to find full path for "g++" [2024-11-14 02:53:08,643 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-14 02:53:09,013 INFO L384 CDTParser]: Found 1 translation units. [2024-11-14 02:53:09,014 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/sv-benchmarks/c/product-lines/minepump_spec1_product60.cil.c [2024-11-14 02:53:09,035 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/data/a6dccd153/10820187df144f4daa01dcbaccb0b452/FLAGe482255f4 [2024-11-14 02:53:09,059 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/data/a6dccd153/10820187df144f4daa01dcbaccb0b452 [2024-11-14 02:53:09,061 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-14 02:53:09,063 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-14 02:53:09,064 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-14 02:53:09,064 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-14 02:53:09,070 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-14 02:53:09,071 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,072 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@7a4c53a0 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09, skipping insertion in model container [2024-11-14 02:53:09,072 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,123 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-14 02:53:09,462 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/sv-benchmarks/c/product-lines/minepump_spec1_product60.cil.c[14569,14582] [2024-11-14 02:53:09,494 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 02:53:09,508 INFO L200 MainTranslator]: Completed pre-run [2024-11-14 02:53:09,517 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [49] [2024-11-14 02:53:09,518 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [153] [2024-11-14 02:53:09,519 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [262] [2024-11-14 02:53:09,519 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [290] [2024-11-14 02:53:09,519 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [656] [2024-11-14 02:53:09,519 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [665] [2024-11-14 02:53:09,519 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [736] [2024-11-14 02:53:09,519 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [976] [2024-11-14 02:53:09,608 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/sv-benchmarks/c/product-lines/minepump_spec1_product60.cil.c[14569,14582] [2024-11-14 02:53:09,631 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 02:53:09,667 INFO L204 MainTranslator]: Completed translation [2024-11-14 02:53:09,668 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09 WrapperNode [2024-11-14 02:53:09,669 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-14 02:53:09,670 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-14 02:53:09,670 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-14 02:53:09,671 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-14 02:53:09,677 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,693 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,731 INFO L138 Inliner]: procedures = 58, calls = 103, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 220 [2024-11-14 02:53:09,731 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-14 02:53:09,732 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-14 02:53:09,732 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-14 02:53:09,732 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-14 02:53:09,742 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,742 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,747 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,747 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,755 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,762 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,767 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,768 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,773 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-14 02:53:09,773 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-14 02:53:09,774 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-14 02:53:09,774 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-14 02:53:09,775 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (1/1) ... [2024-11-14 02:53:09,790 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 02:53:09,804 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 02:53:09,822 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-14 02:53:09,826 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-14 02:53:09,855 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-14 02:53:09,855 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-14 02:53:09,855 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-14 02:53:09,855 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-14 02:53:09,855 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-14 02:53:09,855 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-14 02:53:09,855 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-14 02:53:09,855 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-14 02:53:09,856 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-14 02:53:09,856 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 02:53:09,857 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 02:53:09,857 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-14 02:53:09,857 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-14 02:53:09,857 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-14 02:53:09,857 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-14 02:53:09,857 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-14 02:53:09,857 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-14 02:53:09,857 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-14 02:53:09,857 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-14 02:53:09,859 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-14 02:53:09,960 INFO L238 CfgBuilder]: Building ICFG [2024-11-14 02:53:09,963 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-14 02:53:10,253 INFO L? ?]: Removed 49 outVars from TransFormulas that were not future-live. [2024-11-14 02:53:10,253 INFO L287 CfgBuilder]: Performing block encoding [2024-11-14 02:53:10,423 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-14 02:53:10,423 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-14 02:53:10,423 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 02:53:10 BoogieIcfgContainer [2024-11-14 02:53:10,424 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-14 02:53:10,427 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-14 02:53:10,427 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-14 02:53:10,432 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-14 02:53:10,432 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 14.11 02:53:09" (1/3) ... [2024-11-14 02:53:10,432 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6ef3275b and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 02:53:10, skipping insertion in model container [2024-11-14 02:53:10,432 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:53:09" (2/3) ... [2024-11-14 02:53:10,433 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6ef3275b and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 02:53:10, skipping insertion in model container [2024-11-14 02:53:10,433 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 02:53:10" (3/3) ... [2024-11-14 02:53:10,434 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec1_product60.cil.c [2024-11-14 02:53:10,451 INFO L217 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-14 02:53:10,453 INFO L154 ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec1_product60.cil.c that has 9 procedures, 65 locations, 1 initial locations, 2 loop locations, and 1 error locations. [2024-11-14 02:53:10,519 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-14 02:53:10,532 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@35109450, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-14 02:53:10,532 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-14 02:53:10,536 INFO L276 IsEmpty]: Start isEmpty. Operand has 65 states, 41 states have (on average 1.4390243902439024) internal successors, (59), 50 states have internal predecessors, (59), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-14 02:53:10,573 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2024-11-14 02:53:10,573 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:10,574 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:10,574 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:10,579 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:10,579 INFO L85 PathProgramCache]: Analyzing trace with hash 62715839, now seen corresponding path program 1 times [2024-11-14 02:53:10,584 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:10,585 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1342783075] [2024-11-14 02:53:10,585 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:10,586 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:10,677 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:10,738 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 02:53:10,739 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:10,739 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1342783075] [2024-11-14 02:53:10,740 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1342783075] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:10,740 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:53:10,740 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-14 02:53:10,741 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1388822986] [2024-11-14 02:53:10,742 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:10,745 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-14 02:53:10,746 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:10,770 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-14 02:53:10,771 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 02:53:10,773 INFO L87 Difference]: Start difference. First operand has 65 states, 41 states have (on average 1.4390243902439024) internal successors, (59), 50 states have internal predecessors, (59), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 02:53:10,865 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:10,866 INFO L93 Difference]: Finished difference Result 128 states and 175 transitions. [2024-11-14 02:53:10,867 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-14 02:53:10,868 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 16 [2024-11-14 02:53:10,869 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:10,875 INFO L225 Difference]: With dead ends: 128 [2024-11-14 02:53:10,875 INFO L226 Difference]: Without dead ends: 60 [2024-11-14 02:53:10,878 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 02:53:10,880 INFO L432 NwaCegarLoop]: 66 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 66 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:10,881 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 66 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 02:53:10,894 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 60 states. [2024-11-14 02:53:10,910 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 60 to 60. [2024-11-14 02:53:10,911 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 60 states, 38 states have (on average 1.3421052631578947) internal successors, (51), 46 states have internal predecessors, (51), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-14 02:53:10,917 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 60 states to 60 states and 78 transitions. [2024-11-14 02:53:10,919 INFO L78 Accepts]: Start accepts. Automaton has 60 states and 78 transitions. Word has length 16 [2024-11-14 02:53:10,921 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:10,921 INFO L471 AbstractCegarLoop]: Abstraction has 60 states and 78 transitions. [2024-11-14 02:53:10,921 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 02:53:10,922 INFO L276 IsEmpty]: Start isEmpty. Operand 60 states and 78 transitions. [2024-11-14 02:53:10,925 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-11-14 02:53:10,925 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:10,925 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:10,926 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-14 02:53:10,926 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:10,927 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:10,927 INFO L85 PathProgramCache]: Analyzing trace with hash -1187735620, now seen corresponding path program 1 times [2024-11-14 02:53:10,928 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:10,928 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1951144066] [2024-11-14 02:53:10,928 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:10,929 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:10,959 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:11,048 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 02:53:11,048 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:11,049 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1951144066] [2024-11-14 02:53:11,049 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1951144066] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:11,049 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:53:11,049 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 02:53:11,049 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1407448442] [2024-11-14 02:53:11,049 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:11,050 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 02:53:11,050 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:11,051 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 02:53:11,051 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:53:11,051 INFO L87 Difference]: Start difference. First operand 60 states and 78 transitions. Second operand has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 02:53:11,109 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:11,110 INFO L93 Difference]: Finished difference Result 92 states and 118 transitions. [2024-11-14 02:53:11,110 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 02:53:11,110 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-11-14 02:53:11,111 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:11,111 INFO L225 Difference]: With dead ends: 92 [2024-11-14 02:53:11,111 INFO L226 Difference]: Without dead ends: 52 [2024-11-14 02:53:11,112 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:53:11,113 INFO L432 NwaCegarLoop]: 52 mSDtfsCounter, 14 mSDsluCounter, 36 mSDsCounter, 0 mSdLazyCounter, 26 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 88 SdHoareTripleChecker+Invalid, 26 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 26 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:11,113 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 88 Invalid, 26 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 26 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-14 02:53:11,114 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 52 states. [2024-11-14 02:53:11,120 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 52 to 52. [2024-11-14 02:53:11,120 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 52 states, 33 states have (on average 1.3636363636363635) internal successors, (45), 41 states have internal predecessors, (45), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-14 02:53:11,122 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 52 states to 52 states and 67 transitions. [2024-11-14 02:53:11,122 INFO L78 Accepts]: Start accepts. Automaton has 52 states and 67 transitions. Word has length 17 [2024-11-14 02:53:11,122 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:11,122 INFO L471 AbstractCegarLoop]: Abstraction has 52 states and 67 transitions. [2024-11-14 02:53:11,122 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 02:53:11,123 INFO L276 IsEmpty]: Start isEmpty. Operand 52 states and 67 transitions. [2024-11-14 02:53:11,123 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-11-14 02:53:11,124 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:11,124 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:11,124 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-14 02:53:11,124 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:11,125 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:11,125 INFO L85 PathProgramCache]: Analyzing trace with hash 453237430, now seen corresponding path program 1 times [2024-11-14 02:53:11,125 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:11,125 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1173765839] [2024-11-14 02:53:11,125 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:11,126 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:11,145 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:11,208 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 02:53:11,208 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:11,208 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1173765839] [2024-11-14 02:53:11,208 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1173765839] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:11,209 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:53:11,209 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 02:53:11,209 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1032273059] [2024-11-14 02:53:11,209 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:11,209 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 02:53:11,209 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:11,210 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 02:53:11,210 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:53:11,210 INFO L87 Difference]: Start difference. First operand 52 states and 67 transitions. Second operand has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 02:53:11,291 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:11,293 INFO L93 Difference]: Finished difference Result 152 states and 198 transitions. [2024-11-14 02:53:11,294 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 02:53:11,294 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2024-11-14 02:53:11,294 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:11,296 INFO L225 Difference]: With dead ends: 152 [2024-11-14 02:53:11,297 INFO L226 Difference]: Without dead ends: 102 [2024-11-14 02:53:11,299 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:53:11,302 INFO L432 NwaCegarLoop]: 62 mSDtfsCounter, 61 mSDsluCounter, 50 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 61 SdHoareTripleChecker+Valid, 112 SdHoareTripleChecker+Invalid, 34 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:11,303 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [61 Valid, 112 Invalid, 34 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 02:53:11,304 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 102 states. [2024-11-14 02:53:11,321 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 102 to 99. [2024-11-14 02:53:11,322 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 99 states, 62 states have (on average 1.3709677419354838) internal successors, (85), 77 states have internal predecessors, (85), 22 states have call successors, (22), 14 states have call predecessors, (22), 14 states have return successors, (22), 15 states have call predecessors, (22), 22 states have call successors, (22) [2024-11-14 02:53:11,323 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 99 states to 99 states and 129 transitions. [2024-11-14 02:53:11,324 INFO L78 Accepts]: Start accepts. Automaton has 99 states and 129 transitions. Word has length 20 [2024-11-14 02:53:11,324 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:11,324 INFO L471 AbstractCegarLoop]: Abstraction has 99 states and 129 transitions. [2024-11-14 02:53:11,324 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 02:53:11,325 INFO L276 IsEmpty]: Start isEmpty. Operand 99 states and 129 transitions. [2024-11-14 02:53:11,326 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-11-14 02:53:11,326 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:11,326 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:11,326 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-14 02:53:11,326 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:11,327 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:11,327 INFO L85 PathProgramCache]: Analyzing trace with hash 2040599031, now seen corresponding path program 1 times [2024-11-14 02:53:11,327 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:11,327 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1491676974] [2024-11-14 02:53:11,327 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:11,328 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:11,345 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:11,445 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 02:53:11,445 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:11,445 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1491676974] [2024-11-14 02:53:11,445 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1491676974] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:11,450 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:53:11,451 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-14 02:53:11,451 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1953125494] [2024-11-14 02:53:11,451 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:11,451 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-14 02:53:11,451 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:11,452 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-14 02:53:11,452 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-14 02:53:11,452 INFO L87 Difference]: Start difference. First operand 99 states and 129 transitions. Second operand has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 02:53:11,639 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:11,640 INFO L93 Difference]: Finished difference Result 266 states and 355 transitions. [2024-11-14 02:53:11,640 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-14 02:53:11,641 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2024-11-14 02:53:11,641 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:11,642 INFO L225 Difference]: With dead ends: 266 [2024-11-14 02:53:11,643 INFO L226 Difference]: Without dead ends: 169 [2024-11-14 02:53:11,643 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-14 02:53:11,644 INFO L432 NwaCegarLoop]: 50 mSDtfsCounter, 36 mSDsluCounter, 87 mSDsCounter, 0 mSdLazyCounter, 50 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 36 SdHoareTripleChecker+Valid, 137 SdHoareTripleChecker+Invalid, 57 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 50 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:11,644 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [36 Valid, 137 Invalid, 57 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 50 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 02:53:11,648 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 169 states. [2024-11-14 02:53:11,672 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 169 to 168. [2024-11-14 02:53:11,673 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 168 states, 111 states have (on average 1.3063063063063063) internal successors, (145), 126 states have internal predecessors, (145), 30 states have call successors, (30), 26 states have call predecessors, (30), 26 states have return successors, (38), 27 states have call predecessors, (38), 30 states have call successors, (38) [2024-11-14 02:53:11,676 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 168 states to 168 states and 213 transitions. [2024-11-14 02:53:11,680 INFO L78 Accepts]: Start accepts. Automaton has 168 states and 213 transitions. Word has length 23 [2024-11-14 02:53:11,680 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:11,680 INFO L471 AbstractCegarLoop]: Abstraction has 168 states and 213 transitions. [2024-11-14 02:53:11,681 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 02:53:11,681 INFO L276 IsEmpty]: Start isEmpty. Operand 168 states and 213 transitions. [2024-11-14 02:53:11,683 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-14 02:53:11,683 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:11,684 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:11,685 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-14 02:53:11,685 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:11,685 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:11,686 INFO L85 PathProgramCache]: Analyzing trace with hash -1506165189, now seen corresponding path program 1 times [2024-11-14 02:53:11,687 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:11,687 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1442510686] [2024-11-14 02:53:11,687 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:11,687 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:11,720 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:12,116 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:53:12,117 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:12,117 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1442510686] [2024-11-14 02:53:12,118 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1442510686] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:12,118 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:53:12,118 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-14 02:53:12,118 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1369820196] [2024-11-14 02:53:12,118 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:12,118 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-14 02:53:12,119 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:12,120 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-14 02:53:12,120 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-11-14 02:53:12,120 INFO L87 Difference]: Start difference. First operand 168 states and 213 transitions. Second operand has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-14 02:53:12,436 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:12,437 INFO L93 Difference]: Finished difference Result 481 states and 609 transitions. [2024-11-14 02:53:12,438 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-14 02:53:12,438 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 32 [2024-11-14 02:53:12,439 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:12,445 INFO L225 Difference]: With dead ends: 481 [2024-11-14 02:53:12,446 INFO L226 Difference]: Without dead ends: 315 [2024-11-14 02:53:12,447 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2024-11-14 02:53:12,448 INFO L432 NwaCegarLoop]: 77 mSDtfsCounter, 101 mSDsluCounter, 157 mSDsCounter, 0 mSdLazyCounter, 142 mSolverCounterSat, 17 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 101 SdHoareTripleChecker+Valid, 234 SdHoareTripleChecker+Invalid, 159 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 17 IncrementalHoareTripleChecker+Valid, 142 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:12,451 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [101 Valid, 234 Invalid, 159 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [17 Valid, 142 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 02:53:12,453 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 315 states. [2024-11-14 02:53:12,529 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 315 to 298. [2024-11-14 02:53:12,531 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 298 states, 201 states have (on average 1.2885572139303483) internal successors, (259), 221 states have internal predecessors, (259), 47 states have call successors, (47), 45 states have call predecessors, (47), 49 states have return successors, (59), 47 states have call predecessors, (59), 47 states have call successors, (59) [2024-11-14 02:53:12,534 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 298 states to 298 states and 365 transitions. [2024-11-14 02:53:12,535 INFO L78 Accepts]: Start accepts. Automaton has 298 states and 365 transitions. Word has length 32 [2024-11-14 02:53:12,535 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:12,536 INFO L471 AbstractCegarLoop]: Abstraction has 298 states and 365 transitions. [2024-11-14 02:53:12,536 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-14 02:53:12,536 INFO L276 IsEmpty]: Start isEmpty. Operand 298 states and 365 transitions. [2024-11-14 02:53:12,538 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2024-11-14 02:53:12,538 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:12,538 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:12,541 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-14 02:53:12,541 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:12,542 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:12,542 INFO L85 PathProgramCache]: Analyzing trace with hash -1834498253, now seen corresponding path program 1 times [2024-11-14 02:53:12,542 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:12,542 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1572735973] [2024-11-14 02:53:12,542 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:12,542 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:12,580 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:12,768 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-14 02:53:12,768 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:12,768 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1572735973] [2024-11-14 02:53:12,768 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1572735973] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:12,768 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:53:12,769 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-14 02:53:12,769 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1894158063] [2024-11-14 02:53:12,770 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:12,770 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-14 02:53:12,770 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:12,771 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-14 02:53:12,771 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-14 02:53:12,771 INFO L87 Difference]: Start difference. First operand 298 states and 365 transitions. Second operand has 6 states, 5 states have (on average 5.2) internal successors, (26), 5 states have internal predecessors, (26), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-14 02:53:13,048 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:13,049 INFO L93 Difference]: Finished difference Result 872 states and 1090 transitions. [2024-11-14 02:53:13,051 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-14 02:53:13,051 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 5.2) internal successors, (26), 5 states have internal predecessors, (26), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) Word has length 35 [2024-11-14 02:53:13,051 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:13,061 INFO L225 Difference]: With dead ends: 872 [2024-11-14 02:53:13,061 INFO L226 Difference]: Without dead ends: 576 [2024-11-14 02:53:13,062 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-14 02:53:13,066 INFO L432 NwaCegarLoop]: 50 mSDtfsCounter, 42 mSDsluCounter, 176 mSDsCounter, 0 mSdLazyCounter, 106 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 44 SdHoareTripleChecker+Valid, 226 SdHoareTripleChecker+Invalid, 106 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 106 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:13,066 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [44 Valid, 226 Invalid, 106 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 106 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 02:53:13,067 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 576 states. [2024-11-14 02:53:13,176 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 576 to 560. [2024-11-14 02:53:13,178 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 560 states, 383 states have (on average 1.2715404699738904) internal successors, (487), 414 states have internal predecessors, (487), 86 states have call successors, (86), 82 states have call predecessors, (86), 90 states have return successors, (110), 86 states have call predecessors, (110), 86 states have call successors, (110) [2024-11-14 02:53:13,183 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 560 states to 560 states and 683 transitions. [2024-11-14 02:53:13,184 INFO L78 Accepts]: Start accepts. Automaton has 560 states and 683 transitions. Word has length 35 [2024-11-14 02:53:13,184 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:13,184 INFO L471 AbstractCegarLoop]: Abstraction has 560 states and 683 transitions. [2024-11-14 02:53:13,185 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 5.2) internal successors, (26), 5 states have internal predecessors, (26), 2 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-14 02:53:13,185 INFO L276 IsEmpty]: Start isEmpty. Operand 560 states and 683 transitions. [2024-11-14 02:53:13,191 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2024-11-14 02:53:13,191 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:13,191 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:13,191 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-14 02:53:13,191 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:13,192 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:13,192 INFO L85 PathProgramCache]: Analyzing trace with hash 429270469, now seen corresponding path program 1 times [2024-11-14 02:53:13,192 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:13,192 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1817868353] [2024-11-14 02:53:13,192 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:13,195 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:13,221 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:13,733 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:53:13,733 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:13,733 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1817868353] [2024-11-14 02:53:13,733 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1817868353] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:13,733 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:53:13,733 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [13] imperfect sequences [] total 13 [2024-11-14 02:53:13,733 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1758831271] [2024-11-14 02:53:13,733 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:13,734 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2024-11-14 02:53:13,734 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:13,734 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2024-11-14 02:53:13,734 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=122, Unknown=0, NotChecked=0, Total=156 [2024-11-14 02:53:13,735 INFO L87 Difference]: Start difference. First operand 560 states and 683 transitions. Second operand has 13 states, 11 states have (on average 2.3636363636363638) internal successors, (26), 11 states have internal predecessors, (26), 4 states have call successors, (6), 3 states have call predecessors, (6), 4 states have return successors, (5), 5 states have call predecessors, (5), 4 states have call successors, (5) [2024-11-14 02:53:14,788 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:14,788 INFO L93 Difference]: Finished difference Result 1121 states and 1487 transitions. [2024-11-14 02:53:14,789 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-11-14 02:53:14,790 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 11 states have (on average 2.3636363636363638) internal successors, (26), 11 states have internal predecessors, (26), 4 states have call successors, (6), 3 states have call predecessors, (6), 4 states have return successors, (5), 5 states have call predecessors, (5), 4 states have call successors, (5) Word has length 38 [2024-11-14 02:53:14,790 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:14,798 INFO L225 Difference]: With dead ends: 1121 [2024-11-14 02:53:14,798 INFO L226 Difference]: Without dead ends: 895 [2024-11-14 02:53:14,801 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 35 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 28 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 191 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=243, Invalid=627, Unknown=0, NotChecked=0, Total=870 [2024-11-14 02:53:14,803 INFO L432 NwaCegarLoop]: 35 mSDtfsCounter, 277 mSDsluCounter, 192 mSDsCounter, 0 mSdLazyCounter, 319 mSolverCounterSat, 149 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 282 SdHoareTripleChecker+Valid, 227 SdHoareTripleChecker+Invalid, 468 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 149 IncrementalHoareTripleChecker+Valid, 319 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:14,804 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [282 Valid, 227 Invalid, 468 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [149 Valid, 319 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-14 02:53:14,807 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 895 states. [2024-11-14 02:53:14,937 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 895 to 715. [2024-11-14 02:53:14,939 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 715 states, 491 states have (on average 1.274949083503055) internal successors, (626), 529 states have internal predecessors, (626), 110 states have call successors, (110), 98 states have call predecessors, (110), 113 states have return successors, (155), 112 states have call predecessors, (155), 110 states have call successors, (155) [2024-11-14 02:53:14,944 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 715 states to 715 states and 891 transitions. [2024-11-14 02:53:14,945 INFO L78 Accepts]: Start accepts. Automaton has 715 states and 891 transitions. Word has length 38 [2024-11-14 02:53:14,946 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:14,946 INFO L471 AbstractCegarLoop]: Abstraction has 715 states and 891 transitions. [2024-11-14 02:53:14,946 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 11 states have (on average 2.3636363636363638) internal successors, (26), 11 states have internal predecessors, (26), 4 states have call successors, (6), 3 states have call predecessors, (6), 4 states have return successors, (5), 5 states have call predecessors, (5), 4 states have call successors, (5) [2024-11-14 02:53:14,946 INFO L276 IsEmpty]: Start isEmpty. Operand 715 states and 891 transitions. [2024-11-14 02:53:14,950 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2024-11-14 02:53:14,950 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:14,950 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:14,950 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-14 02:53:14,951 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:14,951 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:14,951 INFO L85 PathProgramCache]: Analyzing trace with hash -807263599, now seen corresponding path program 1 times [2024-11-14 02:53:14,951 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:14,951 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [900371503] [2024-11-14 02:53:14,952 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:14,952 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:14,974 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:15,011 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 15 proven. 0 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2024-11-14 02:53:15,011 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:15,012 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [900371503] [2024-11-14 02:53:15,012 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [900371503] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:15,012 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:53:15,012 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-14 02:53:15,012 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [683849260] [2024-11-14 02:53:15,012 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:15,012 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-14 02:53:15,012 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:15,013 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-14 02:53:15,013 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-14 02:53:15,013 INFO L87 Difference]: Start difference. First operand 715 states and 891 transitions. Second operand has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) [2024-11-14 02:53:15,230 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:15,230 INFO L93 Difference]: Finished difference Result 1164 states and 1448 transitions. [2024-11-14 02:53:15,230 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-14 02:53:15,231 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) Word has length 60 [2024-11-14 02:53:15,231 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:15,234 INFO L225 Difference]: With dead ends: 1164 [2024-11-14 02:53:15,235 INFO L226 Difference]: Without dead ends: 451 [2024-11-14 02:53:15,239 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-14 02:53:15,239 INFO L432 NwaCegarLoop]: 73 mSDtfsCounter, 85 mSDsluCounter, 43 mSDsCounter, 0 mSdLazyCounter, 82 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 85 SdHoareTripleChecker+Valid, 116 SdHoareTripleChecker+Invalid, 86 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 82 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:15,240 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [85 Valid, 116 Invalid, 86 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 82 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 02:53:15,241 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 451 states. [2024-11-14 02:53:15,309 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 451 to 443. [2024-11-14 02:53:15,310 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 443 states, 309 states have (on average 1.2588996763754046) internal successors, (389), 332 states have internal predecessors, (389), 66 states have call successors, (66), 60 states have call predecessors, (66), 67 states have return successors, (85), 67 states have call predecessors, (85), 66 states have call successors, (85) [2024-11-14 02:53:15,315 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 443 states to 443 states and 540 transitions. [2024-11-14 02:53:15,316 INFO L78 Accepts]: Start accepts. Automaton has 443 states and 540 transitions. Word has length 60 [2024-11-14 02:53:15,317 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:15,317 INFO L471 AbstractCegarLoop]: Abstraction has 443 states and 540 transitions. [2024-11-14 02:53:15,317 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 14.333333333333334) internal successors, (43), 4 states have internal predecessors, (43), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) [2024-11-14 02:53:15,317 INFO L276 IsEmpty]: Start isEmpty. Operand 443 states and 540 transitions. [2024-11-14 02:53:15,319 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 68 [2024-11-14 02:53:15,319 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:15,320 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:15,320 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-14 02:53:15,320 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:15,320 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:15,324 INFO L85 PathProgramCache]: Analyzing trace with hash -2122130669, now seen corresponding path program 1 times [2024-11-14 02:53:15,324 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:15,324 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1750509158] [2024-11-14 02:53:15,324 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:15,324 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:15,357 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:16,001 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 5 proven. 11 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-14 02:53:16,001 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:16,001 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1750509158] [2024-11-14 02:53:16,001 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1750509158] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 02:53:16,001 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1300307378] [2024-11-14 02:53:16,001 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:16,001 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:53:16,002 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 02:53:16,004 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 02:53:16,006 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-14 02:53:16,113 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:16,116 INFO L255 TraceCheckSpWp]: Trace formula consists of 242 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-14 02:53:16,123 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 02:53:16,573 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 13 proven. 11 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:53:16,573 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 02:53:17,096 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 8 proven. 3 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-11-14 02:53:17,096 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1300307378] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 02:53:17,096 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1940152538] [2024-11-14 02:53:17,123 INFO L159 IcfgInterpreter]: Started Sifa with 44 locations of interest [2024-11-14 02:53:17,123 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 02:53:17,127 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 02:53:17,132 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 02:53:17,132 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 02:53:20,264 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 135 for LOIs [2024-11-14 02:53:20,326 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 24 for LOIs [2024-11-14 02:53:20,459 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 32 for LOIs [2024-11-14 02:53:20,542 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 28 for LOIs [2024-11-14 02:53:20,550 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 19 for LOIs [2024-11-14 02:53:20,554 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 23 for LOIs [2024-11-14 02:53:20,557 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 02:53:23,942 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10502#(and (<= ~methaneLevelCritical~0 1) (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (= 1 ~systemActive~0) (not (= ~methaneLevelCritical~0 0)) (<= 0 ~methaneLevelCritical~0) (<= 0 (+ ~pumpRunning~0 2147483648)))' at error location [2024-11-14 02:53:23,942 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 02:53:23,943 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 02:53:23,943 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 11, 11] total 25 [2024-11-14 02:53:23,943 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1129509287] [2024-11-14 02:53:23,943 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 02:53:23,944 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-11-14 02:53:23,944 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:23,944 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-11-14 02:53:23,946 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=341, Invalid=2629, Unknown=0, NotChecked=0, Total=2970 [2024-11-14 02:53:23,946 INFO L87 Difference]: Start difference. First operand 443 states and 540 transitions. Second operand has 25 states, 22 states have (on average 4.090909090909091) internal successors, (90), 21 states have internal predecessors, (90), 11 states have call successors, (23), 9 states have call predecessors, (23), 9 states have return successors, (21), 8 states have call predecessors, (21), 11 states have call successors, (21) [2024-11-14 02:53:25,780 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:25,780 INFO L93 Difference]: Finished difference Result 1446 states and 1832 transitions. [2024-11-14 02:53:25,781 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 42 states. [2024-11-14 02:53:25,781 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 22 states have (on average 4.090909090909091) internal successors, (90), 21 states have internal predecessors, (90), 11 states have call successors, (23), 9 states have call predecessors, (23), 9 states have return successors, (21), 8 states have call predecessors, (21), 11 states have call successors, (21) Word has length 67 [2024-11-14 02:53:25,781 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:25,789 INFO L225 Difference]: With dead ends: 1446 [2024-11-14 02:53:25,790 INFO L226 Difference]: Without dead ends: 1115 [2024-11-14 02:53:25,793 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 247 GetRequests, 160 SyntacticMatches, 7 SemanticMatches, 80 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 2696 ImplicationChecksByTransitivity, 4.5s TimeCoverageRelationStatistics Valid=962, Invalid=5680, Unknown=0, NotChecked=0, Total=6642 [2024-11-14 02:53:25,795 INFO L432 NwaCegarLoop]: 51 mSDtfsCounter, 669 mSDsluCounter, 521 mSDsCounter, 0 mSdLazyCounter, 865 mSolverCounterSat, 381 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 677 SdHoareTripleChecker+Valid, 572 SdHoareTripleChecker+Invalid, 1246 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 381 IncrementalHoareTripleChecker+Valid, 865 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:25,796 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [677 Valid, 572 Invalid, 1246 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [381 Valid, 865 Invalid, 0 Unknown, 0 Unchecked, 0.9s Time] [2024-11-14 02:53:25,798 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1115 states. [2024-11-14 02:53:25,931 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1115 to 1010. [2024-11-14 02:53:25,933 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1010 states, 705 states have (on average 1.252482269503546) internal successors, (883), 762 states have internal predecessors, (883), 150 states have call successors, (150), 129 states have call predecessors, (150), 154 states have return successors, (216), 162 states have call predecessors, (216), 150 states have call successors, (216) [2024-11-14 02:53:25,940 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1010 states to 1010 states and 1249 transitions. [2024-11-14 02:53:25,942 INFO L78 Accepts]: Start accepts. Automaton has 1010 states and 1249 transitions. Word has length 67 [2024-11-14 02:53:25,943 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:25,943 INFO L471 AbstractCegarLoop]: Abstraction has 1010 states and 1249 transitions. [2024-11-14 02:53:25,944 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 22 states have (on average 4.090909090909091) internal successors, (90), 21 states have internal predecessors, (90), 11 states have call successors, (23), 9 states have call predecessors, (23), 9 states have return successors, (21), 8 states have call predecessors, (21), 11 states have call successors, (21) [2024-11-14 02:53:25,944 INFO L276 IsEmpty]: Start isEmpty. Operand 1010 states and 1249 transitions. [2024-11-14 02:53:25,952 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 122 [2024-11-14 02:53:25,953 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:25,953 INFO L215 NwaCegarLoop]: trace histogram [6, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:25,976 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-14 02:53:26,153 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable8 [2024-11-14 02:53:26,154 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:26,154 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:26,154 INFO L85 PathProgramCache]: Analyzing trace with hash 639750372, now seen corresponding path program 1 times [2024-11-14 02:53:26,154 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:26,154 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [916760799] [2024-11-14 02:53:26,154 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:26,154 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:26,181 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:27,201 INFO L134 CoverageAnalysis]: Checked inductivity of 149 backedges. 55 proven. 55 refuted. 0 times theorem prover too weak. 39 trivial. 0 not checked. [2024-11-14 02:53:27,201 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:27,201 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [916760799] [2024-11-14 02:53:27,201 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [916760799] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 02:53:27,201 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [648100159] [2024-11-14 02:53:27,201 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:27,202 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:53:27,202 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 02:53:27,204 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 02:53:27,206 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-14 02:53:27,314 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:27,317 INFO L255 TraceCheckSpWp]: Trace formula consists of 372 conjuncts, 28 conjuncts are in the unsatisfiable core [2024-11-14 02:53:27,323 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 02:53:27,825 INFO L134 CoverageAnalysis]: Checked inductivity of 149 backedges. 84 proven. 44 refuted. 0 times theorem prover too weak. 21 trivial. 0 not checked. [2024-11-14 02:53:27,825 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 02:53:28,431 INFO L134 CoverageAnalysis]: Checked inductivity of 149 backedges. 77 proven. 25 refuted. 0 times theorem prover too weak. 47 trivial. 0 not checked. [2024-11-14 02:53:28,431 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [648100159] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 02:53:28,432 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1842353570] [2024-11-14 02:53:28,434 INFO L159 IcfgInterpreter]: Started Sifa with 47 locations of interest [2024-11-14 02:53:28,434 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 02:53:28,435 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 02:53:28,435 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 02:53:28,435 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 02:53:30,543 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 135 for LOIs [2024-11-14 02:53:30,581 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 24 for LOIs [2024-11-14 02:53:30,715 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 32 for LOIs [2024-11-14 02:53:30,781 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 28 for LOIs [2024-11-14 02:53:30,786 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 19 for LOIs [2024-11-14 02:53:30,788 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 23 for LOIs [2024-11-14 02:53:30,791 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 26 for LOIs [2024-11-14 02:53:30,794 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 02:53:34,431 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14962#(and (<= ~methaneLevelCritical~0 1) (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (= 1 ~systemActive~0) (not (= ~methaneLevelCritical~0 0)) (<= 0 ~methaneLevelCritical~0) (<= 0 (+ ~pumpRunning~0 2147483648)))' at error location [2024-11-14 02:53:34,431 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 02:53:34,432 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 02:53:34,432 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 13, 13] total 35 [2024-11-14 02:53:34,432 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [60694691] [2024-11-14 02:53:34,432 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 02:53:34,433 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 35 states [2024-11-14 02:53:34,433 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:34,434 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 35 interpolants. [2024-11-14 02:53:34,435 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=503, Invalid=4053, Unknown=0, NotChecked=0, Total=4556 [2024-11-14 02:53:34,436 INFO L87 Difference]: Start difference. First operand 1010 states and 1249 transitions. Second operand has 35 states, 32 states have (on average 5.21875) internal successors, (167), 34 states have internal predecessors, (167), 23 states have call successors, (39), 8 states have call predecessors, (39), 15 states have return successors, (41), 18 states have call predecessors, (41), 23 states have call successors, (41) [2024-11-14 02:53:37,477 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:37,477 INFO L93 Difference]: Finished difference Result 2585 states and 3365 transitions. [2024-11-14 02:53:37,477 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 50 states. [2024-11-14 02:53:37,478 INFO L78 Accepts]: Start accepts. Automaton has has 35 states, 32 states have (on average 5.21875) internal successors, (167), 34 states have internal predecessors, (167), 23 states have call successors, (39), 8 states have call predecessors, (39), 15 states have return successors, (41), 18 states have call predecessors, (41), 23 states have call successors, (41) Word has length 121 [2024-11-14 02:53:37,480 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:37,493 INFO L225 Difference]: With dead ends: 2585 [2024-11-14 02:53:37,493 INFO L226 Difference]: Without dead ends: 1670 [2024-11-14 02:53:37,501 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 435 GetRequests, 319 SyntacticMatches, 9 SemanticMatches, 107 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 4706 ImplicationChecksByTransitivity, 5.5s TimeCoverageRelationStatistics Valid=1444, Invalid=10328, Unknown=0, NotChecked=0, Total=11772 [2024-11-14 02:53:37,502 INFO L432 NwaCegarLoop]: 111 mSDtfsCounter, 1137 mSDsluCounter, 789 mSDsCounter, 0 mSdLazyCounter, 1258 mSolverCounterSat, 702 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1144 SdHoareTripleChecker+Valid, 900 SdHoareTripleChecker+Invalid, 1960 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 702 IncrementalHoareTripleChecker+Valid, 1258 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:37,502 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1144 Valid, 900 Invalid, 1960 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [702 Valid, 1258 Invalid, 0 Unknown, 0 Unchecked, 1.4s Time] [2024-11-14 02:53:37,505 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1670 states. [2024-11-14 02:53:37,668 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1670 to 1470. [2024-11-14 02:53:37,670 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1470 states, 1035 states have (on average 1.2570048309178743) internal successors, (1301), 1115 states have internal predecessors, (1301), 226 states have call successors, (226), 197 states have call predecessors, (226), 208 states have return successors, (289), 212 states have call predecessors, (289), 226 states have call successors, (289) [2024-11-14 02:53:37,677 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1470 states to 1470 states and 1816 transitions. [2024-11-14 02:53:37,679 INFO L78 Accepts]: Start accepts. Automaton has 1470 states and 1816 transitions. Word has length 121 [2024-11-14 02:53:37,680 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:37,680 INFO L471 AbstractCegarLoop]: Abstraction has 1470 states and 1816 transitions. [2024-11-14 02:53:37,680 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 35 states, 32 states have (on average 5.21875) internal successors, (167), 34 states have internal predecessors, (167), 23 states have call successors, (39), 8 states have call predecessors, (39), 15 states have return successors, (41), 18 states have call predecessors, (41), 23 states have call successors, (41) [2024-11-14 02:53:37,680 INFO L276 IsEmpty]: Start isEmpty. Operand 1470 states and 1816 transitions. [2024-11-14 02:53:37,684 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 146 [2024-11-14 02:53:37,684 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:53:37,684 INFO L215 NwaCegarLoop]: trace histogram [7, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:37,705 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-14 02:53:37,884 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-14 02:53:37,885 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:53:37,885 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:53:37,885 INFO L85 PathProgramCache]: Analyzing trace with hash -1384279621, now seen corresponding path program 1 times [2024-11-14 02:53:37,885 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:53:37,885 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [652143556] [2024-11-14 02:53:37,885 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:37,886 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:53:37,910 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:39,335 INFO L134 CoverageAnalysis]: Checked inductivity of 226 backedges. 28 proven. 127 refuted. 0 times theorem prover too weak. 71 trivial. 0 not checked. [2024-11-14 02:53:39,336 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:53:39,336 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [652143556] [2024-11-14 02:53:39,336 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [652143556] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 02:53:39,336 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [51168154] [2024-11-14 02:53:39,336 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:53:39,336 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:53:39,336 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 02:53:39,338 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 02:53:39,341 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-14 02:53:39,482 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:53:39,485 INFO L255 TraceCheckSpWp]: Trace formula consists of 427 conjuncts, 9 conjuncts are in the unsatisfiable core [2024-11-14 02:53:39,489 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 02:53:39,662 INFO L134 CoverageAnalysis]: Checked inductivity of 226 backedges. 124 proven. 0 refuted. 0 times theorem prover too weak. 102 trivial. 0 not checked. [2024-11-14 02:53:39,663 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-14 02:53:39,663 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [51168154] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:53:39,663 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-14 02:53:39,663 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [20] total 23 [2024-11-14 02:53:39,663 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2121775870] [2024-11-14 02:53:39,663 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:53:39,664 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-14 02:53:39,664 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:53:39,664 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-14 02:53:39,665 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=84, Invalid=422, Unknown=0, NotChecked=0, Total=506 [2024-11-14 02:53:39,665 INFO L87 Difference]: Start difference. First operand 1470 states and 1816 transitions. Second operand has 6 states, 6 states have (on average 11.0) internal successors, (66), 6 states have internal predecessors, (66), 3 states have call successors, (13), 3 states have call predecessors, (13), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-14 02:53:40,033 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:53:40,033 INFO L93 Difference]: Finished difference Result 2091 states and 2587 transitions. [2024-11-14 02:53:40,034 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-14 02:53:40,034 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 11.0) internal successors, (66), 6 states have internal predecessors, (66), 3 states have call successors, (13), 3 states have call predecessors, (13), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) Word has length 145 [2024-11-14 02:53:40,035 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:53:40,037 INFO L225 Difference]: With dead ends: 2091 [2024-11-14 02:53:40,037 INFO L226 Difference]: Without dead ends: 0 [2024-11-14 02:53:40,043 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 173 GetRequests, 150 SyntacticMatches, 0 SemanticMatches, 23 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 161 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=97, Invalid=503, Unknown=0, NotChecked=0, Total=600 [2024-11-14 02:53:40,044 INFO L432 NwaCegarLoop]: 74 mSDtfsCounter, 65 mSDsluCounter, 172 mSDsCounter, 0 mSdLazyCounter, 147 mSolverCounterSat, 12 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 65 SdHoareTripleChecker+Valid, 246 SdHoareTripleChecker+Invalid, 159 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 12 IncrementalHoareTripleChecker+Valid, 147 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 02:53:40,044 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [65 Valid, 246 Invalid, 159 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [12 Valid, 147 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 02:53:40,045 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-14 02:53:40,045 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-14 02:53:40,045 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 02:53:40,045 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-14 02:53:40,047 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 145 [2024-11-14 02:53:40,047 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:53:40,047 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-14 02:53:40,047 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 11.0) internal successors, (66), 6 states have internal predecessors, (66), 3 states have call successors, (13), 3 states have call predecessors, (13), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-14 02:53:40,048 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-14 02:53:40,048 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-14 02:53:40,051 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-14 02:53:40,074 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-14 02:53:40,256 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:53:40,259 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:53:40,262 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-14 02:53:51,499 INFO L173 ceAbstractionStarter]: Computing trace abstraction results [2024-11-14 02:53:51,520 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (let ((.cse0 (or (= ~methaneLevelCritical~0 0) (= ~methaneLevelCritical~0 1)))) (or (and .cse0 (<= 2 ~waterLevel~0) (not (= 0 ~systemActive~0))) (and (not (= |old(~pumpRunning~0)| 0)) .cse0 (= 1 ~systemActive~0) (= ~waterLevel~0 1)))) (or (= 2 ~waterLevel~0) (< ~waterLevel~0 2))) Eliminated clause: (and (let ((.cse0 (or (= ~methaneLevelCritical~0 0) (= ~methaneLevelCritical~0 1)))) (or (and .cse0 (<= 2 ~waterLevel~0) (not (= 0 ~systemActive~0))) (and (not (= ~pumpRunning~0 0)) .cse0 (= 1 ~systemActive~0) (= ~waterLevel~0 1)))) (or (= 2 ~waterLevel~0) (< ~waterLevel~0 2))) [2024-11-14 02:53:51,537 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse0 (= ~methaneLevelCritical~0 0)) (.cse3 (= ~waterLevel~0 1)) (.cse2 (= |old(~methaneLevelCritical~0)| 0)) (.cse1 (= ~pumpRunning~0 0)) (.cse6 (= 2 ~waterLevel~0)) (.cse7 (= 0 ~systemActive~0))) (and (or .cse0 (= ~methaneLevelCritical~0 1)) (or .cse1 (not .cse2) .cse0) (or (< 1 ~waterLevel~0) (and .cse1 .cse3)) (let ((.cse5 (= 1 ~systemActive~0)) (.cse4 (or .cse2 (= |old(~methaneLevelCritical~0)| 1)))) (or (and .cse4 .cse5 .cse3) (and .cse6 .cse4 .cse5) (and .cse4 .cse7))) (or (and .cse1 .cse6) (< ~waterLevel~0 2) (not .cse7)))) Eliminated clause: (let ((.cse0 (= ~methaneLevelCritical~0 0)) (.cse2 (= ~waterLevel~0 1)) (.cse1 (= ~pumpRunning~0 0)) (.cse6 (= 2 ~waterLevel~0)) (.cse7 (= 0 ~systemActive~0))) (and (or .cse0 (= ~methaneLevelCritical~0 1)) (or (< 1 ~waterLevel~0) (and .cse1 .cse2)) (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse3 (= |old(~methaneLevelCritical~0)| 0))) (and (or .cse1 (not .cse3) .cse0) (let ((.cse5 (= 1 ~systemActive~0)) (.cse4 (or .cse3 (= |old(~methaneLevelCritical~0)| 1)))) (or (and .cse4 .cse5 .cse2) (and .cse6 .cse4 .cse5) (and .cse4 .cse7)))))) (or (and .cse1 .cse6) (< ~waterLevel~0 2) (not .cse7)))) [2024-11-14 02:53:51,542 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 02:53:51,560 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse3 (= |old(~waterLevel~0)| 1))) (and (let ((.cse5 (= 0 ~systemActive~0)) (.cse0 (or (= ~methaneLevelCritical~0 0) (= ~methaneLevelCritical~0 1))) (.cse1 (= 1 ~systemActive~0)) (.cse4 (= |old(~pumpRunning~0)| 0))) (or (and .cse0 .cse1 .cse2) (and .cse0 .cse3 .cse4 .cse5) (and .cse0 .cse4 .cse5 .cse2) (and .cse0 .cse3 .cse1 .cse4))) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse2)) (or (not .cse3) (and (= ~pumpRunning~0 0) (= ~waterLevel~0 1))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse3 (= |old(~waterLevel~0)| 1))) (and (let ((.cse5 (= 0 ~systemActive~0)) (.cse0 (or (= ~methaneLevelCritical~0 0) (= ~methaneLevelCritical~0 1))) (.cse1 (= 1 ~systemActive~0)) (.cse4 (= |old(~pumpRunning~0)| 0))) (or (and .cse0 .cse1 .cse2) (and .cse0 .cse3 .cse4 .cse5) (and .cse0 .cse4 .cse5 .cse2) (and .cse0 .cse3 .cse1 .cse4))) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse2)) (or (not .cse3) (and (= ~pumpRunning~0 0) (= ~waterLevel~0 1)))))) [2024-11-14 02:53:51,572 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 02:53:51,575 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (or (= ~methaneLevelCritical~0 0) (= ~methaneLevelCritical~0 1)) (or (= 2 ~waterLevel~0) (= ~waterLevel~0 1)) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0)) Eliminated clause: (and (= ~pumpRunning~0 0) (or (= ~methaneLevelCritical~0 0) (= ~methaneLevelCritical~0 1)) (or (= 2 ~waterLevel~0) (= ~waterLevel~0 1)) (= 1 ~systemActive~0)) [2024-11-14 02:53:51,581 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse1 (= 0 ~systemActive~0))) (and (let ((.cse0 (= ~methaneLevelCritical~0 0))) (or (and (= ~pumpRunning~0 0) (or .cse0 (= ~methaneLevelCritical~0 1))) (and .cse0 (not .cse1) .cse2))) (or (and (= |old(~waterLevel~0)| 1) (= ~waterLevel~0 1)) (and (= 2 ~waterLevel~0) .cse2)) (or (= 1 ~systemActive~0) .cse1))) Eliminated clause: (let ((.cse1 (= 0 ~systemActive~0))) (and (exists ((|old(~waterLevel~0)| Int)) (let ((.cse2 (= |old(~waterLevel~0)| 2))) (and (let ((.cse0 (= ~methaneLevelCritical~0 0))) (or (and (= ~pumpRunning~0 0) (or .cse0 (= ~methaneLevelCritical~0 1))) (and .cse0 (not .cse1) .cse2))) (or (and (= |old(~waterLevel~0)| 1) (= ~waterLevel~0 1)) (and (= 2 ~waterLevel~0) .cse2))))) (or (= 1 ~systemActive~0) .cse1))) [2024-11-14 02:53:51,588 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 02:53:51,589 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 14.11 02:53:51 BoogieIcfgContainer [2024-11-14 02:53:51,589 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-14 02:53:51,590 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-14 02:53:51,590 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-14 02:53:51,590 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-14 02:53:51,591 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 02:53:10" (3/4) ... [2024-11-14 02:53:51,593 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-14 02:53:51,596 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-14 02:53:51,596 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-14 02:53:51,597 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-14 02:53:51,597 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-14 02:53:51,597 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-14 02:53:51,597 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-14 02:53:51,601 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 02:53:51,601 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-14 02:53:51,612 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 44 nodes and edges [2024-11-14 02:53:51,612 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-14 02:53:51,613 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-14 02:53:51,613 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 02:53:51,613 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 02:53:51,645 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(waterLevel) == 1)) && (\old(pumpRunning) == 0)) && (0 == systemActive))) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(pumpRunning) == 0)) && (0 == systemActive)) && (\old(waterLevel) == 2))) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(waterLevel) == 1)) && (1 == systemActive)) && (\old(pumpRunning) == 0))) && (((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2))) && ((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1)))) [2024-11-14 02:53:51,680 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(waterLevel) == 1)) && (\old(pumpRunning) == 0)) && (0 == systemActive))) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(pumpRunning) == 0)) && (0 == systemActive)) && (\old(waterLevel) == 2))) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(waterLevel) == 1)) && (1 == systemActive)) && (\old(pumpRunning) == 0))) && (((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2))) && ((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1)))) [2024-11-14 02:53:51,738 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/witness.graphml [2024-11-14 02:53:51,739 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/witness.yml [2024-11-14 02:53:51,739 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-14 02:53:51,740 INFO L158 Benchmark]: Toolchain (without parser) took 42677.27ms. Allocated memory was 117.4MB in the beginning and 922.7MB in the end (delta: 805.3MB). Free memory was 93.6MB in the beginning and 777.1MB in the end (delta: -683.6MB). Peak memory consumption was 120.4MB. Max. memory is 16.1GB. [2024-11-14 02:53:51,741 INFO L158 Benchmark]: CDTParser took 0.41ms. Allocated memory is still 167.8MB. Free memory is still 104.0MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 02:53:51,741 INFO L158 Benchmark]: CACSL2BoogieTranslator took 604.88ms. Allocated memory is still 117.4MB. Free memory was 93.2MB in the beginning and 74.6MB in the end (delta: 18.6MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-11-14 02:53:51,741 INFO L158 Benchmark]: Boogie Procedure Inliner took 61.93ms. Allocated memory is still 117.4MB. Free memory was 74.3MB in the beginning and 72.4MB in the end (delta: 1.8MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 02:53:51,742 INFO L158 Benchmark]: Boogie Preprocessor took 40.82ms. Allocated memory is still 117.4MB. Free memory was 72.4MB in the beginning and 71.4MB in the end (delta: 1.1MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 02:53:51,742 INFO L158 Benchmark]: RCFGBuilder took 650.21ms. Allocated memory is still 117.4MB. Free memory was 71.4MB in the beginning and 44.0MB in the end (delta: 27.4MB). Peak memory consumption was 33.6MB. Max. memory is 16.1GB. [2024-11-14 02:53:51,742 INFO L158 Benchmark]: TraceAbstraction took 41162.35ms. Allocated memory was 117.4MB in the beginning and 922.7MB in the end (delta: 805.3MB). Free memory was 43.3MB in the beginning and 785.5MB in the end (delta: -742.2MB). Peak memory consumption was 511.8MB. Max. memory is 16.1GB. [2024-11-14 02:53:51,743 INFO L158 Benchmark]: Witness Printer took 149.54ms. Allocated memory is still 922.7MB. Free memory was 785.5MB in the beginning and 777.1MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-14 02:53:51,745 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.41ms. Allocated memory is still 167.8MB. Free memory is still 104.0MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 604.88ms. Allocated memory is still 117.4MB. Free memory was 93.2MB in the beginning and 74.6MB in the end (delta: 18.6MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 61.93ms. Allocated memory is still 117.4MB. Free memory was 74.3MB in the beginning and 72.4MB in the end (delta: 1.8MB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 40.82ms. Allocated memory is still 117.4MB. Free memory was 72.4MB in the beginning and 71.4MB in the end (delta: 1.1MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 650.21ms. Allocated memory is still 117.4MB. Free memory was 71.4MB in the beginning and 44.0MB in the end (delta: 27.4MB). Peak memory consumption was 33.6MB. Max. memory is 16.1GB. * TraceAbstraction took 41162.35ms. Allocated memory was 117.4MB in the beginning and 922.7MB in the end (delta: 805.3MB). Free memory was 43.3MB in the beginning and 785.5MB in the end (delta: -742.2MB). Peak memory consumption was 511.8MB. Max. memory is 16.1GB. * Witness Printer took 149.54ms. Allocated memory is still 922.7MB. Free memory was 785.5MB in the beginning and 777.1MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [49] - GenericResultAtLocation [Line: 153]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [153] - GenericResultAtLocation [Line: 262]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [262] - GenericResultAtLocation [Line: 290]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [290] - GenericResultAtLocation [Line: 656]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [656] - GenericResultAtLocation [Line: 665]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [665] - GenericResultAtLocation [Line: 736]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [736] - GenericResultAtLocation [Line: 976]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [976] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 661]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 65 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 29.8s, OverallIterations: 11, TraceHistogramMax: 7, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 7.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2513 SdHoareTripleChecker+Valid, 3.8s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2487 mSDsluCounter, 2924 SdHoareTripleChecker+Invalid, 3.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2223 mSDsCounter, 1274 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3046 IncrementalHoareTripleChecker+Invalid, 4320 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1274 mSolverCounterUnsat, 701 mSDtfsCounter, 3046 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 925 GetRequests, 652 SyntacticMatches, 16 SemanticMatches, 257 ConstructedPredicates, 0 IntricatePredicates, 2 DeprecatedPredicates, 7759 ImplicationChecksByTransitivity, 10.9s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1470occurred in iteration=10, InterpolantAutomatonStates: 149, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.8s AutomataMinimizationTime, 11 MinimizatonAttempts, 530 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 6.8s InterpolantComputationTime, 907 NumberOfCodeBlocks, 907 NumberOfCodeBlocksAsserted, 14 NumberOfCheckSat, 1079 ConstructedInterpolants, 0 QuantifiedInterpolants, 3789 SizeOfPredicates, 15 NumberOfNonLiveVariables, 1041 ConjunctsInSsa, 55 ConjunctsInUnsatCore, 16 InterpolantComputations, 9 PerfectInterpolantSequences, 728/1004 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 678]: Loop Invariant Derived loop invariant: ((((((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (splverifierCounter == 0)) && (0 == systemActive)) && (waterLevel == 1)) || (((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1))) || (((((pumpRunning == 0) && (2 == waterLevel)) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (splverifierCounter == 0)) && (0 == systemActive))) || (((((2 == waterLevel) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (1 == systemActive)) && (splverifierCounter == 0)) && ((pumpRunning == 0) || (methaneLevelCritical == 0)))) - InvariantResult [Line: 62]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 677]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 742]: Location Invariant Derived location invariant: (((((((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(waterLevel) == 1)) && (\old(pumpRunning) == 0)) && (0 == systemActive))) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(pumpRunning) == 0)) && (0 == systemActive)) && (\old(waterLevel) == 2))) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(waterLevel) == 1)) && (1 == systemActive)) && (\old(pumpRunning) == 0))) && (((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2))) && ((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1)))) - ProcedureContractResult [Line: 851]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (2 <= waterLevel)) && (0 != systemActive)) || ((((pumpRunning != 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (1 == systemActive)) && (waterLevel == 1))) && ((2 == waterLevel) || (waterLevel < 2))) Ensures: (((pumpRunning == 0) && (((((\old(pumpRunning) != 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (1 == systemActive)) && (waterLevel == 1)) || (((2 == waterLevel) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (0 != systemActive)))) && (((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 766]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (1 == systemActive)) && (waterLevel == 1)) Ensures: (((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (1 == systemActive)) && (waterLevel == 1)) && ((((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 186]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && ((1 < waterLevel) || ((pumpRunning == 0) && (waterLevel == 1)))) && ((((pumpRunning == 0) && (2 == waterLevel)) || (waterLevel < 2)) || (0 != systemActive))) Ensures: (((((((\old(methaneLevelCritical) == 0) || (\old(methaneLevelCritical) == 1)) && ((pumpRunning == 0) || (0 != systemActive))) && ((1 == systemActive) || (0 == systemActive))) && ((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (waterLevel == 1)) || (1 < waterLevel))) && ((waterLevel < 2) || ((2 == waterLevel) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))))) && (((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (waterLevel == \old(waterLevel))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 198]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: (((((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (0 == systemActive)) && (waterLevel == 1)) || ((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (1 == systemActive)) && (waterLevel <= 2))) || (((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive))) || ((((pumpRunning == 0) && (2 == waterLevel)) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (0 == systemActive))) Ensures: (((((((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (0 == systemActive)) && (waterLevel == 1)) || ((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (1 == systemActive)) && (waterLevel <= 2))) || (((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive))) || ((((pumpRunning == 0) && (2 == waterLevel)) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (0 == systemActive))) && (\result == methaneLevelCritical)) && ((((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 742]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: (((((((((((pumpRunning == 0) && (waterLevel == 1)) || (\old(waterLevel) != 2)) || ((((2 == waterLevel) && (1 == systemActive)) && ((pumpRunning == \old(pumpRunning)) || (methaneLevelCritical != 1))) && ((pumpRunning == 0) || (methaneLevelCritical == 0)))) || (0 == systemActive)) && ((((pumpRunning == 0) && (2 == waterLevel)) || (\old(waterLevel) != 2)) || (0 != systemActive))) && ((((\old(pumpRunning) != 0) || ((((2 == waterLevel) && (1 == systemActive)) && ((pumpRunning == 0) || (methaneLevelCritical != 1))) && ((pumpRunning == 0) || (methaneLevelCritical == 0)))) || (\old(waterLevel) != 2)) || (0 == systemActive))) && (((\old(pumpRunning) != 0) || (1 == systemActive)) || (0 == systemActive))) && ((\old(waterLevel) != 1) || ((pumpRunning == 0) && (waterLevel == 1)))) && ((((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(pumpRunning) == 0)) && (\old(waterLevel) == 2)) || ((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (1 == systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (\old(waterLevel) == 1)) && (\old(pumpRunning) == 0)))) && ((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 52]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 774]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: ((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) Ensures: (((((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (((2 == waterLevel) && (\old(pumpRunning) == 0)) || ((\old(pumpRunning) == 0) && (waterLevel == 1)))) && (1 == systemActive)) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && ((pumpRunning == 0) || (1 < waterLevel))) && (((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 174]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: ((1 == systemActive) || (0 == systemActive)) Ensures: (((2 == waterLevel) && (((((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (\old(waterLevel) == 1)) && (1 == systemActive)) || ((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (0 == systemActive)) && (\old(waterLevel) == 2))) || (((((methaneLevelCritical == 0) || (methaneLevelCritical == 1)) && (1 == systemActive)) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && (\old(waterLevel) == 2))) || ((((pumpRunning == 0) && ((methaneLevelCritical == 0) || (methaneLevelCritical == 1))) && (\old(waterLevel) == 1)) && (0 == systemActive)))) && (((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) RESULT: Ultimate proved your program to be correct! [2024-11-14 02:53:51,786 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fad8ce46-06d3-4c96-a3c7-f432009c07c1/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE