./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec2_product39.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 826ab2ba Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec2_product39.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash faabc130c8aadbb7390121b68f1c41e161e50da9443e348cb1c3db1c45e9e0cb --- Real Ultimate output --- This is Ultimate 0.3.0-dev-826ab2b [2024-11-14 03:41:53,930 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-14 03:41:54,060 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-14 03:41:54,068 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-14 03:41:54,069 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-14 03:41:54,123 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-14 03:41:54,125 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-14 03:41:54,125 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-14 03:41:54,126 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-14 03:41:54,126 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-14 03:41:54,128 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-14 03:41:54,128 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-14 03:41:54,128 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-14 03:41:54,128 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-14 03:41:54,128 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-14 03:41:54,129 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-14 03:41:54,129 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-14 03:41:54,129 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-14 03:41:54,129 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-14 03:41:54,129 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-14 03:41:54,129 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-14 03:41:54,129 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-14 03:41:54,130 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-14 03:41:54,130 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-14 03:41:54,130 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-14 03:41:54,130 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-14 03:41:54,130 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-14 03:41:54,130 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-14 03:41:54,130 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-14 03:41:54,131 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-14 03:41:54,131 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-14 03:41:54,131 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-14 03:41:54,131 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-14 03:41:54,131 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-14 03:41:54,131 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-14 03:41:54,131 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-14 03:41:54,133 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-14 03:41:54,133 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-14 03:41:54,133 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 03:41:54,133 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-14 03:41:54,134 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-14 03:41:54,134 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-14 03:41:54,134 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-14 03:41:54,134 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-14 03:41:54,135 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-14 03:41:54,135 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-14 03:41:54,135 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-14 03:41:54,135 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> faabc130c8aadbb7390121b68f1c41e161e50da9443e348cb1c3db1c45e9e0cb [2024-11-14 03:41:54,557 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-14 03:41:54,573 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-14 03:41:54,579 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-14 03:41:54,581 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-14 03:41:54,581 INFO L274 PluginConnector]: CDTParser initialized [2024-11-14 03:41:54,584 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/../../sv-benchmarks/c/product-lines/minepump_spec2_product39.cil.c Unable to find full path for "g++" [2024-11-14 03:41:57,105 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-14 03:41:57,637 INFO L384 CDTParser]: Found 1 translation units. [2024-11-14 03:41:57,638 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/sv-benchmarks/c/product-lines/minepump_spec2_product39.cil.c [2024-11-14 03:41:57,668 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/data/ac58139b3/18ada6ac24314cc0a978d41c740e08be/FLAGfad4d05ff [2024-11-14 03:41:57,699 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/data/ac58139b3/18ada6ac24314cc0a978d41c740e08be [2024-11-14 03:41:57,702 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-14 03:41:57,706 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-14 03:41:57,708 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-14 03:41:57,709 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-14 03:41:57,716 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-14 03:41:57,717 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 03:41:57" (1/1) ... [2024-11-14 03:41:57,719 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@1daab907 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:57, skipping insertion in model container [2024-11-14 03:41:57,719 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 03:41:57" (1/1) ... [2024-11-14 03:41:57,787 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-14 03:41:58,133 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/sv-benchmarks/c/product-lines/minepump_spec2_product39.cil.c[5087,5100] [2024-11-14 03:41:58,266 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 03:41:58,286 INFO L200 MainTranslator]: Completed pre-run [2024-11-14 03:41:58,300 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] [2024-11-14 03:41:58,303 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [150] [2024-11-14 03:41:58,304 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [254] [2024-11-14 03:41:58,304 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [295] [2024-11-14 03:41:58,304 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [304] [2024-11-14 03:41:58,305 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [372] [2024-11-14 03:41:58,305 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [567] [2024-11-14 03:41:58,305 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [602] [2024-11-14 03:41:58,326 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/sv-benchmarks/c/product-lines/minepump_spec2_product39.cil.c[5087,5100] [2024-11-14 03:41:58,402 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 03:41:58,427 INFO L204 MainTranslator]: Completed translation [2024-11-14 03:41:58,427 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58 WrapperNode [2024-11-14 03:41:58,428 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-14 03:41:58,429 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-14 03:41:58,429 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-14 03:41:58,430 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-14 03:41:58,438 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,452 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,495 INFO L138 Inliner]: procedures = 55, calls = 100, calls flagged for inlining = 22, calls inlined = 19, statements flattened = 196 [2024-11-14 03:41:58,496 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-14 03:41:58,497 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-14 03:41:58,497 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-14 03:41:58,497 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-14 03:41:58,504 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,505 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,507 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,507 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,513 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,519 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,520 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,522 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,525 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-14 03:41:58,526 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-14 03:41:58,526 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-14 03:41:58,526 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-14 03:41:58,527 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (1/1) ... [2024-11-14 03:41:58,535 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 03:41:58,560 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 03:41:58,582 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-14 03:41:58,588 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-14 03:41:58,623 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-14 03:41:58,623 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-14 03:41:58,623 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-14 03:41:58,624 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-14 03:41:58,624 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-14 03:41:58,624 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-14 03:41:58,624 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-14 03:41:58,624 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-14 03:41:58,624 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-14 03:41:58,624 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 03:41:58,624 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 03:41:58,624 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-14 03:41:58,624 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-14 03:41:58,625 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-14 03:41:58,625 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-14 03:41:58,625 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-14 03:41:58,625 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-14 03:41:58,625 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-14 03:41:58,625 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-14 03:41:58,625 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-14 03:41:58,758 INFO L238 CfgBuilder]: Building ICFG [2024-11-14 03:41:58,761 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-14 03:41:59,191 INFO L? ?]: Removed 40 outVars from TransFormulas that were not future-live. [2024-11-14 03:41:59,191 INFO L287 CfgBuilder]: Performing block encoding [2024-11-14 03:41:59,378 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-14 03:41:59,378 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-14 03:41:59,379 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 03:41:59 BoogieIcfgContainer [2024-11-14 03:41:59,379 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-14 03:41:59,387 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-14 03:41:59,387 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-14 03:41:59,394 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-14 03:41:59,395 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 14.11 03:41:57" (1/3) ... [2024-11-14 03:41:59,396 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3f02f617 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 03:41:59, skipping insertion in model container [2024-11-14 03:41:59,396 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 03:41:58" (2/3) ... [2024-11-14 03:41:59,396 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3f02f617 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 03:41:59, skipping insertion in model container [2024-11-14 03:41:59,396 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 03:41:59" (3/3) ... [2024-11-14 03:41:59,400 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product39.cil.c [2024-11-14 03:41:59,424 INFO L217 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-14 03:41:59,426 INFO L154 ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec2_product39.cil.c that has 9 procedures, 66 locations, 1 initial locations, 2 loop locations, and 1 error locations. [2024-11-14 03:41:59,531 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-14 03:41:59,554 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@563edc4b, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-14 03:41:59,555 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-14 03:41:59,559 INFO L276 IsEmpty]: Start isEmpty. Operand has 66 states, 42 states have (on average 1.4523809523809523) internal successors, (61), 51 states have internal predecessors, (61), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-14 03:41:59,569 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-11-14 03:41:59,569 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:41:59,570 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:41:59,571 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:41:59,576 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:41:59,577 INFO L85 PathProgramCache]: Analyzing trace with hash 1527425211, now seen corresponding path program 1 times [2024-11-14 03:41:59,586 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:41:59,587 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [240446795] [2024-11-14 03:41:59,588 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:41:59,589 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:41:59,741 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:41:59,875 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 03:41:59,876 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:41:59,876 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [240446795] [2024-11-14 03:41:59,880 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [240446795] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:41:59,880 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 03:41:59,881 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-14 03:41:59,883 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [977902288] [2024-11-14 03:41:59,884 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:41:59,889 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-14 03:41:59,891 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:41:59,920 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-14 03:41:59,922 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 03:41:59,925 INFO L87 Difference]: Start difference. First operand has 66 states, 42 states have (on average 1.4523809523809523) internal successors, (61), 51 states have internal predecessors, (61), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 03:42:00,058 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:00,059 INFO L93 Difference]: Finished difference Result 130 states and 179 transitions. [2024-11-14 03:42:00,061 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-14 03:42:00,063 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-11-14 03:42:00,064 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:00,075 INFO L225 Difference]: With dead ends: 130 [2024-11-14 03:42:00,076 INFO L226 Difference]: Without dead ends: 61 [2024-11-14 03:42:00,082 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 03:42:00,089 INFO L432 NwaCegarLoop]: 69 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 69 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:00,090 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 69 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 03:42:00,114 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 61 states. [2024-11-14 03:42:00,145 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 61 to 61. [2024-11-14 03:42:00,147 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 61 states, 39 states have (on average 1.358974358974359) internal successors, (53), 47 states have internal predecessors, (53), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-14 03:42:00,158 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61 states to 61 states and 80 transitions. [2024-11-14 03:42:00,162 INFO L78 Accepts]: Start accepts. Automaton has 61 states and 80 transitions. Word has length 17 [2024-11-14 03:42:00,162 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:00,162 INFO L471 AbstractCegarLoop]: Abstraction has 61 states and 80 transitions. [2024-11-14 03:42:00,163 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 03:42:00,163 INFO L276 IsEmpty]: Start isEmpty. Operand 61 states and 80 transitions. [2024-11-14 03:42:00,167 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-11-14 03:42:00,167 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:00,168 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:00,168 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-14 03:42:00,168 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:00,169 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:00,169 INFO L85 PathProgramCache]: Analyzing trace with hash 1534686585, now seen corresponding path program 1 times [2024-11-14 03:42:00,169 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:00,172 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [554705672] [2024-11-14 03:42:00,172 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:00,173 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:00,212 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:00,363 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 03:42:00,363 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:00,363 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [554705672] [2024-11-14 03:42:00,364 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [554705672] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:42:00,364 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 03:42:00,364 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 03:42:00,364 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [529817281] [2024-11-14 03:42:00,364 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:00,365 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 03:42:00,367 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:00,368 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 03:42:00,368 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 03:42:00,369 INFO L87 Difference]: Start difference. First operand 61 states and 80 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 03:42:00,445 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:00,445 INFO L93 Difference]: Finished difference Result 94 states and 122 transitions. [2024-11-14 03:42:00,448 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 03:42:00,448 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2024-11-14 03:42:00,449 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:00,450 INFO L225 Difference]: With dead ends: 94 [2024-11-14 03:42:00,451 INFO L226 Difference]: Without dead ends: 53 [2024-11-14 03:42:00,451 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 03:42:00,452 INFO L432 NwaCegarLoop]: 55 mSDtfsCounter, 14 mSDsluCounter, 38 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 93 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:00,455 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 93 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 03:42:00,457 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 53 states. [2024-11-14 03:42:00,469 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 53 to 53. [2024-11-14 03:42:00,469 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 53 states, 34 states have (on average 1.3823529411764706) internal successors, (47), 42 states have internal predecessors, (47), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-14 03:42:00,472 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 53 states to 53 states and 69 transitions. [2024-11-14 03:42:00,474 INFO L78 Accepts]: Start accepts. Automaton has 53 states and 69 transitions. Word has length 18 [2024-11-14 03:42:00,475 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:00,475 INFO L471 AbstractCegarLoop]: Abstraction has 53 states and 69 transitions. [2024-11-14 03:42:00,475 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 03:42:00,475 INFO L276 IsEmpty]: Start isEmpty. Operand 53 states and 69 transitions. [2024-11-14 03:42:00,476 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2024-11-14 03:42:00,476 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:00,476 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:00,476 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-14 03:42:00,477 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:00,477 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:00,477 INFO L85 PathProgramCache]: Analyzing trace with hash 1812588005, now seen corresponding path program 1 times [2024-11-14 03:42:00,477 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:00,477 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1316684954] [2024-11-14 03:42:00,477 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:00,477 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:00,533 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:00,715 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 03:42:00,716 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:00,716 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1316684954] [2024-11-14 03:42:00,717 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1316684954] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:42:00,718 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 03:42:00,718 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 03:42:00,718 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [424444327] [2024-11-14 03:42:00,719 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:00,719 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 03:42:00,719 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:00,721 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 03:42:00,721 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 03:42:00,721 INFO L87 Difference]: Start difference. First operand 53 states and 69 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 03:42:00,880 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:00,884 INFO L93 Difference]: Finished difference Result 155 states and 204 transitions. [2024-11-14 03:42:00,885 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 03:42:00,886 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 21 [2024-11-14 03:42:00,886 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:00,891 INFO L225 Difference]: With dead ends: 155 [2024-11-14 03:42:00,891 INFO L226 Difference]: Without dead ends: 104 [2024-11-14 03:42:00,892 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 03:42:00,893 INFO L432 NwaCegarLoop]: 66 mSDtfsCounter, 56 mSDsluCounter, 53 mSDsCounter, 0 mSdLazyCounter, 31 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 56 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 31 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 31 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:00,894 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [56 Valid, 119 Invalid, 31 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 31 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 03:42:00,899 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 104 states. [2024-11-14 03:42:00,929 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 104 to 101. [2024-11-14 03:42:00,930 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 101 states, 64 states have (on average 1.390625) internal successors, (89), 79 states have internal predecessors, (89), 22 states have call successors, (22), 14 states have call predecessors, (22), 14 states have return successors, (22), 15 states have call predecessors, (22), 22 states have call successors, (22) [2024-11-14 03:42:00,931 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 101 states to 101 states and 133 transitions. [2024-11-14 03:42:00,932 INFO L78 Accepts]: Start accepts. Automaton has 101 states and 133 transitions. Word has length 21 [2024-11-14 03:42:00,932 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:00,932 INFO L471 AbstractCegarLoop]: Abstraction has 101 states and 133 transitions. [2024-11-14 03:42:00,932 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 03:42:00,933 INFO L276 IsEmpty]: Start isEmpty. Operand 101 states and 133 transitions. [2024-11-14 03:42:00,934 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2024-11-14 03:42:00,934 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:00,934 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:00,934 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-14 03:42:00,935 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:00,935 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:00,935 INFO L85 PathProgramCache]: Analyzing trace with hash -894662884, now seen corresponding path program 1 times [2024-11-14 03:42:00,936 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:00,936 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [44471239] [2024-11-14 03:42:00,936 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:00,936 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:00,980 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:01,223 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 03:42:01,224 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:01,224 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [44471239] [2024-11-14 03:42:01,224 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [44471239] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:42:01,225 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 03:42:01,225 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-14 03:42:01,225 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2004166606] [2024-11-14 03:42:01,225 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:01,226 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-14 03:42:01,226 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:01,228 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-14 03:42:01,228 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-14 03:42:01,228 INFO L87 Difference]: Start difference. First operand 101 states and 133 transitions. Second operand has 4 states, 4 states have (on average 5.25) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 03:42:01,500 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:01,502 INFO L93 Difference]: Finished difference Result 270 states and 363 transitions. [2024-11-14 03:42:01,503 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-14 03:42:01,503 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 5.25) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 24 [2024-11-14 03:42:01,504 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:01,510 INFO L225 Difference]: With dead ends: 270 [2024-11-14 03:42:01,510 INFO L226 Difference]: Without dead ends: 171 [2024-11-14 03:42:01,511 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-14 03:42:01,515 INFO L432 NwaCegarLoop]: 56 mSDtfsCounter, 33 mSDsluCounter, 98 mSDsCounter, 0 mSdLazyCounter, 48 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 154 SdHoareTripleChecker+Invalid, 55 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 48 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:01,516 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 154 Invalid, 55 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 48 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 03:42:01,517 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 171 states. [2024-11-14 03:42:01,557 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 171 to 170. [2024-11-14 03:42:01,558 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 170 states, 113 states have (on average 1.3185840707964602) internal successors, (149), 128 states have internal predecessors, (149), 30 states have call successors, (30), 26 states have call predecessors, (30), 26 states have return successors, (38), 27 states have call predecessors, (38), 30 states have call successors, (38) [2024-11-14 03:42:01,561 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 170 states to 170 states and 217 transitions. [2024-11-14 03:42:01,562 INFO L78 Accepts]: Start accepts. Automaton has 170 states and 217 transitions. Word has length 24 [2024-11-14 03:42:01,562 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:01,562 INFO L471 AbstractCegarLoop]: Abstraction has 170 states and 217 transitions. [2024-11-14 03:42:01,563 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 5.25) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 03:42:01,563 INFO L276 IsEmpty]: Start isEmpty. Operand 170 states and 217 transitions. [2024-11-14 03:42:01,564 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 30 [2024-11-14 03:42:01,565 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:01,565 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:01,565 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-14 03:42:01,566 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:01,566 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:01,566 INFO L85 PathProgramCache]: Analyzing trace with hash -173315705, now seen corresponding path program 1 times [2024-11-14 03:42:01,567 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:01,567 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1239163895] [2024-11-14 03:42:01,567 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:01,567 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:01,595 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:02,042 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 03:42:02,042 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:02,042 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1239163895] [2024-11-14 03:42:02,042 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1239163895] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:42:02,042 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 03:42:02,042 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-14 03:42:02,043 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1562583024] [2024-11-14 03:42:02,043 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:02,043 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-14 03:42:02,043 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:02,044 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-14 03:42:02,044 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-14 03:42:02,048 INFO L87 Difference]: Start difference. First operand 170 states and 217 transitions. Second operand has 7 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-14 03:42:02,422 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:02,423 INFO L93 Difference]: Finished difference Result 459 states and 593 transitions. [2024-11-14 03:42:02,423 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-14 03:42:02,424 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) Word has length 29 [2024-11-14 03:42:02,424 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:02,428 INFO L225 Difference]: With dead ends: 459 [2024-11-14 03:42:02,428 INFO L226 Difference]: Without dead ends: 291 [2024-11-14 03:42:02,430 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2024-11-14 03:42:02,431 INFO L432 NwaCegarLoop]: 87 mSDtfsCounter, 128 mSDsluCounter, 156 mSDsCounter, 0 mSdLazyCounter, 131 mSolverCounterSat, 28 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 243 SdHoareTripleChecker+Invalid, 159 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 28 IncrementalHoareTripleChecker+Valid, 131 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:02,432 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 243 Invalid, 159 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [28 Valid, 131 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-14 03:42:02,433 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 291 states. [2024-11-14 03:42:02,493 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 291 to 256. [2024-11-14 03:42:02,494 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 256 states, 175 states have (on average 1.32) internal successors, (231), 192 states have internal predecessors, (231), 40 states have call successors, (40), 36 states have call predecessors, (40), 40 states have return successors, (52), 40 states have call predecessors, (52), 40 states have call successors, (52) [2024-11-14 03:42:02,503 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 256 states to 256 states and 323 transitions. [2024-11-14 03:42:02,504 INFO L78 Accepts]: Start accepts. Automaton has 256 states and 323 transitions. Word has length 29 [2024-11-14 03:42:02,504 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:02,504 INFO L471 AbstractCegarLoop]: Abstraction has 256 states and 323 transitions. [2024-11-14 03:42:02,505 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-14 03:42:02,505 INFO L276 IsEmpty]: Start isEmpty. Operand 256 states and 323 transitions. [2024-11-14 03:42:02,510 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-14 03:42:02,510 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:02,510 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:02,511 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-14 03:42:02,511 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:02,511 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:02,512 INFO L85 PathProgramCache]: Analyzing trace with hash -748968780, now seen corresponding path program 1 times [2024-11-14 03:42:02,512 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:02,512 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [178500831] [2024-11-14 03:42:02,512 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:02,512 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:02,547 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:02,642 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 03:42:02,642 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:02,642 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [178500831] [2024-11-14 03:42:02,643 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [178500831] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:42:02,643 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 03:42:02,643 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 03:42:02,643 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [528592444] [2024-11-14 03:42:02,643 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:02,643 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 03:42:02,644 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:02,644 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 03:42:02,646 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 03:42:02,646 INFO L87 Difference]: Start difference. First operand 256 states and 323 transitions. Second operand has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) [2024-11-14 03:42:02,803 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:02,803 INFO L93 Difference]: Finished difference Result 439 states and 571 transitions. [2024-11-14 03:42:02,803 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 03:42:02,804 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) Word has length 32 [2024-11-14 03:42:02,804 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:02,813 INFO L225 Difference]: With dead ends: 439 [2024-11-14 03:42:02,813 INFO L226 Difference]: Without dead ends: 437 [2024-11-14 03:42:02,814 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 03:42:02,815 INFO L432 NwaCegarLoop]: 54 mSDtfsCounter, 44 mSDsluCounter, 51 mSDsCounter, 0 mSdLazyCounter, 29 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 44 SdHoareTripleChecker+Valid, 105 SdHoareTripleChecker+Invalid, 34 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 29 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:02,818 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [44 Valid, 105 Invalid, 34 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 29 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 03:42:02,820 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 437 states. [2024-11-14 03:42:02,919 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 437 to 421. [2024-11-14 03:42:02,921 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 421 states, 285 states have (on average 1.3263157894736841) internal successors, (378), 315 states have internal predecessors, (378), 68 states have call successors, (68), 60 states have call predecessors, (68), 67 states have return successors, (102), 65 states have call predecessors, (102), 68 states have call successors, (102) [2024-11-14 03:42:02,927 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 421 states to 421 states and 548 transitions. [2024-11-14 03:42:02,928 INFO L78 Accepts]: Start accepts. Automaton has 421 states and 548 transitions. Word has length 32 [2024-11-14 03:42:02,928 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:02,929 INFO L471 AbstractCegarLoop]: Abstraction has 421 states and 548 transitions. [2024-11-14 03:42:02,929 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) [2024-11-14 03:42:02,929 INFO L276 IsEmpty]: Start isEmpty. Operand 421 states and 548 transitions. [2024-11-14 03:42:02,938 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-11-14 03:42:02,938 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:02,938 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:02,938 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-14 03:42:02,938 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:02,939 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:02,939 INFO L85 PathProgramCache]: Analyzing trace with hash -1941123359, now seen corresponding path program 1 times [2024-11-14 03:42:02,939 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:02,943 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [904977748] [2024-11-14 03:42:02,943 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:02,943 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:02,975 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:03,057 INFO L134 CoverageAnalysis]: Checked inductivity of 18 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 03:42:03,057 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:03,057 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [904977748] [2024-11-14 03:42:03,057 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [904977748] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:42:03,057 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 03:42:03,058 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-14 03:42:03,058 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [21979146] [2024-11-14 03:42:03,058 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:03,058 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-14 03:42:03,058 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:03,059 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-14 03:42:03,059 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-14 03:42:03,060 INFO L87 Difference]: Start difference. First operand 421 states and 548 transitions. Second operand has 4 states, 3 states have (on average 14.0) internal successors, (42), 4 states have internal predecessors, (42), 3 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-14 03:42:03,314 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:03,314 INFO L93 Difference]: Finished difference Result 465 states and 607 transitions. [2024-11-14 03:42:03,315 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-14 03:42:03,315 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 14.0) internal successors, (42), 4 states have internal predecessors, (42), 3 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) Word has length 52 [2024-11-14 03:42:03,315 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:03,318 INFO L225 Difference]: With dead ends: 465 [2024-11-14 03:42:03,318 INFO L226 Difference]: Without dead ends: 218 [2024-11-14 03:42:03,319 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-14 03:42:03,320 INFO L432 NwaCegarLoop]: 77 mSDtfsCounter, 87 mSDsluCounter, 47 mSDsCounter, 0 mSdLazyCounter, 78 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 87 SdHoareTripleChecker+Valid, 124 SdHoareTripleChecker+Invalid, 80 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 78 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:03,320 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [87 Valid, 124 Invalid, 80 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 78 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 03:42:03,322 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 218 states. [2024-11-14 03:42:03,362 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 218 to 193. [2024-11-14 03:42:03,363 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 193 states, 130 states have (on average 1.2461538461538462) internal successors, (162), 142 states have internal predecessors, (162), 30 states have call successors, (30), 28 states have call predecessors, (30), 32 states have return successors, (46), 30 states have call predecessors, (46), 30 states have call successors, (46) [2024-11-14 03:42:03,365 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 193 states to 193 states and 238 transitions. [2024-11-14 03:42:03,366 INFO L78 Accepts]: Start accepts. Automaton has 193 states and 238 transitions. Word has length 52 [2024-11-14 03:42:03,366 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:03,366 INFO L471 AbstractCegarLoop]: Abstraction has 193 states and 238 transitions. [2024-11-14 03:42:03,366 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 14.0) internal successors, (42), 4 states have internal predecessors, (42), 3 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-14 03:42:03,367 INFO L276 IsEmpty]: Start isEmpty. Operand 193 states and 238 transitions. [2024-11-14 03:42:03,369 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2024-11-14 03:42:03,369 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:03,369 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:03,370 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-14 03:42:03,370 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:03,370 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:03,371 INFO L85 PathProgramCache]: Analyzing trace with hash -745280903, now seen corresponding path program 1 times [2024-11-14 03:42:03,371 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:03,371 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1273897864] [2024-11-14 03:42:03,371 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:03,371 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:03,407 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:03,683 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 10 proven. 11 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-11-14 03:42:03,683 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:03,683 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1273897864] [2024-11-14 03:42:03,683 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1273897864] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 03:42:03,683 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1715080904] [2024-11-14 03:42:03,683 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:03,684 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 03:42:03,684 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 03:42:03,688 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 03:42:03,691 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-14 03:42:03,847 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:03,851 INFO L255 TraceCheckSpWp]: Trace formula consists of 244 conjuncts, 4 conjuncts are in the unsatisfiable core [2024-11-14 03:42:03,860 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 03:42:04,029 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 26 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 03:42:04,029 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-14 03:42:04,029 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1715080904] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:42:04,032 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-14 03:42:04,032 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [7] total 8 [2024-11-14 03:42:04,032 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [912121153] [2024-11-14 03:42:04,032 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:04,033 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 03:42:04,033 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:04,034 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 03:42:04,035 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2024-11-14 03:42:04,035 INFO L87 Difference]: Start difference. First operand 193 states and 238 transitions. Second operand has 3 states, 3 states have (on average 15.666666666666666) internal successors, (47), 3 states have internal predecessors, (47), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2024-11-14 03:42:04,150 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:04,150 INFO L93 Difference]: Finished difference Result 330 states and 414 transitions. [2024-11-14 03:42:04,151 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 03:42:04,151 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 15.666666666666666) internal successors, (47), 3 states have internal predecessors, (47), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) Word has length 60 [2024-11-14 03:42:04,152 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:04,153 INFO L225 Difference]: With dead ends: 330 [2024-11-14 03:42:04,153 INFO L226 Difference]: Without dead ends: 173 [2024-11-14 03:42:04,158 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 67 GetRequests, 61 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 8 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2024-11-14 03:42:04,158 INFO L432 NwaCegarLoop]: 76 mSDtfsCounter, 28 mSDsluCounter, 34 mSDsCounter, 0 mSdLazyCounter, 34 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 28 SdHoareTripleChecker+Valid, 110 SdHoareTripleChecker+Invalid, 35 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 34 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:04,159 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [28 Valid, 110 Invalid, 35 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 34 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 03:42:04,160 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 173 states. [2024-11-14 03:42:04,188 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 173 to 173. [2024-11-14 03:42:04,189 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 173 states, 117 states have (on average 1.205128205128205) internal successors, (141), 128 states have internal predecessors, (141), 27 states have call successors, (27), 25 states have call predecessors, (27), 28 states have return successors, (34), 27 states have call predecessors, (34), 27 states have call successors, (34) [2024-11-14 03:42:04,192 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 173 states to 173 states and 202 transitions. [2024-11-14 03:42:04,193 INFO L78 Accepts]: Start accepts. Automaton has 173 states and 202 transitions. Word has length 60 [2024-11-14 03:42:04,193 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:04,193 INFO L471 AbstractCegarLoop]: Abstraction has 173 states and 202 transitions. [2024-11-14 03:42:04,193 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 15.666666666666666) internal successors, (47), 3 states have internal predecessors, (47), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2024-11-14 03:42:04,194 INFO L276 IsEmpty]: Start isEmpty. Operand 173 states and 202 transitions. [2024-11-14 03:42:04,195 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 68 [2024-11-14 03:42:04,195 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:04,195 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:04,227 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-14 03:42:04,403 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 03:42:04,403 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:04,404 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:04,404 INFO L85 PathProgramCache]: Analyzing trace with hash 1610780346, now seen corresponding path program 1 times [2024-11-14 03:42:04,404 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:04,404 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [111170733] [2024-11-14 03:42:04,404 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:04,404 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:04,459 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:04,728 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 18 proven. 2 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2024-11-14 03:42:04,728 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:04,728 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [111170733] [2024-11-14 03:42:04,729 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [111170733] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 03:42:04,729 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [299694032] [2024-11-14 03:42:04,729 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:04,729 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 03:42:04,729 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 03:42:04,733 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 03:42:04,735 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-14 03:42:04,875 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:04,880 INFO L255 TraceCheckSpWp]: Trace formula consists of 253 conjuncts, 9 conjuncts are in the unsatisfiable core [2024-11-14 03:42:04,883 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 03:42:05,161 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 4 proven. 2 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-14 03:42:05,161 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 03:42:05,413 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 12 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-14 03:42:05,413 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [299694032] provided 1 perfect and 1 imperfect interpolant sequences [2024-11-14 03:42:05,413 INFO L185 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2024-11-14 03:42:05,413 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [7, 5] total 11 [2024-11-14 03:42:05,414 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1039997152] [2024-11-14 03:42:05,414 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:05,414 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-14 03:42:05,414 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:05,415 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-14 03:42:05,415 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=85, Unknown=0, NotChecked=0, Total=110 [2024-11-14 03:42:05,415 INFO L87 Difference]: Start difference. First operand 173 states and 202 transitions. Second operand has 6 states, 5 states have (on average 8.2) internal successors, (41), 5 states have internal predecessors, (41), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-14 03:42:05,720 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:05,720 INFO L93 Difference]: Finished difference Result 465 states and 547 transitions. [2024-11-14 03:42:05,721 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-14 03:42:05,721 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 8.2) internal successors, (41), 5 states have internal predecessors, (41), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 67 [2024-11-14 03:42:05,722 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:05,724 INFO L225 Difference]: With dead ends: 465 [2024-11-14 03:42:05,725 INFO L226 Difference]: Without dead ends: 294 [2024-11-14 03:42:05,726 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 142 GetRequests, 130 SyntacticMatches, 1 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=35, Invalid=121, Unknown=0, NotChecked=0, Total=156 [2024-11-14 03:42:05,729 INFO L432 NwaCegarLoop]: 47 mSDtfsCounter, 31 mSDsluCounter, 164 mSDsCounter, 0 mSdLazyCounter, 96 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 32 SdHoareTripleChecker+Valid, 211 SdHoareTripleChecker+Invalid, 97 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 96 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:05,729 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [32 Valid, 211 Invalid, 97 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 96 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 03:42:05,731 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 294 states. [2024-11-14 03:42:05,783 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 294 to 285. [2024-11-14 03:42:05,784 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 285 states, 194 states have (on average 1.1804123711340206) internal successors, (229), 209 states have internal predecessors, (229), 44 states have call successors, (44), 41 states have call predecessors, (44), 46 states have return successors, (54), 44 states have call predecessors, (54), 44 states have call successors, (54) [2024-11-14 03:42:05,787 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 285 states to 285 states and 327 transitions. [2024-11-14 03:42:05,788 INFO L78 Accepts]: Start accepts. Automaton has 285 states and 327 transitions. Word has length 67 [2024-11-14 03:42:05,788 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:05,788 INFO L471 AbstractCegarLoop]: Abstraction has 285 states and 327 transitions. [2024-11-14 03:42:05,788 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 8.2) internal successors, (41), 5 states have internal predecessors, (41), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-14 03:42:05,789 INFO L276 IsEmpty]: Start isEmpty. Operand 285 states and 327 transitions. [2024-11-14 03:42:05,793 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 71 [2024-11-14 03:42:05,793 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 03:42:05,793 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:05,820 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-14 03:42:05,994 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 03:42:05,994 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 03:42:05,995 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 03:42:05,995 INFO L85 PathProgramCache]: Analyzing trace with hash -581805263, now seen corresponding path program 1 times [2024-11-14 03:42:05,995 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 03:42:05,995 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1330096897] [2024-11-14 03:42:05,996 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:05,996 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 03:42:06,024 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:06,352 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 18 proven. 2 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2024-11-14 03:42:06,352 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 03:42:06,353 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1330096897] [2024-11-14 03:42:06,353 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1330096897] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 03:42:06,353 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [516023301] [2024-11-14 03:42:06,353 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 03:42:06,353 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 03:42:06,353 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 03:42:06,358 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 03:42:06,360 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-14 03:42:06,495 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 03:42:06,502 INFO L255 TraceCheckSpWp]: Trace formula consists of 259 conjuncts, 15 conjuncts are in the unsatisfiable core [2024-11-14 03:42:06,505 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 03:42:06,689 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-11-14 03:42:06,690 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-14 03:42:06,690 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [516023301] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 03:42:06,690 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-14 03:42:06,690 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [10] total 16 [2024-11-14 03:42:06,690 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [196164310] [2024-11-14 03:42:06,690 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 03:42:06,691 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2024-11-14 03:42:06,691 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 03:42:06,691 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2024-11-14 03:42:06,691 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=35, Invalid=205, Unknown=0, NotChecked=0, Total=240 [2024-11-14 03:42:06,692 INFO L87 Difference]: Start difference. First operand 285 states and 327 transitions. Second operand has 9 states, 7 states have (on average 6.285714285714286) internal successors, (44), 7 states have internal predecessors, (44), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2024-11-14 03:42:07,073 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 03:42:07,074 INFO L93 Difference]: Finished difference Result 521 states and 609 transitions. [2024-11-14 03:42:07,074 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-14 03:42:07,075 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 7 states have (on average 6.285714285714286) internal successors, (44), 7 states have internal predecessors, (44), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 70 [2024-11-14 03:42:07,075 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 03:42:07,076 INFO L225 Difference]: With dead ends: 521 [2024-11-14 03:42:07,076 INFO L226 Difference]: Without dead ends: 0 [2024-11-14 03:42:07,078 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 84 GetRequests, 66 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 26 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=57, Invalid=323, Unknown=0, NotChecked=0, Total=380 [2024-11-14 03:42:07,078 INFO L432 NwaCegarLoop]: 43 mSDtfsCounter, 35 mSDsluCounter, 196 mSDsCounter, 0 mSdLazyCounter, 171 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 37 SdHoareTripleChecker+Valid, 239 SdHoareTripleChecker+Invalid, 173 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 171 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 03:42:07,079 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [37 Valid, 239 Invalid, 173 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 171 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 03:42:07,079 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-14 03:42:07,079 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-14 03:42:07,080 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 03:42:07,080 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-14 03:42:07,080 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 70 [2024-11-14 03:42:07,081 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 03:42:07,081 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-14 03:42:07,081 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 7 states have (on average 6.285714285714286) internal successors, (44), 7 states have internal predecessors, (44), 2 states have call successors, (9), 2 states have call predecessors, (9), 4 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2024-11-14 03:42:07,081 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-14 03:42:07,081 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-14 03:42:07,085 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-14 03:42:07,111 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-14 03:42:07,289 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-14 03:42:07,293 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 03:42:07,296 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-14 03:42:12,051 INFO L173 ceAbstractionStarter]: Computing trace abstraction results [2024-11-14 03:42:12,078 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (let ((.cse0 (= 1 ~systemActive~0))) (and (or (<= 1 ~pumpRunning~0) (not .cse0) (< |old(~pumpRunning~0)| 1)) (or .cse0 (and (not (= ~waterLevel~0 1)) (not (= 0 ~systemActive~0)))))) Eliminated clause: (or (= 1 ~systemActive~0) (and (not (= ~waterLevel~0 1)) (not (= 0 ~systemActive~0)))) [2024-11-14 03:42:12,095 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse1 (= ~methAndRunningLastTime~0 0)) (.cse0 (= 1 ~systemActive~0))) (and (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 0) (not .cse0) (not .cse1)) (let ((.cse2 (= ~pumpRunning~0 0))) (or (and (<= 1 ~pumpRunning~0) .cse0) (and .cse2 .cse1 (= 0 ~systemActive~0)) (and .cse2 .cse1 .cse0))))) Eliminated clause: (let ((.cse1 (= ~pumpRunning~0 0)) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse0 (= 1 ~systemActive~0))) (or (and (<= 1 ~pumpRunning~0) .cse0) (and .cse1 .cse2 (= 0 ~systemActive~0)) (and .cse1 .cse2 .cse0))) [2024-11-14 03:42:12,109 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse3 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (= |old(~methAndRunningLastTime~0)| 0)) (.cse1 (not .cse3)) (.cse4 (= 0 ~systemActive~0))) (and (or (not .cse0) (= ~methAndRunningLastTime~0 0)) (or (<= 1 ~pumpRunning~0) (< |old(~pumpRunning~0)| 1)) (or .cse1 (= ~pumpRunning~0 0)) (let ((.cse2 (= 1 ~systemActive~0))) (or (and .cse2 (<= 1 |old(~pumpRunning~0)|)) (and .cse0 .cse2 .cse3) (and .cse3 .cse4))) (or .cse1 (not (= |old(~waterLevel~0)| 1)) .cse4 (= ~waterLevel~0 1))))) Eliminated clause: (exists ((|old(~methAndRunningLastTime~0)| Int) (|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse3 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (= |old(~methAndRunningLastTime~0)| 0)) (.cse1 (not .cse3)) (.cse4 (= 0 ~systemActive~0))) (and (or (not .cse0) (= ~methAndRunningLastTime~0 0)) (or .cse1 (= ~pumpRunning~0 0)) (or (< 0 ~pumpRunning~0) (< |old(~pumpRunning~0)| 1)) (let ((.cse2 (= 1 ~systemActive~0))) (or (and .cse2 (<= 1 |old(~pumpRunning~0)|)) (and .cse0 .cse2 .cse3) (and .cse3 .cse4))) (or .cse1 (not (= |old(~waterLevel~0)| 1)) .cse4 (= ~waterLevel~0 1)))))) [2024-11-14 03:42:12,129 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 03:42:12,150 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse1 (= |old(~pumpRunning~0)| 0))) (and (let ((.cse0 (= 1 ~systemActive~0))) (or (and (= ~methaneLevelCritical~0 0) .cse0 (<= 1 |old(~pumpRunning~0)|)) (and (= ~methAndRunningLastTime~0 0) .cse0 .cse1))) (or (<= 1 ~pumpRunning~0) (< |old(~pumpRunning~0)| 1)) (or (not .cse1) (= ~pumpRunning~0 0)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse1 (= |old(~pumpRunning~0)| 0))) (and (let ((.cse0 (= 1 ~systemActive~0))) (or (and (= ~methaneLevelCritical~0 0) .cse0 (<= 1 |old(~pumpRunning~0)|)) (and (= ~methAndRunningLastTime~0 0) .cse0 .cse1))) (or (not .cse1) (= ~pumpRunning~0 0)) (or (< 0 ~pumpRunning~0) (< |old(~pumpRunning~0)| 1))))) [2024-11-14 03:42:12,157 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 03:42:12,165 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 14.11 03:42:12 BoogieIcfgContainer [2024-11-14 03:42:12,165 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-14 03:42:12,166 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-14 03:42:12,166 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-14 03:42:12,166 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-14 03:42:12,169 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 03:41:59" (3/4) ... [2024-11-14 03:42:12,171 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-14 03:42:12,177 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-14 03:42:12,177 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-14 03:42:12,177 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-14 03:42:12,177 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-14 03:42:12,177 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-14 03:42:12,177 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-14 03:42:12,178 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 03:42:12,178 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-14 03:42:12,190 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 40 nodes and edges [2024-11-14 03:42:12,190 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 11 nodes and edges [2024-11-14 03:42:12,191 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-14 03:42:12,192 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 03:42:12,192 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 03:42:12,231 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((\old(methAndRunningLastTime) != 0) || (methAndRunningLastTime == 0)) && ((1 <= pumpRunning) || (\old(pumpRunning) < 1))) && ((\old(pumpRunning) != 0) || (pumpRunning == 0))) && ((((1 == systemActive) && (1 <= \old(pumpRunning))) || (((\old(methAndRunningLastTime) == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0))) || ((\old(pumpRunning) == 0) && (0 == systemActive)))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || (0 == systemActive)) || (waterLevel == 1))) [2024-11-14 03:42:12,280 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((\old(methAndRunningLastTime) != 0) || (methAndRunningLastTime == 0)) && ((1 <= pumpRunning) || (\old(pumpRunning) < 1))) && ((\old(pumpRunning) != 0) || (pumpRunning == 0))) && ((((1 == systemActive) && (1 <= \old(pumpRunning))) || (((\old(methAndRunningLastTime) == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0))) || ((\old(pumpRunning) == 0) && (0 == systemActive)))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || (0 == systemActive)) || (waterLevel == 1))) [2024-11-14 03:42:12,340 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/witness.graphml [2024-11-14 03:42:12,340 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/witness.yml [2024-11-14 03:42:12,341 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-14 03:42:12,342 INFO L158 Benchmark]: Toolchain (without parser) took 14637.38ms. Allocated memory was 117.4MB in the beginning and 352.3MB in the end (delta: 234.9MB). Free memory was 93.4MB in the beginning and 241.8MB in the end (delta: -148.4MB). Peak memory consumption was 82.7MB. Max. memory is 16.1GB. [2024-11-14 03:42:12,342 INFO L158 Benchmark]: CDTParser took 0.65ms. Allocated memory is still 167.8MB. Free memory is still 105.3MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 03:42:12,342 INFO L158 Benchmark]: CACSL2BoogieTranslator took 720.59ms. Allocated memory is still 117.4MB. Free memory was 93.1MB in the beginning and 74.6MB in the end (delta: 18.5MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-11-14 03:42:12,343 INFO L158 Benchmark]: Boogie Procedure Inliner took 66.92ms. Allocated memory is still 117.4MB. Free memory was 74.6MB in the beginning and 72.7MB in the end (delta: 1.9MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 03:42:12,343 INFO L158 Benchmark]: Boogie Preprocessor took 28.23ms. Allocated memory is still 117.4MB. Free memory was 72.7MB in the beginning and 71.5MB in the end (delta: 1.2MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 03:42:12,343 INFO L158 Benchmark]: RCFGBuilder took 853.22ms. Allocated memory is still 117.4MB. Free memory was 71.5MB in the beginning and 46.5MB in the end (delta: 25.1MB). Peak memory consumption was 25.2MB. Max. memory is 16.1GB. [2024-11-14 03:42:12,344 INFO L158 Benchmark]: TraceAbstraction took 12778.65ms. Allocated memory was 117.4MB in the beginning and 352.3MB in the end (delta: 234.9MB). Free memory was 45.7MB in the beginning and 248.9MB in the end (delta: -203.2MB). Peak memory consumption was 159.2MB. Max. memory is 16.1GB. [2024-11-14 03:42:12,344 INFO L158 Benchmark]: Witness Printer took 174.61ms. Allocated memory is still 352.3MB. Free memory was 248.9MB in the beginning and 241.8MB in the end (delta: 7.0MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-14 03:42:12,347 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.65ms. Allocated memory is still 167.8MB. Free memory is still 105.3MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 720.59ms. Allocated memory is still 117.4MB. Free memory was 93.1MB in the beginning and 74.6MB in the end (delta: 18.5MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 66.92ms. Allocated memory is still 117.4MB. Free memory was 74.6MB in the beginning and 72.7MB in the end (delta: 1.9MB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 28.23ms. Allocated memory is still 117.4MB. Free memory was 72.7MB in the beginning and 71.5MB in the end (delta: 1.2MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 853.22ms. Allocated memory is still 117.4MB. Free memory was 71.5MB in the beginning and 46.5MB in the end (delta: 25.1MB). Peak memory consumption was 25.2MB. Max. memory is 16.1GB. * TraceAbstraction took 12778.65ms. Allocated memory was 117.4MB in the beginning and 352.3MB in the end (delta: 234.9MB). Free memory was 45.7MB in the beginning and 248.9MB in the end (delta: -203.2MB). Peak memory consumption was 159.2MB. Max. memory is 16.1GB. * Witness Printer took 174.61ms. Allocated memory is still 352.3MB. Free memory was 248.9MB in the beginning and 241.8MB in the end (delta: 7.0MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] - GenericResultAtLocation [Line: 150]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [150] - GenericResultAtLocation [Line: 254]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [254] - GenericResultAtLocation [Line: 295]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [295] - GenericResultAtLocation [Line: 304]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [304] - GenericResultAtLocation [Line: 372]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [372] - GenericResultAtLocation [Line: 567]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [567] - GenericResultAtLocation [Line: 602]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [602] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 300]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 66 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 7.8s, OverallIterations: 10, TraceHistogramMax: 3, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 2.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 463 SdHoareTripleChecker+Valid, 1.5s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 456 mSDsluCounter, 1467 SdHoareTripleChecker+Invalid, 1.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 837 mSDsCounter, 47 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 660 IncrementalHoareTripleChecker+Invalid, 707 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 47 mSolverCounterUnsat, 630 mSDtfsCounter, 660 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 324 GetRequests, 274 SyntacticMatches, 1 SemanticMatches, 49 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 48 ImplicationChecksByTransitivity, 0.7s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=421occurred in iteration=6, InterpolantAutomatonStates: 47, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.5s AutomataMinimizationTime, 10 MinimizatonAttempts, 89 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 3.1s InterpolantComputationTime, 587 NumberOfCodeBlocks, 587 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 640 ConstructedInterpolants, 0 QuantifiedInterpolants, 1431 SizeOfPredicates, 3 NumberOfNonLiveVariables, 756 ConjunctsInSsa, 28 ConjunctsInUnsatCore, 14 InterpolantComputations, 10 PerfectInterpolantSequences, 193/210 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 163]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 316]: Loop Invariant Derived loop invariant: (((((1 <= pumpRunning) && (1 == systemActive)) && (splverifierCounter == 0)) || ((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (splverifierCounter == 0)) && (0 == systemActive))) - InvariantResult [Line: 315]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 378]: Location Invariant Derived location invariant: ((((((\old(methAndRunningLastTime) != 0) || (methAndRunningLastTime == 0)) && ((1 <= pumpRunning) || (\old(pumpRunning) < 1))) && ((\old(pumpRunning) != 0) || (pumpRunning == 0))) && ((((1 == systemActive) && (1 <= \old(pumpRunning))) || (((\old(methAndRunningLastTime) == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0))) || ((\old(pumpRunning) == 0) && (0 == systemActive)))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || (0 == systemActive)) || (waterLevel == 1))) - ProcedureContractResult [Line: 469]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((1 == systemActive) || ((waterLevel != 1) && (0 != systemActive))) Ensures: (((pumpRunning == 0) && ((1 == systemActive) || ((waterLevel != 1) && (0 != systemActive)))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 402]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((((1 <= pumpRunning) && (methaneLevelCritical == 0)) && (1 == systemActive)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive))) Ensures: (((((1 <= pumpRunning) && (methaneLevelCritical == 0)) && (1 == systemActive)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive))) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 83]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((((1 <= pumpRunning) && (1 == systemActive)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (0 == systemActive))) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive))) Ensures: (((((1 <= pumpRunning) && (1 == systemActive)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (0 == systemActive))) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive))) && ((((((waterLevel == \old(waterLevel)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 378]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: (((((((((methAndRunningLastTime == 0) || (methaneLevelCritical != 0)) && ((((\old(pumpRunning) != 0) || (1 != systemActive)) || ((1 <= pumpRunning) && (waterLevel != 1))) || ((pumpRunning == 0) && (methAndRunningLastTime == 0)))) && ((0 != systemActive) || ((pumpRunning == 0) && (methAndRunningLastTime == 0)))) && ((((1 == systemActive) && (1 <= \old(pumpRunning))) || (((\old(methAndRunningLastTime) == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0))) || ((\old(pumpRunning) == 0) && (0 == systemActive)))) && (((((1 <= pumpRunning) && (methAndRunningLastTime == 0)) && (methaneLevelCritical == 0)) || (\old(pumpRunning) < 1)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive)))) && ((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || (0 == systemActive)) || (waterLevel == 1))) && (((((1 <= pumpRunning) && (methAndRunningLastTime == 0)) || (\old(methAndRunningLastTime) != 0)) || (methaneLevelCritical != 0)) || (\old(pumpRunning) < 1))) && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 153]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 95]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: ((((1 <= pumpRunning) && (1 == systemActive)) || ((pumpRunning == 0) && (1 == systemActive))) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: ((((((1 <= pumpRunning) && (1 == systemActive)) || ((pumpRunning == 0) && (1 == systemActive))) || ((pumpRunning == 0) && (0 == systemActive))) && ((1 != systemActive) || (\result == methaneLevelCritical))) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 410]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Ensures: ((((((((methaneLevelCritical == 0) && (1 == systemActive)) && (1 <= \old(pumpRunning))) || (((methAndRunningLastTime == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0))) && ((0 < pumpRunning) || (pumpRunning == 0))) && (((waterLevel != 1) || (\old(pumpRunning) != 0)) || (pumpRunning == 0))) && ((0 < pumpRunning) || (\old(pumpRunning) < 1))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 71]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: ((((1 <= pumpRunning) && (1 == systemActive)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (0 == systemActive))) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive))) Ensures: (((((1 <= pumpRunning) && (1 == systemActive)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (0 == systemActive))) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive))) && ((((((methaneLevelCritical == \old(methaneLevelCritical)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head)))) RESULT: Ultimate proved your program to be correct! [2024-11-14 03:42:12,397 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2ab7e29e-d4a1-4626-b607-e8b3748e180f/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE