./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec2_product61.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 826ab2ba Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec2_product61.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 9e3065d54459a1af9237785e443ea1bc130aed8710eaae31e283e0fdf62db72d --- Real Ultimate output --- This is Ultimate 0.3.0-dev-826ab2b [2024-11-14 05:11:52,918 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-14 05:11:53,039 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-14 05:11:53,050 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-14 05:11:53,051 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-14 05:11:53,100 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-14 05:11:53,101 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-14 05:11:53,101 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-14 05:11:53,101 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-14 05:11:53,102 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-14 05:11:53,104 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-14 05:11:53,104 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-14 05:11:53,104 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-14 05:11:53,104 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-14 05:11:53,104 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-14 05:11:53,104 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-14 05:11:53,105 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-14 05:11:53,105 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-14 05:11:53,105 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-14 05:11:53,105 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-14 05:11:53,105 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-14 05:11:53,105 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-14 05:11:53,106 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-14 05:11:53,106 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-14 05:11:53,106 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-14 05:11:53,106 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-14 05:11:53,106 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-14 05:11:53,107 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-14 05:11:53,109 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-14 05:11:53,109 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-14 05:11:53,109 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-14 05:11:53,109 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-14 05:11:53,109 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-14 05:11:53,109 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-14 05:11:53,110 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-14 05:11:53,110 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-14 05:11:53,110 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-14 05:11:53,110 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-14 05:11:53,110 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 05:11:53,111 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-14 05:11:53,111 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-14 05:11:53,111 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-14 05:11:53,111 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-14 05:11:53,111 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-14 05:11:53,112 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-14 05:11:53,112 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-14 05:11:53,112 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-14 05:11:53,112 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 9e3065d54459a1af9237785e443ea1bc130aed8710eaae31e283e0fdf62db72d [2024-11-14 05:11:53,499 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-14 05:11:53,514 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-14 05:11:53,518 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-14 05:11:53,521 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-14 05:11:53,521 INFO L274 PluginConnector]: CDTParser initialized [2024-11-14 05:11:53,524 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/../../sv-benchmarks/c/product-lines/minepump_spec2_product61.cil.c Unable to find full path for "g++" [2024-11-14 05:11:55,983 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-14 05:11:56,361 INFO L384 CDTParser]: Found 1 translation units. [2024-11-14 05:11:56,362 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/sv-benchmarks/c/product-lines/minepump_spec2_product61.cil.c [2024-11-14 05:11:56,377 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/data/253089bfb/1d05cf430f204007907c738f973f07b1/FLAG30f4913f8 [2024-11-14 05:11:56,398 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/data/253089bfb/1d05cf430f204007907c738f973f07b1 [2024-11-14 05:11:56,401 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-14 05:11:56,404 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-14 05:11:56,407 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-14 05:11:56,408 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-14 05:11:56,418 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-14 05:11:56,419 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 05:11:56" (1/1) ... [2024-11-14 05:11:56,421 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@29aefaaa and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:56, skipping insertion in model container [2024-11-14 05:11:56,421 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 05:11:56" (1/1) ... [2024-11-14 05:11:56,491 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-14 05:11:56,944 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/sv-benchmarks/c/product-lines/minepump_spec2_product61.cil.c[13371,13384] [2024-11-14 05:11:57,022 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 05:11:57,045 INFO L200 MainTranslator]: Completed pre-run [2024-11-14 05:11:57,058 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [49] [2024-11-14 05:11:57,061 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [91] [2024-11-14 05:11:57,062 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [196] [2024-11-14 05:11:57,062 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [562] [2024-11-14 05:11:57,062 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [571] [2024-11-14 05:11:57,063 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [606] [2024-11-14 05:11:57,063 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [671] [2024-11-14 05:11:57,064 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [779] [2024-11-14 05:11:57,173 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/sv-benchmarks/c/product-lines/minepump_spec2_product61.cil.c[13371,13384] [2024-11-14 05:11:57,224 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 05:11:57,267 INFO L204 MainTranslator]: Completed translation [2024-11-14 05:11:57,268 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57 WrapperNode [2024-11-14 05:11:57,268 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-14 05:11:57,269 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-14 05:11:57,269 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-14 05:11:57,271 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-14 05:11:57,281 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,300 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,339 INFO L138 Inliner]: procedures = 58, calls = 105, calls flagged for inlining = 23, calls inlined = 20, statements flattened = 222 [2024-11-14 05:11:57,339 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-14 05:11:57,340 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-14 05:11:57,340 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-14 05:11:57,340 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-14 05:11:57,357 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,358 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,362 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,362 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,370 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,376 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,378 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,380 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,385 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-14 05:11:57,387 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-14 05:11:57,387 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-14 05:11:57,387 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-14 05:11:57,389 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (1/1) ... [2024-11-14 05:11:57,397 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 05:11:57,424 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 05:11:57,441 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-14 05:11:57,445 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-14 05:11:57,489 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-14 05:11:57,490 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-14 05:11:57,490 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-14 05:11:57,490 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-14 05:11:57,490 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-14 05:11:57,490 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-14 05:11:57,490 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-14 05:11:57,490 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-14 05:11:57,490 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-14 05:11:57,491 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 05:11:57,491 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 05:11:57,491 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-14 05:11:57,491 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-14 05:11:57,491 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-14 05:11:57,491 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-14 05:11:57,491 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-14 05:11:57,491 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-14 05:11:57,491 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-14 05:11:57,492 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-14 05:11:57,492 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-14 05:11:57,492 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-14 05:11:57,492 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-14 05:11:57,492 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-14 05:11:57,492 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-14 05:11:57,600 INFO L238 CfgBuilder]: Building ICFG [2024-11-14 05:11:57,604 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-14 05:11:58,167 INFO L? ?]: Removed 50 outVars from TransFormulas that were not future-live. [2024-11-14 05:11:58,171 INFO L287 CfgBuilder]: Performing block encoding [2024-11-14 05:11:58,369 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-14 05:11:58,370 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-14 05:11:58,370 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 05:11:58 BoogieIcfgContainer [2024-11-14 05:11:58,370 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-14 05:11:58,373 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-14 05:11:58,373 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-14 05:11:58,380 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-14 05:11:58,380 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 14.11 05:11:56" (1/3) ... [2024-11-14 05:11:58,381 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@765edb7e and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 05:11:58, skipping insertion in model container [2024-11-14 05:11:58,381 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:11:57" (2/3) ... [2024-11-14 05:11:58,381 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@765edb7e and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 05:11:58, skipping insertion in model container [2024-11-14 05:11:58,382 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 05:11:58" (3/3) ... [2024-11-14 05:11:58,383 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product61.cil.c [2024-11-14 05:11:58,405 INFO L217 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-14 05:11:58,408 INFO L154 ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec2_product61.cil.c that has 11 procedures, 75 locations, 1 initial locations, 2 loop locations, and 1 error locations. [2024-11-14 05:11:58,490 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-14 05:11:58,511 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@69389937, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-14 05:11:58,511 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-14 05:11:58,518 INFO L276 IsEmpty]: Start isEmpty. Operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2024-11-14 05:11:58,529 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-11-14 05:11:58,530 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:11:58,531 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:11:58,531 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:11:58,538 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:11:58,538 INFO L85 PathProgramCache]: Analyzing trace with hash 1285337439, now seen corresponding path program 1 times [2024-11-14 05:11:58,550 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:11:58,551 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [299444910] [2024-11-14 05:11:58,552 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:11:58,552 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:11:58,696 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:11:58,825 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 05:11:58,828 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:11:58,828 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [299444910] [2024-11-14 05:11:58,832 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [299444910] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:11:58,833 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 05:11:58,833 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-14 05:11:58,835 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1556722131] [2024-11-14 05:11:58,836 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:11:58,843 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-14 05:11:58,844 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:11:58,877 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-14 05:11:58,879 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 05:11:58,883 INFO L87 Difference]: Start difference. First operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 05:11:59,032 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:11:59,034 INFO L93 Difference]: Finished difference Result 148 states and 199 transitions. [2024-11-14 05:11:59,037 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-14 05:11:59,040 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-11-14 05:11:59,041 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:11:59,056 INFO L225 Difference]: With dead ends: 148 [2024-11-14 05:11:59,057 INFO L226 Difference]: Without dead ends: 70 [2024-11-14 05:11:59,064 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 05:11:59,069 INFO L432 NwaCegarLoop]: 78 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 78 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 05:11:59,070 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 78 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 05:11:59,095 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2024-11-14 05:11:59,133 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 70. [2024-11-14 05:11:59,137 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 70 states, 42 states have (on average 1.3095238095238095) internal successors, (55), 51 states have internal predecessors, (55), 18 states have call successors, (18), 10 states have call predecessors, (18), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2024-11-14 05:11:59,149 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 70 states to 70 states and 90 transitions. [2024-11-14 05:11:59,154 INFO L78 Accepts]: Start accepts. Automaton has 70 states and 90 transitions. Word has length 17 [2024-11-14 05:11:59,157 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:11:59,157 INFO L471 AbstractCegarLoop]: Abstraction has 70 states and 90 transitions. [2024-11-14 05:11:59,158 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 05:11:59,158 INFO L276 IsEmpty]: Start isEmpty. Operand 70 states and 90 transitions. [2024-11-14 05:11:59,161 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-11-14 05:11:59,161 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:11:59,161 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:11:59,161 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-14 05:11:59,164 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:11:59,166 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:11:59,167 INFO L85 PathProgramCache]: Analyzing trace with hash -590318710, now seen corresponding path program 1 times [2024-11-14 05:11:59,167 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:11:59,167 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2104807640] [2024-11-14 05:11:59,167 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:11:59,168 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:11:59,219 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:11:59,433 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 05:11:59,434 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:11:59,434 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2104807640] [2024-11-14 05:11:59,434 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2104807640] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:11:59,434 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 05:11:59,434 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 05:11:59,435 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1565050298] [2024-11-14 05:11:59,435 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:11:59,437 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 05:11:59,437 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:11:59,438 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 05:11:59,439 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 05:11:59,440 INFO L87 Difference]: Start difference. First operand 70 states and 90 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 05:11:59,552 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:11:59,553 INFO L93 Difference]: Finished difference Result 117 states and 151 transitions. [2024-11-14 05:11:59,553 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 05:11:59,554 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2024-11-14 05:11:59,555 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:11:59,556 INFO L225 Difference]: With dead ends: 117 [2024-11-14 05:11:59,558 INFO L226 Difference]: Without dead ends: 62 [2024-11-14 05:11:59,559 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 05:11:59,560 INFO L432 NwaCegarLoop]: 64 mSDtfsCounter, 7 mSDsluCounter, 55 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 05:11:59,563 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 119 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 05:11:59,565 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-11-14 05:11:59,581 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 62. [2024-11-14 05:11:59,583 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 37 states have (on average 1.3243243243243243) internal successors, (49), 46 states have internal predecessors, (49), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-14 05:11:59,585 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 79 transitions. [2024-11-14 05:11:59,588 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 79 transitions. Word has length 18 [2024-11-14 05:11:59,589 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:11:59,589 INFO L471 AbstractCegarLoop]: Abstraction has 62 states and 79 transitions. [2024-11-14 05:11:59,589 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 05:11:59,589 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 79 transitions. [2024-11-14 05:11:59,590 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-11-14 05:11:59,590 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:11:59,591 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:11:59,591 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-14 05:11:59,591 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:11:59,591 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:11:59,592 INFO L85 PathProgramCache]: Analyzing trace with hash 641617807, now seen corresponding path program 1 times [2024-11-14 05:11:59,592 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:11:59,593 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [784375809] [2024-11-14 05:11:59,593 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:11:59,593 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:11:59,640 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:11:59,767 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 05:11:59,768 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:11:59,768 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [784375809] [2024-11-14 05:11:59,768 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [784375809] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:11:59,768 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 05:11:59,768 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 05:11:59,768 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1029581175] [2024-11-14 05:11:59,769 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:11:59,769 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 05:11:59,769 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:11:59,770 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 05:11:59,770 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 05:11:59,770 INFO L87 Difference]: Start difference. First operand 62 states and 79 transitions. Second operand has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 05:11:59,877 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:11:59,878 INFO L93 Difference]: Finished difference Result 122 states and 157 transitions. [2024-11-14 05:11:59,878 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 05:11:59,878 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2024-11-14 05:11:59,879 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:11:59,880 INFO L225 Difference]: With dead ends: 122 [2024-11-14 05:11:59,880 INFO L226 Difference]: Without dead ends: 62 [2024-11-14 05:11:59,881 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 05:11:59,885 INFO L432 NwaCegarLoop]: 62 mSDtfsCounter, 68 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 16 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 68 SdHoareTripleChecker+Valid, 62 SdHoareTripleChecker+Invalid, 16 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 16 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 05:11:59,886 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [68 Valid, 62 Invalid, 16 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 16 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 05:11:59,888 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-11-14 05:11:59,939 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 62. [2024-11-14 05:11:59,939 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 37 states have (on average 1.2972972972972974) internal successors, (48), 46 states have internal predecessors, (48), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-14 05:11:59,943 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 78 transitions. [2024-11-14 05:11:59,943 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 78 transitions. Word has length 20 [2024-11-14 05:11:59,944 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:11:59,944 INFO L471 AbstractCegarLoop]: Abstraction has 62 states and 78 transitions. [2024-11-14 05:11:59,944 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 05:11:59,944 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 78 transitions. [2024-11-14 05:11:59,945 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2024-11-14 05:11:59,946 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:11:59,947 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:11:59,947 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-14 05:11:59,948 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:11:59,949 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:11:59,949 INFO L85 PathProgramCache]: Analyzing trace with hash 1030017057, now seen corresponding path program 1 times [2024-11-14 05:11:59,949 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:11:59,950 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1874600789] [2024-11-14 05:11:59,950 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:11:59,950 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:12:00,004 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:00,243 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 05:12:00,244 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:12:00,245 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1874600789] [2024-11-14 05:12:00,245 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1874600789] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:12:00,245 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 05:12:00,245 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-14 05:12:00,245 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [261400687] [2024-11-14 05:12:00,246 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:12:00,247 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-14 05:12:00,247 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:12:00,248 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-14 05:12:00,249 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-14 05:12:00,250 INFO L87 Difference]: Start difference. First operand 62 states and 78 transitions. Second operand has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-14 05:12:00,854 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:12:00,855 INFO L93 Difference]: Finished difference Result 195 states and 244 transitions. [2024-11-14 05:12:00,856 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-14 05:12:00,856 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 31 [2024-11-14 05:12:00,856 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:12:00,858 INFO L225 Difference]: With dead ends: 195 [2024-11-14 05:12:00,858 INFO L226 Difference]: Without dead ends: 135 [2024-11-14 05:12:00,859 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-14 05:12:00,863 INFO L432 NwaCegarLoop]: 77 mSDtfsCounter, 134 mSDsluCounter, 103 mSDsCounter, 0 mSdLazyCounter, 149 mSolverCounterSat, 76 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 180 SdHoareTripleChecker+Invalid, 225 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 76 IncrementalHoareTripleChecker+Valid, 149 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-14 05:12:00,867 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 180 Invalid, 225 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [76 Valid, 149 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-14 05:12:00,868 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 135 states. [2024-11-14 05:12:00,902 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 135 to 129. [2024-11-14 05:12:00,902 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 129 states, 83 states have (on average 1.2409638554216869) internal successors, (103), 91 states have internal predecessors, (103), 22 states have call successors, (22), 18 states have call predecessors, (22), 23 states have return successors, (29), 24 states have call predecessors, (29), 22 states have call successors, (29) [2024-11-14 05:12:00,905 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 129 states to 129 states and 154 transitions. [2024-11-14 05:12:00,905 INFO L78 Accepts]: Start accepts. Automaton has 129 states and 154 transitions. Word has length 31 [2024-11-14 05:12:00,905 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:12:00,906 INFO L471 AbstractCegarLoop]: Abstraction has 129 states and 154 transitions. [2024-11-14 05:12:00,906 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-14 05:12:00,906 INFO L276 IsEmpty]: Start isEmpty. Operand 129 states and 154 transitions. [2024-11-14 05:12:00,910 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 37 [2024-11-14 05:12:00,911 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:12:00,911 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:12:00,911 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-14 05:12:00,911 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:12:00,912 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:12:00,912 INFO L85 PathProgramCache]: Analyzing trace with hash 439637374, now seen corresponding path program 1 times [2024-11-14 05:12:00,912 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:12:00,912 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1094361422] [2024-11-14 05:12:00,912 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:00,912 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:12:00,956 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:01,256 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 05:12:01,258 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:12:01,258 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1094361422] [2024-11-14 05:12:01,258 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1094361422] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:12:01,258 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 05:12:01,258 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-14 05:12:01,259 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [701747315] [2024-11-14 05:12:01,259 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:12:01,259 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-14 05:12:01,259 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:12:01,260 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-14 05:12:01,260 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-14 05:12:01,261 INFO L87 Difference]: Start difference. First operand 129 states and 154 transitions. Second operand has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-14 05:12:01,647 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:12:01,647 INFO L93 Difference]: Finished difference Result 256 states and 306 transitions. [2024-11-14 05:12:01,647 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-14 05:12:01,648 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 36 [2024-11-14 05:12:01,648 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:12:01,650 INFO L225 Difference]: With dead ends: 256 [2024-11-14 05:12:01,650 INFO L226 Difference]: Without dead ends: 129 [2024-11-14 05:12:01,652 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 13 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=22, Invalid=34, Unknown=0, NotChecked=0, Total=56 [2024-11-14 05:12:01,653 INFO L432 NwaCegarLoop]: 52 mSDtfsCounter, 78 mSDsluCounter, 113 mSDsCounter, 0 mSdLazyCounter, 137 mSolverCounterSat, 36 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 84 SdHoareTripleChecker+Valid, 165 SdHoareTripleChecker+Invalid, 173 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 36 IncrementalHoareTripleChecker+Valid, 137 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-14 05:12:01,653 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [84 Valid, 165 Invalid, 173 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [36 Valid, 137 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-14 05:12:01,654 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 129 states. [2024-11-14 05:12:01,682 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 129 to 127. [2024-11-14 05:12:01,682 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 127 states, 81 states have (on average 1.1975308641975309) internal successors, (97), 89 states have internal predecessors, (97), 22 states have call successors, (22), 18 states have call predecessors, (22), 23 states have return successors, (29), 24 states have call predecessors, (29), 22 states have call successors, (29) [2024-11-14 05:12:01,684 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 127 states to 127 states and 148 transitions. [2024-11-14 05:12:01,684 INFO L78 Accepts]: Start accepts. Automaton has 127 states and 148 transitions. Word has length 36 [2024-11-14 05:12:01,685 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:12:01,685 INFO L471 AbstractCegarLoop]: Abstraction has 127 states and 148 transitions. [2024-11-14 05:12:01,685 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-14 05:12:01,685 INFO L276 IsEmpty]: Start isEmpty. Operand 127 states and 148 transitions. [2024-11-14 05:12:01,686 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-11-14 05:12:01,687 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:12:01,687 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:12:01,687 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-14 05:12:01,687 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:12:01,688 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:12:01,688 INFO L85 PathProgramCache]: Analyzing trace with hash 2045104803, now seen corresponding path program 1 times [2024-11-14 05:12:01,688 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:12:01,688 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1114158644] [2024-11-14 05:12:01,688 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:01,688 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:12:01,714 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:01,800 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 05:12:01,800 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:12:01,800 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1114158644] [2024-11-14 05:12:01,801 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1114158644] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:12:01,801 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 05:12:01,801 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 05:12:01,801 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [466087231] [2024-11-14 05:12:01,801 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:12:01,801 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 05:12:01,801 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:12:01,802 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 05:12:01,802 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 05:12:01,802 INFO L87 Difference]: Start difference. First operand 127 states and 148 transitions. Second operand has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 3 states have internal predecessors, (29), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-14 05:12:01,947 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:12:01,948 INFO L93 Difference]: Finished difference Result 232 states and 277 transitions. [2024-11-14 05:12:01,948 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 05:12:01,949 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 3 states have internal predecessors, (29), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 41 [2024-11-14 05:12:01,949 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:12:01,952 INFO L225 Difference]: With dead ends: 232 [2024-11-14 05:12:01,952 INFO L226 Difference]: Without dead ends: 230 [2024-11-14 05:12:01,953 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 05:12:01,954 INFO L432 NwaCegarLoop]: 62 mSDtfsCounter, 55 mSDsluCounter, 59 mSDsCounter, 0 mSdLazyCounter, 31 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 55 SdHoareTripleChecker+Valid, 121 SdHoareTripleChecker+Invalid, 36 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 31 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 05:12:01,955 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [55 Valid, 121 Invalid, 36 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 31 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 05:12:01,956 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 230 states. [2024-11-14 05:12:02,035 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 230 to 224. [2024-11-14 05:12:02,037 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 224 states, 140 states have (on average 1.1857142857142857) internal successors, (166), 154 states have internal predecessors, (166), 41 states have call successors, (41), 33 states have call predecessors, (41), 42 states have return successors, (59), 43 states have call predecessors, (59), 41 states have call successors, (59) [2024-11-14 05:12:02,042 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 224 states to 224 states and 266 transitions. [2024-11-14 05:12:02,043 INFO L78 Accepts]: Start accepts. Automaton has 224 states and 266 transitions. Word has length 41 [2024-11-14 05:12:02,043 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:12:02,043 INFO L471 AbstractCegarLoop]: Abstraction has 224 states and 266 transitions. [2024-11-14 05:12:02,044 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 3 states have internal predecessors, (29), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-14 05:12:02,044 INFO L276 IsEmpty]: Start isEmpty. Operand 224 states and 266 transitions. [2024-11-14 05:12:02,052 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 82 [2024-11-14 05:12:02,056 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:12:02,056 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:12:02,057 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-14 05:12:02,057 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:12:02,057 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:12:02,058 INFO L85 PathProgramCache]: Analyzing trace with hash 435293969, now seen corresponding path program 1 times [2024-11-14 05:12:02,062 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:12:02,062 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1805383821] [2024-11-14 05:12:02,062 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:02,062 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:12:02,116 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:02,343 INFO L134 CoverageAnalysis]: Checked inductivity of 46 backedges. 18 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-14 05:12:02,343 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:12:02,343 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1805383821] [2024-11-14 05:12:02,344 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1805383821] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:12:02,344 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 05:12:02,345 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-14 05:12:02,346 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1505947464] [2024-11-14 05:12:02,346 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:12:02,346 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-14 05:12:02,347 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:12:02,348 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-14 05:12:02,349 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-14 05:12:02,350 INFO L87 Difference]: Start difference. First operand 224 states and 266 transitions. Second operand has 4 states, 4 states have (on average 11.25) internal successors, (45), 4 states have internal predecessors, (45), 3 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-14 05:12:02,632 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:12:02,632 INFO L93 Difference]: Finished difference Result 426 states and 513 transitions. [2024-11-14 05:12:02,635 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-14 05:12:02,635 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 11.25) internal successors, (45), 4 states have internal predecessors, (45), 3 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 81 [2024-11-14 05:12:02,636 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:12:02,638 INFO L225 Difference]: With dead ends: 426 [2024-11-14 05:12:02,641 INFO L226 Difference]: Without dead ends: 204 [2024-11-14 05:12:02,643 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-14 05:12:02,644 INFO L432 NwaCegarLoop]: 89 mSDtfsCounter, 45 mSDsluCounter, 104 mSDsCounter, 0 mSdLazyCounter, 101 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 45 SdHoareTripleChecker+Valid, 193 SdHoareTripleChecker+Invalid, 102 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 101 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 05:12:02,647 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [45 Valid, 193 Invalid, 102 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 101 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 05:12:02,648 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 204 states. [2024-11-14 05:12:02,731 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 204 to 204. [2024-11-14 05:12:02,732 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 204 states, 129 states have (on average 1.178294573643411) internal successors, (152), 143 states have internal predecessors, (152), 37 states have call successors, (37), 31 states have call predecessors, (37), 37 states have return successors, (52), 38 states have call predecessors, (52), 37 states have call successors, (52) [2024-11-14 05:12:02,739 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 204 states to 204 states and 241 transitions. [2024-11-14 05:12:02,740 INFO L78 Accepts]: Start accepts. Automaton has 204 states and 241 transitions. Word has length 81 [2024-11-14 05:12:02,740 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:12:02,744 INFO L471 AbstractCegarLoop]: Abstraction has 204 states and 241 transitions. [2024-11-14 05:12:02,744 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 11.25) internal successors, (45), 4 states have internal predecessors, (45), 3 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-14 05:12:02,744 INFO L276 IsEmpty]: Start isEmpty. Operand 204 states and 241 transitions. [2024-11-14 05:12:02,748 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 86 [2024-11-14 05:12:02,748 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:12:02,748 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:12:02,749 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-14 05:12:02,749 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:12:02,749 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:12:02,749 INFO L85 PathProgramCache]: Analyzing trace with hash 854659837, now seen corresponding path program 1 times [2024-11-14 05:12:02,750 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:12:02,750 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1082209898] [2024-11-14 05:12:02,750 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:02,750 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:12:02,807 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:03,671 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 17 proven. 4 refuted. 0 times theorem prover too weak. 20 trivial. 0 not checked. [2024-11-14 05:12:03,671 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:12:03,671 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1082209898] [2024-11-14 05:12:03,671 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1082209898] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 05:12:03,671 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1134449980] [2024-11-14 05:12:03,671 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:03,672 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 05:12:03,672 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 05:12:03,677 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 05:12:03,679 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-14 05:12:03,862 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:03,869 INFO L255 TraceCheckSpWp]: Trace formula consists of 299 conjuncts, 9 conjuncts are in the unsatisfiable core [2024-11-14 05:12:03,894 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 05:12:04,663 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 37 proven. 0 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2024-11-14 05:12:04,664 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-14 05:12:04,664 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1134449980] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:12:04,665 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-14 05:12:04,665 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [9] total 14 [2024-11-14 05:12:04,665 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [554436077] [2024-11-14 05:12:04,666 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:12:04,666 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-14 05:12:04,666 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:12:04,669 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-14 05:12:04,670 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=39, Invalid=143, Unknown=0, NotChecked=0, Total=182 [2024-11-14 05:12:04,670 INFO L87 Difference]: Start difference. First operand 204 states and 241 transitions. Second operand has 8 states, 8 states have (on average 7.25) internal successors, (58), 8 states have internal predecessors, (58), 6 states have call successors, (13), 4 states have call predecessors, (13), 3 states have return successors, (12), 3 states have call predecessors, (12), 6 states have call successors, (12) [2024-11-14 05:12:05,575 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:12:05,576 INFO L93 Difference]: Finished difference Result 446 states and 534 transitions. [2024-11-14 05:12:05,577 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-11-14 05:12:05,577 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 7.25) internal successors, (58), 8 states have internal predecessors, (58), 6 states have call successors, (13), 4 states have call predecessors, (13), 3 states have return successors, (12), 3 states have call predecessors, (12), 6 states have call successors, (12) Word has length 85 [2024-11-14 05:12:05,578 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:12:05,581 INFO L225 Difference]: With dead ends: 446 [2024-11-14 05:12:05,581 INFO L226 Difference]: Without dead ends: 244 [2024-11-14 05:12:05,582 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 100 GetRequests, 81 SyntacticMatches, 2 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 48 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=78, Invalid=264, Unknown=0, NotChecked=0, Total=342 [2024-11-14 05:12:05,583 INFO L432 NwaCegarLoop]: 45 mSDtfsCounter, 114 mSDsluCounter, 122 mSDsCounter, 0 mSdLazyCounter, 363 mSolverCounterSat, 56 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 122 SdHoareTripleChecker+Valid, 167 SdHoareTripleChecker+Invalid, 419 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 56 IncrementalHoareTripleChecker+Valid, 363 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-14 05:12:05,584 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [122 Valid, 167 Invalid, 419 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [56 Valid, 363 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-14 05:12:05,585 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 244 states. [2024-11-14 05:12:05,637 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 244 to 223. [2024-11-14 05:12:05,638 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 223 states, 143 states have (on average 1.1748251748251748) internal successors, (168), 157 states have internal predecessors, (168), 40 states have call successors, (40), 36 states have call predecessors, (40), 39 states have return successors, (55), 39 states have call predecessors, (55), 40 states have call successors, (55) [2024-11-14 05:12:05,640 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 223 states to 223 states and 263 transitions. [2024-11-14 05:12:05,641 INFO L78 Accepts]: Start accepts. Automaton has 223 states and 263 transitions. Word has length 85 [2024-11-14 05:12:05,641 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:12:05,641 INFO L471 AbstractCegarLoop]: Abstraction has 223 states and 263 transitions. [2024-11-14 05:12:05,642 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 7.25) internal successors, (58), 8 states have internal predecessors, (58), 6 states have call successors, (13), 4 states have call predecessors, (13), 3 states have return successors, (12), 3 states have call predecessors, (12), 6 states have call successors, (12) [2024-11-14 05:12:05,642 INFO L276 IsEmpty]: Start isEmpty. Operand 223 states and 263 transitions. [2024-11-14 05:12:05,644 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2024-11-14 05:12:05,644 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:12:05,644 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:12:05,672 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-14 05:12:05,845 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable7 [2024-11-14 05:12:05,845 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:12:05,846 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:12:05,846 INFO L85 PathProgramCache]: Analyzing trace with hash 628051815, now seen corresponding path program 1 times [2024-11-14 05:12:05,846 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:12:05,846 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [845263786] [2024-11-14 05:12:05,846 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:05,846 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:12:05,882 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:06,893 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 9 proven. 10 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-14 05:12:06,894 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:12:06,894 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [845263786] [2024-11-14 05:12:06,894 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [845263786] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 05:12:06,894 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [104261486] [2024-11-14 05:12:06,895 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:06,895 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 05:12:06,895 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 05:12:06,898 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 05:12:06,901 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-14 05:12:07,062 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:07,064 INFO L255 TraceCheckSpWp]: Trace formula consists of 305 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-14 05:12:07,070 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 05:12:07,648 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 29 proven. 10 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 05:12:07,649 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 05:12:08,542 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 12 proven. 3 refuted. 0 times theorem prover too weak. 26 trivial. 0 not checked. [2024-11-14 05:12:08,542 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [104261486] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 05:12:08,543 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1047738609] [2024-11-14 05:12:08,576 INFO L159 IcfgInterpreter]: Started Sifa with 54 locations of interest [2024-11-14 05:12:08,576 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 05:12:08,581 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 05:12:08,587 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 05:12:08,588 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 05:12:12,452 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 122 for LOIs [2024-11-14 05:12:12,498 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 157 for LOIs [2024-11-14 05:12:16,008 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 155 for LOIs [2024-11-14 05:12:17,101 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 155 for LOIs [2024-11-14 05:12:17,382 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 14 for LOIs [2024-11-14 05:12:17,463 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 164 for LOIs [2024-11-14 05:12:17,626 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 05:12:35,497 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSifa [1047738609] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 05:12:35,497 INFO L185 FreeRefinementEngine]: Found 1 perfect and 3 imperfect interpolant sequences. [2024-11-14 05:12:35,498 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [23] imperfect sequences [14, 12, 13] total 52 [2024-11-14 05:12:35,498 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1372584732] [2024-11-14 05:12:35,499 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 05:12:35,499 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 24 states [2024-11-14 05:12:35,499 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:12:35,500 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2024-11-14 05:12:35,502 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=364, Invalid=2288, Unknown=0, NotChecked=0, Total=2652 [2024-11-14 05:12:35,502 INFO L87 Difference]: Start difference. First operand 223 states and 263 transitions. Second operand has 24 states, 20 states have (on average 2.0) internal successors, (40), 18 states have internal predecessors, (40), 8 states have call successors, (11), 6 states have call predecessors, (11), 6 states have return successors, (11), 9 states have call predecessors, (11), 8 states have call successors, (11) [2024-11-14 05:12:47,998 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:12:47,998 INFO L93 Difference]: Finished difference Result 646 states and 768 transitions. [2024-11-14 05:12:47,999 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 33 states. [2024-11-14 05:12:47,999 INFO L78 Accepts]: Start accepts. Automaton has has 24 states, 20 states have (on average 2.0) internal successors, (40), 18 states have internal predecessors, (40), 8 states have call successors, (11), 6 states have call predecessors, (11), 6 states have return successors, (11), 9 states have call predecessors, (11), 8 states have call successors, (11) Word has length 88 [2024-11-14 05:12:48,000 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:12:48,007 INFO L225 Difference]: With dead ends: 646 [2024-11-14 05:12:48,008 INFO L226 Difference]: Without dead ends: 425 [2024-11-14 05:12:48,013 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 294 GetRequests, 215 SyntacticMatches, 12 SemanticMatches, 67 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2153 ImplicationChecksByTransitivity, 26.3s TimeCoverageRelationStatistics Valid=656, Invalid=4036, Unknown=0, NotChecked=0, Total=4692 [2024-11-14 05:12:48,016 INFO L432 NwaCegarLoop]: 40 mSDtfsCounter, 175 mSDsluCounter, 317 mSDsCounter, 0 mSdLazyCounter, 1428 mSolverCounterSat, 78 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 188 SdHoareTripleChecker+Valid, 357 SdHoareTripleChecker+Invalid, 1506 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 78 IncrementalHoareTripleChecker+Valid, 1428 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.4s IncrementalHoareTripleChecker+Time [2024-11-14 05:12:48,016 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [188 Valid, 357 Invalid, 1506 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [78 Valid, 1428 Invalid, 0 Unknown, 0 Unchecked, 4.4s Time] [2024-11-14 05:12:48,018 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 425 states. [2024-11-14 05:12:48,212 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 425 to 406. [2024-11-14 05:12:48,213 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 406 states, 268 states have (on average 1.1679104477611941) internal successors, (313), 286 states have internal predecessors, (313), 70 states have call successors, (70), 62 states have call predecessors, (70), 67 states have return successors, (97), 69 states have call predecessors, (97), 70 states have call successors, (97) [2024-11-14 05:12:48,221 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 406 states to 406 states and 480 transitions. [2024-11-14 05:12:48,222 INFO L78 Accepts]: Start accepts. Automaton has 406 states and 480 transitions. Word has length 88 [2024-11-14 05:12:48,222 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:12:48,222 INFO L471 AbstractCegarLoop]: Abstraction has 406 states and 480 transitions. [2024-11-14 05:12:48,222 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 24 states, 20 states have (on average 2.0) internal successors, (40), 18 states have internal predecessors, (40), 8 states have call successors, (11), 6 states have call predecessors, (11), 6 states have return successors, (11), 9 states have call predecessors, (11), 8 states have call successors, (11) [2024-11-14 05:12:48,222 INFO L276 IsEmpty]: Start isEmpty. Operand 406 states and 480 transitions. [2024-11-14 05:12:48,225 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2024-11-14 05:12:48,225 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:12:48,226 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:12:48,254 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-14 05:12:48,430 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 05:12:48,430 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:12:48,431 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:12:48,431 INFO L85 PathProgramCache]: Analyzing trace with hash 1634698547, now seen corresponding path program 1 times [2024-11-14 05:12:48,431 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:12:48,431 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2082144074] [2024-11-14 05:12:48,431 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:48,432 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:12:48,468 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:49,003 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 17 proven. 14 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-14 05:12:49,003 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:12:49,003 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2082144074] [2024-11-14 05:12:49,003 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2082144074] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 05:12:49,004 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1776738008] [2024-11-14 05:12:49,004 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:12:49,004 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 05:12:49,004 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 05:12:49,007 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 05:12:49,010 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-14 05:12:49,147 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:12:49,150 INFO L255 TraceCheckSpWp]: Trace formula consists of 311 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-14 05:12:49,155 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 05:12:49,698 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 29 proven. 10 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 05:12:49,700 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 05:12:50,493 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 12 proven. 3 refuted. 0 times theorem prover too weak. 26 trivial. 0 not checked. [2024-11-14 05:12:50,494 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1776738008] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 05:12:50,494 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1686969017] [2024-11-14 05:12:50,497 INFO L159 IcfgInterpreter]: Started Sifa with 57 locations of interest [2024-11-14 05:12:50,498 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 05:12:50,498 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 05:12:50,498 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 05:12:50,498 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 05:12:53,270 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 18 for LOIs [2024-11-14 05:12:53,274 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 38 for LOIs [2024-11-14 05:12:53,448 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 43 for LOIs [2024-11-14 05:12:53,584 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 55 for LOIs [2024-11-14 05:12:53,776 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 52 for LOIs [2024-11-14 05:12:53,935 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 1 for LOIs [2024-11-14 05:12:53,936 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 3 for LOIs [2024-11-14 05:12:53,938 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 11 for LOIs [2024-11-14 05:12:53,940 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 05:13:00,668 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7847#(and (<= ~methaneLevelCritical~0 1) (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (not (= ~methaneLevelCritical~0 0)) (<= 0 ~methaneLevelCritical~0) (<= 0 (+ ~pumpRunning~0 2147483648)) (not (= ~methAndRunningLastTime~0 0)))' at error location [2024-11-14 05:13:00,669 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 05:13:00,669 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 05:13:00,669 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 12, 13] total 32 [2024-11-14 05:13:00,669 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1419680670] [2024-11-14 05:13:00,669 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 05:13:00,670 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 32 states [2024-11-14 05:13:00,670 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:13:00,671 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 32 interpolants. [2024-11-14 05:13:00,673 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=419, Invalid=4273, Unknown=0, NotChecked=0, Total=4692 [2024-11-14 05:13:00,674 INFO L87 Difference]: Start difference. First operand 406 states and 480 transitions. Second operand has 32 states, 28 states have (on average 4.678571428571429) internal successors, (131), 26 states have internal predecessors, (131), 13 states have call successors, (37), 11 states have call predecessors, (37), 13 states have return successors, (35), 14 states have call predecessors, (35), 13 states have call successors, (35) [2024-11-14 05:13:09,726 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:13:09,726 INFO L93 Difference]: Finished difference Result 1664 states and 2066 transitions. [2024-11-14 05:13:09,728 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 155 states. [2024-11-14 05:13:09,729 INFO L78 Accepts]: Start accepts. Automaton has has 32 states, 28 states have (on average 4.678571428571429) internal successors, (131), 26 states have internal predecessors, (131), 13 states have call successors, (37), 11 states have call predecessors, (37), 13 states have return successors, (35), 14 states have call predecessors, (35), 13 states have call successors, (35) Word has length 91 [2024-11-14 05:13:09,729 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:13:09,744 INFO L225 Difference]: With dead ends: 1664 [2024-11-14 05:13:09,744 INFO L226 Difference]: Without dead ends: 1346 [2024-11-14 05:13:09,760 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 459 GetRequests, 240 SyntacticMatches, 7 SemanticMatches, 212 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 17147 ImplicationChecksByTransitivity, 12.8s TimeCoverageRelationStatistics Valid=4939, Invalid=40643, Unknown=0, NotChecked=0, Total=45582 [2024-11-14 05:13:09,762 INFO L432 NwaCegarLoop]: 101 mSDtfsCounter, 1555 mSDsluCounter, 1159 mSDsCounter, 0 mSdLazyCounter, 3217 mSolverCounterSat, 1096 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1560 SdHoareTripleChecker+Valid, 1260 SdHoareTripleChecker+Invalid, 4313 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.1s SdHoareTripleChecker+Time, 1096 IncrementalHoareTripleChecker+Valid, 3217 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.1s IncrementalHoareTripleChecker+Time [2024-11-14 05:13:09,767 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1560 Valid, 1260 Invalid, 4313 Unknown, 0 Unchecked, 0.1s Time], IncrementalHoareTripleChecker [1096 Valid, 3217 Invalid, 0 Unknown, 0 Unchecked, 3.1s Time] [2024-11-14 05:13:09,769 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1346 states. [2024-11-14 05:13:10,135 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1346 to 1203. [2024-11-14 05:13:10,137 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1203 states, 796 states have (on average 1.1608040201005025) internal successors, (924), 864 states have internal predecessors, (924), 211 states have call successors, (211), 170 states have call predecessors, (211), 195 states have return successors, (298), 208 states have call predecessors, (298), 211 states have call successors, (298) [2024-11-14 05:13:10,147 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1203 states to 1203 states and 1433 transitions. [2024-11-14 05:13:10,149 INFO L78 Accepts]: Start accepts. Automaton has 1203 states and 1433 transitions. Word has length 91 [2024-11-14 05:13:10,149 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:13:10,149 INFO L471 AbstractCegarLoop]: Abstraction has 1203 states and 1433 transitions. [2024-11-14 05:13:10,150 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 32 states, 28 states have (on average 4.678571428571429) internal successors, (131), 26 states have internal predecessors, (131), 13 states have call successors, (37), 11 states have call predecessors, (37), 13 states have return successors, (35), 14 states have call predecessors, (35), 13 states have call successors, (35) [2024-11-14 05:13:10,150 INFO L276 IsEmpty]: Start isEmpty. Operand 1203 states and 1433 transitions. [2024-11-14 05:13:10,156 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 200 [2024-11-14 05:13:10,156 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 05:13:10,157 INFO L215 NwaCegarLoop]: trace histogram [10, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:13:10,184 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-14 05:13:10,357 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-14 05:13:10,358 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 05:13:10,358 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 05:13:10,359 INFO L85 PathProgramCache]: Analyzing trace with hash 1061494122, now seen corresponding path program 1 times [2024-11-14 05:13:10,359 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 05:13:10,359 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [336653313] [2024-11-14 05:13:10,359 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:13:10,359 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 05:13:10,405 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:13:12,099 INFO L134 CoverageAnalysis]: Checked inductivity of 362 backedges. 91 proven. 91 refuted. 0 times theorem prover too weak. 180 trivial. 0 not checked. [2024-11-14 05:13:12,099 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 05:13:12,099 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [336653313] [2024-11-14 05:13:12,099 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [336653313] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 05:13:12,099 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1418225263] [2024-11-14 05:13:12,099 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 05:13:12,099 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 05:13:12,099 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 05:13:12,102 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 05:13:12,107 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-14 05:13:12,308 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 05:13:12,313 INFO L255 TraceCheckSpWp]: Trace formula consists of 580 conjuncts, 28 conjuncts are in the unsatisfiable core [2024-11-14 05:13:12,329 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 05:13:13,169 INFO L134 CoverageAnalysis]: Checked inductivity of 362 backedges. 237 proven. 42 refuted. 0 times theorem prover too weak. 83 trivial. 0 not checked. [2024-11-14 05:13:13,170 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 05:13:14,310 INFO L134 CoverageAnalysis]: Checked inductivity of 362 backedges. 111 proven. 64 refuted. 0 times theorem prover too weak. 187 trivial. 0 not checked. [2024-11-14 05:13:14,310 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1418225263] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 05:13:14,310 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [686164155] [2024-11-14 05:13:14,313 INFO L159 IcfgInterpreter]: Started Sifa with 57 locations of interest [2024-11-14 05:13:14,313 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 05:13:14,314 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 05:13:14,314 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 05:13:14,314 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 05:13:16,063 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 28 for LOIs [2024-11-14 05:13:16,071 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 35 for LOIs [2024-11-14 05:13:16,622 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 65 for LOIs [2024-11-14 05:13:16,858 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 63 for LOIs [2024-11-14 05:13:17,073 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 39 for LOIs [2024-11-14 05:13:17,134 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 3 for LOIs [2024-11-14 05:13:17,136 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 54 for LOIs [2024-11-14 05:13:17,158 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 64 for LOIs [2024-11-14 05:13:17,191 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 05:13:24,376 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13746#(and (not (= ~pumpRunning~0 0)) (<= ~pumpRunning~0 2147483647) (not (= ~methaneLevelCritical~0 0)) (<= 0 ~methAndRunningLastTime~0) (<= 0 |old(~methAndRunningLastTime~0)|) (<= 0 (+ ~pumpRunning~0 2147483648)) (<= ~methaneLevelCritical~0 2147483647) (<= 0 (+ ~methaneLevelCritical~0 2147483648)) (not (= ~methAndRunningLastTime~0 0)))' at error location [2024-11-14 05:13:24,376 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 05:13:24,376 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 05:13:24,376 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 13, 13] total 36 [2024-11-14 05:13:24,376 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1707058968] [2024-11-14 05:13:24,376 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 05:13:24,377 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 36 states [2024-11-14 05:13:24,378 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 05:13:24,379 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 36 interpolants. [2024-11-14 05:13:24,381 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=624, Invalid=5076, Unknown=0, NotChecked=0, Total=5700 [2024-11-14 05:13:24,381 INFO L87 Difference]: Start difference. First operand 1203 states and 1433 transitions. Second operand has 36 states, 33 states have (on average 5.848484848484849) internal successors, (193), 35 states have internal predecessors, (193), 23 states have call successors, (52), 8 states have call predecessors, (52), 15 states have return successors, (56), 19 states have call predecessors, (56), 23 states have call successors, (56) [2024-11-14 05:13:26,676 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 05:13:26,676 INFO L93 Difference]: Finished difference Result 1586 states and 1880 transitions. [2024-11-14 05:13:26,679 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 31 states. [2024-11-14 05:13:26,680 INFO L78 Accepts]: Start accepts. Automaton has has 36 states, 33 states have (on average 5.848484848484849) internal successors, (193), 35 states have internal predecessors, (193), 23 states have call successors, (52), 8 states have call predecessors, (52), 15 states have return successors, (56), 19 states have call predecessors, (56), 23 states have call successors, (56) Word has length 199 [2024-11-14 05:13:26,681 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 05:13:26,683 INFO L225 Difference]: With dead ends: 1586 [2024-11-14 05:13:26,683 INFO L226 Difference]: Without dead ends: 0 [2024-11-14 05:13:26,691 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 654 GetRequests, 544 SyntacticMatches, 10 SemanticMatches, 100 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4651 ImplicationChecksByTransitivity, 8.9s TimeCoverageRelationStatistics Valid=1268, Invalid=9034, Unknown=0, NotChecked=0, Total=10302 [2024-11-14 05:13:26,692 INFO L432 NwaCegarLoop]: 46 mSDtfsCounter, 896 mSDsluCounter, 319 mSDsCounter, 0 mSdLazyCounter, 951 mSolverCounterSat, 604 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 899 SdHoareTripleChecker+Valid, 365 SdHoareTripleChecker+Invalid, 1555 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 604 IncrementalHoareTripleChecker+Valid, 951 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2024-11-14 05:13:26,692 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [899 Valid, 365 Invalid, 1555 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [604 Valid, 951 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2024-11-14 05:13:26,693 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-14 05:13:26,693 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-14 05:13:26,693 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 05:13:26,693 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-14 05:13:26,695 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 199 [2024-11-14 05:13:26,695 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 05:13:26,695 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-14 05:13:26,696 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 36 states, 33 states have (on average 5.848484848484849) internal successors, (193), 35 states have internal predecessors, (193), 23 states have call successors, (52), 8 states have call predecessors, (52), 15 states have return successors, (56), 19 states have call predecessors, (56), 23 states have call successors, (56) [2024-11-14 05:13:26,696 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-14 05:13:26,696 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-14 05:13:26,699 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-14 05:13:26,723 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-14 05:13:26,904 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-11-14 05:13:26,907 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 05:13:26,909 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-14 05:13:49,571 INFO L173 ceAbstractionStarter]: Computing trace abstraction results [2024-11-14 05:13:49,622 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (not (= |old(~pumpRunning~0)| 0)) (or (< 1 ~waterLevel~0) (= ~waterLevel~0 1)) (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) Eliminated clause: (and (not (= ~pumpRunning~0 0)) (or (= 2 ~waterLevel~0) (= ~waterLevel~0 1)) (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) [2024-11-14 05:13:49,654 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse0 (= |old(~methAndRunningLastTime~0)| 0)) (.cse1 (= |old(~waterLevel~0)| 2)) (.cse3 (= |old(~waterLevel~0)| 1)) (.cse4 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) (= ~methAndRunningLastTime~0 0)) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse1)) (let ((.cse2 (= 1 ~systemActive~0))) (or (and .cse0 .cse2 .cse1) (and .cse3 .cse0 .cse2) (and (not .cse4) .cse2 .cse1))) (or (not .cse3) (and (= ~pumpRunning~0 0) .cse4 (= ~waterLevel~0 1))))) Eliminated clause: (exists ((|old(~methAndRunningLastTime~0)| Int) (|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse0 (= |old(~methAndRunningLastTime~0)| 0)) (.cse1 (= |old(~waterLevel~0)| 2)) (.cse3 (= |old(~waterLevel~0)| 1)) (.cse4 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) (= ~methAndRunningLastTime~0 0)) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse1)) (let ((.cse2 (= 1 ~systemActive~0))) (or (and .cse0 .cse2 .cse1) (and .cse3 .cse0 .cse2) (and (not .cse4) .cse2 .cse1))) (or (not .cse3) (and (= ~pumpRunning~0 0) .cse4 (= ~waterLevel~0 1)))))) [2024-11-14 05:13:49,674 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 05:13:49,688 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= |old(~pumpRunning~0)| 0))) (or (and .cse0 (= 2 ~waterLevel~0) .cse1 .cse2) (and .cse0 .cse1 .cse2 (= ~waterLevel~0 1))))) Eliminated clause: (and (= ~pumpRunning~0 0) (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (= 1 ~systemActive~0))) (or (and .cse0 (= 2 ~waterLevel~0) .cse1) (and .cse0 .cse1 (= ~waterLevel~0 1))))) [2024-11-14 05:13:49,703 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse0 (= |old(~waterLevel~0)| 2)) (.cse1 (= |old(~waterLevel~0)| 1)) (.cse4 (= ~pumpRunning~0 0)) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse3 (= 1 ~systemActive~0))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (or .cse1 (and .cse2 .cse3 .cse0) (and (not .cse4) .cse3 .cse0)) (or (not .cse1) (and .cse4 .cse2 .cse3 (= ~waterLevel~0 1))))) Eliminated clause: (exists ((|old(~waterLevel~0)| Int)) (let ((.cse0 (= |old(~waterLevel~0)| 2)) (.cse1 (= |old(~waterLevel~0)| 1)) (.cse4 (= ~pumpRunning~0 0)) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse3 (= 1 ~systemActive~0))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (or .cse1 (and .cse2 .cse3 .cse0) (and (not .cse4) .cse3 .cse0)) (or (not .cse1) (and .cse4 .cse2 .cse3 (= ~waterLevel~0 1)))))) [2024-11-14 05:13:49,711 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 05:13:49,718 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse2 (= ~waterLevel~0 1)) (.cse1 (= 1 ~systemActive~0))) (or (and .cse0 (= 2 ~waterLevel~0) .cse1) (and .cse0 .cse1 .cse2) (and (not (= |old(~pumpRunning~0)| 0)) (or (< 1 ~waterLevel~0) .cse2) .cse1 (<= ~waterLevel~0 2))))) Eliminated clause: (let ((.cse0 (= 2 ~waterLevel~0)) (.cse3 (= ~methAndRunningLastTime~0 0)) (.cse2 (= 1 ~systemActive~0)) (.cse1 (= ~waterLevel~0 1))) (or (and (not (= ~pumpRunning~0 0)) (or .cse0 .cse1) .cse2 (<= ~waterLevel~0 2)) (and .cse3 .cse0 .cse2) (and .cse3 .cse2 .cse1))) [2024-11-14 05:13:49,743 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 14.11 05:13:49 BoogieIcfgContainer [2024-11-14 05:13:49,743 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-14 05:13:49,744 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-14 05:13:49,744 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-14 05:13:49,744 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-14 05:13:49,745 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 05:11:58" (3/4) ... [2024-11-14 05:13:49,748 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-14 05:13:49,754 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-14 05:13:49,754 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-14 05:13:49,755 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-14 05:13:49,755 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-14 05:13:49,755 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-14 05:13:49,755 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-14 05:13:49,756 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 05:13:49,756 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-14 05:13:49,756 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-14 05:13:49,756 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-14 05:13:49,768 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 48 nodes and edges [2024-11-14 05:13:49,771 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-14 05:13:49,772 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-14 05:13:49,773 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 05:13:49,773 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 05:13:49,811 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((\old(methAndRunningLastTime) != 0) || (methAndRunningLastTime == 0)) && (((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2))) && (((((\old(methAndRunningLastTime) == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((\old(waterLevel) == 1) && (\old(methAndRunningLastTime) == 0)) && (1 == systemActive))) || (((\old(pumpRunning) != 0) && (1 == systemActive)) && (\old(waterLevel) == 2)))) && ((\old(waterLevel) != 1) || (((pumpRunning == 0) && (\old(pumpRunning) == 0)) && (waterLevel == 1)))) [2024-11-14 05:13:49,864 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((\old(methAndRunningLastTime) != 0) || (methAndRunningLastTime == 0)) && (((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2))) && (((((\old(methAndRunningLastTime) == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((\old(waterLevel) == 1) && (\old(methAndRunningLastTime) == 0)) && (1 == systemActive))) || (((\old(pumpRunning) != 0) && (1 == systemActive)) && (\old(waterLevel) == 2)))) && ((\old(waterLevel) != 1) || (((pumpRunning == 0) && (\old(pumpRunning) == 0)) && (waterLevel == 1)))) [2024-11-14 05:13:49,937 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/witness.graphml [2024-11-14 05:13:49,937 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/witness.yml [2024-11-14 05:13:49,937 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-14 05:13:49,939 INFO L158 Benchmark]: Toolchain (without parser) took 113534.86ms. Allocated memory was 109.1MB in the beginning and 1.4GB in the end (delta: 1.2GB). Free memory was 83.2MB in the beginning and 996.7MB in the end (delta: -913.5MB). Peak memory consumption was 323.8MB. Max. memory is 16.1GB. [2024-11-14 05:13:49,939 INFO L158 Benchmark]: CDTParser took 1.47ms. Allocated memory is still 83.9MB. Free memory is still 41.7MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 05:13:49,940 INFO L158 Benchmark]: CACSL2BoogieTranslator took 861.11ms. Allocated memory is still 109.1MB. Free memory was 82.8MB in the beginning and 63.8MB in the end (delta: 19.0MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-11-14 05:13:49,941 INFO L158 Benchmark]: Boogie Procedure Inliner took 70.11ms. Allocated memory is still 109.1MB. Free memory was 63.8MB in the beginning and 62.1MB in the end (delta: 1.6MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 05:13:49,941 INFO L158 Benchmark]: Boogie Preprocessor took 45.69ms. Allocated memory is still 109.1MB. Free memory was 61.7MB in the beginning and 60.8MB in the end (delta: 880.0kB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 05:13:49,942 INFO L158 Benchmark]: RCFGBuilder took 983.88ms. Allocated memory is still 109.1MB. Free memory was 60.4MB in the beginning and 77.1MB in the end (delta: -16.7MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. [2024-11-14 05:13:49,943 INFO L158 Benchmark]: TraceAbstraction took 111370.11ms. Allocated memory was 109.1MB in the beginning and 1.4GB in the end (delta: 1.2GB). Free memory was 76.5MB in the beginning and 1.0GB in the end (delta: -928.6MB). Peak memory consumption was 808.9MB. Max. memory is 16.1GB. [2024-11-14 05:13:49,943 INFO L158 Benchmark]: Witness Printer took 193.60ms. Allocated memory is still 1.4GB. Free memory was 1.0GB in the beginning and 996.7MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-14 05:13:49,947 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 1.47ms. Allocated memory is still 83.9MB. Free memory is still 41.7MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 861.11ms. Allocated memory is still 109.1MB. Free memory was 82.8MB in the beginning and 63.8MB in the end (delta: 19.0MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 70.11ms. Allocated memory is still 109.1MB. Free memory was 63.8MB in the beginning and 62.1MB in the end (delta: 1.6MB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 45.69ms. Allocated memory is still 109.1MB. Free memory was 61.7MB in the beginning and 60.8MB in the end (delta: 880.0kB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 983.88ms. Allocated memory is still 109.1MB. Free memory was 60.4MB in the beginning and 77.1MB in the end (delta: -16.7MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. * TraceAbstraction took 111370.11ms. Allocated memory was 109.1MB in the beginning and 1.4GB in the end (delta: 1.2GB). Free memory was 76.5MB in the beginning and 1.0GB in the end (delta: -928.6MB). Peak memory consumption was 808.9MB. Max. memory is 16.1GB. * Witness Printer took 193.60ms. Allocated memory is still 1.4GB. Free memory was 1.0GB in the beginning and 996.7MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [49] - GenericResultAtLocation [Line: 91]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [91] - GenericResultAtLocation [Line: 196]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [196] - GenericResultAtLocation [Line: 562]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [562] - GenericResultAtLocation [Line: 571]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [571] - GenericResultAtLocation [Line: 606]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [606] - GenericResultAtLocation [Line: 671]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [671] - GenericResultAtLocation [Line: 779]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [779] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 567]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 75 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 88.4s, OverallIterations: 11, TraceHistogramMax: 10, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 26.8s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3167 SdHoareTripleChecker+Valid, 10.7s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 3127 mSDsluCounter, 3067 SdHoareTripleChecker+Invalid, 9.3s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2351 mSDsCounter, 1953 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 6438 IncrementalHoareTripleChecker+Invalid, 8391 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1953 mSolverCounterUnsat, 716 mSDtfsCounter, 6438 mSolverCounterSat, 0.2s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1550 GetRequests, 1105 SyntacticMatches, 31 SemanticMatches, 414 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 24004 ImplicationChecksByTransitivity, 48.7s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1203occurred in iteration=10, InterpolantAutomatonStates: 261, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 1.0s AutomataMinimizationTime, 11 MinimizatonAttempts, 197 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.2s SsaConstructionTime, 0.6s SatisfiabilityAnalysisTime, 11.0s InterpolantComputationTime, 1170 NumberOfCodeBlocks, 1170 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 1530 ConstructedInterpolants, 0 QuantifiedInterpolants, 4558 SizeOfPredicates, 17 NumberOfNonLiveVariables, 1495 ConjunctsInSsa, 73 ConjunctsInUnsatCore, 18 InterpolantComputations, 8 PerfectInterpolantSequences, 1211/1462 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: OVERALL_TIME: 9.1s, ICFG_INTERPRETER_ENTERED_PROCEDURES: 7, DAG_INTERPRETER_EARLY_EXIT_QUERIES_NONTRIVIAL: 61, DAG_INTERPRETER_EARLY_EXITS: 7, TOOLS_POST_APPLICATIONS: 68, TOOLS_POST_TIME: 4.0s, TOOLS_POST_CALL_APPLICATIONS: 41, TOOLS_POST_CALL_TIME: 3.1s, TOOLS_POST_RETURN_APPLICATIONS: 34, TOOLS_POST_RETURN_TIME: 1.1s, TOOLS_QUANTIFIERELIM_APPLICATIONS: 141, TOOLS_QUANTIFIERELIM_TIME: 8.1s, TOOLS_QUANTIFIERELIM_MAX_TIME: 0.3s, FLUID_QUERY_TIME: 0.0s, FLUID_QUERIES: 171, FLUID_YES_ANSWERS: 2, DOMAIN_JOIN_APPLICATIONS: 26, DOMAIN_JOIN_TIME: 0.5s, DOMAIN_ALPHA_APPLICATIONS: 2, DOMAIN_ALPHA_TIME: 0.0s, DOMAIN_WIDEN_APPLICATIONS: 0, DOMAIN_WIDEN_TIME: 0.0s, DOMAIN_ISSUBSETEQ_APPLICATIONS: 1, DOMAIN_ISSUBSETEQ_TIME: 0.0s, DOMAIN_ISBOTTOM_APPLICATIONS: 61, DOMAIN_ISBOTTOM_TIME: 0.2s, LOOP_SUMMARIZER_APPLICATIONS: 1, LOOP_SUMMARIZER_CACHE_MISSES: 1, LOOP_SUMMARIZER_OVERALL_TIME: 1.4s, LOOP_SUMMARIZER_NEW_COMPUTATION_TIME: 1.4s, LOOP_SUMMARIZER_FIXPOINT_ITERATIONS: 1, CALL_SUMMARIZER_APPLICATIONS: 34, CALL_SUMMARIZER_CACHE_MISSES: 7, CALL_SUMMARIZER_OVERALL_TIME: 0.2s, CALL_SUMMARIZER_NEW_COMPUTATION_TIME: 0.2s, PROCEDURE_GRAPH_BUILDER_TIME: 0.0s, PATH_EXPR_TIME: 0.0s, REGEX_TO_DAG_TIME: 0.0s, DAG_COMPRESSION_TIME: 0.0s, DAG_COMPRESSION_PROCESSED_NODES: 850, DAG_COMPRESSION_RETAINED_NODES: 177, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 617]: Loop Invariant Derived loop invariant: (((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) || ((((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((pumpRunning != 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) - InvariantResult [Line: 104]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 616]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 785]: Location Invariant Derived location invariant: (((((\old(methAndRunningLastTime) != 0) || (methAndRunningLastTime == 0)) && (((pumpRunning == \old(pumpRunning)) && (2 == waterLevel)) || (\old(waterLevel) != 2))) && (((((\old(methAndRunningLastTime) == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((\old(waterLevel) == 1) && (\old(methAndRunningLastTime) == 0)) && (1 == systemActive))) || (((\old(pumpRunning) != 0) && (1 == systemActive)) && (\old(waterLevel) == 2)))) && ((\old(waterLevel) != 1) || (((pumpRunning == 0) && (\old(pumpRunning) == 0)) && (waterLevel == 1)))) - ProcedureContractResult [Line: 919]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((((pumpRunning != 0) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) && (waterLevel <= 2)) Ensures: ((((((\old(pumpRunning) != 0) && (pumpRunning == 0)) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) && (waterLevel <= 2)) && ((((((methAndRunningLastTime == \old(methAndRunningLastTime)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 809]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive)) && (waterLevel == 1)) Ensures: (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive)) && (waterLevel == 1)) && (((((((methAndRunningLastTime == \old(methAndRunningLastTime)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 703]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive)) && (waterLevel == 1)) || (((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive))) || (((pumpRunning != 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: (((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive)) && (waterLevel == 1)) || (((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive))) || (((pumpRunning != 0) && (2 == waterLevel)) && (1 == systemActive))) && ((((((methAndRunningLastTime == \old(methAndRunningLastTime)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 785]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: ((((((\old(pumpRunning) == 0) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (\old(waterLevel) == ((long long) waterLevel + 1)))) && ((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (waterLevel == 1)) || (\old(waterLevel) != 1))) && (((((\old(methAndRunningLastTime) == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((\old(waterLevel) == 1) && (\old(methAndRunningLastTime) == 0)) && (1 == systemActive))) || (((\old(pumpRunning) != 0) && (1 == systemActive)) && (\old(waterLevel) == 2)))) && ((((\old(pumpRunning) != 0) || ((((methAndRunningLastTime == 0) && (2 == waterLevel)) && (methaneLevelCritical == 0)) && (pumpRunning == 1))) || ((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (2 == waterLevel)) && (methaneLevelCritical != 0)) && (methaneLevelCritical <= 2147483647)) && (0 <= (methaneLevelCritical + 2147483648)))) || (\old(waterLevel) != 2))) && ((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 94]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 715]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: ((((2 == waterLevel) || (waterLevel == 1)) && (1 == systemActive)) && (waterLevel <= 2)) Ensures: ((((((2 == waterLevel) || (waterLevel == 1)) && (1 == systemActive)) && (\result == methaneLevelCritical)) && (waterLevel <= 2)) && (((((((methAndRunningLastTime == \old(methAndRunningLastTime)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 817]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: ((pumpRunning == 0) && ((((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive)) || (((methAndRunningLastTime == 0) && (1 == systemActive)) && (waterLevel == 1)))) Ensures: (((((waterLevel != 1) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 == systemActive))) && (((\old(pumpRunning) == 0) && (waterLevel == 1)) || ((((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive)) && (\old(pumpRunning) == 0)))) && ((((((methaneLevelCritical != 0) || (pumpRunning == 1)) && (methaneLevelCritical <= 2147483647)) && (0 <= (methaneLevelCritical + 2147483648))) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) || (waterLevel < 2))) && ((((((methAndRunningLastTime == \old(methAndRunningLastTime)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 691]: Procedure Contract for waterRise Derived contract for procedure waterRise. Ensures: (((2 == waterLevel) && (((((methAndRunningLastTime == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) || ((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (\old(waterLevel) == 1)) && (1 == systemActive))) || (((pumpRunning != 0) && (1 == systemActive)) && (\old(waterLevel) == 2)))) && ((((((methAndRunningLastTime == \old(methAndRunningLastTime)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 843]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Requires: ((((((pumpRunning != 0) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) && (waterLevel <= 2)) || (((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive))) || (((methAndRunningLastTime == 0) && (1 == systemActive)) && (waterLevel == 1))) Ensures: ((((((pumpRunning == 0) || (\old(pumpRunning) == 0)) && (((\old(pumpRunning) != 0) || (1 < waterLevel)) || ((pumpRunning == 0) && (methAndRunningLastTime == 0)))) && (((\old(pumpRunning) != 0) || (((((methaneLevelCritical != 0) || (pumpRunning == 1)) && (methaneLevelCritical <= 2147483647)) && (0 <= (methaneLevelCritical + 2147483648))) && ((pumpRunning == 0) || (methaneLevelCritical == 0)))) || (waterLevel < 2))) && (((((\old(pumpRunning) != 0) && (2 == waterLevel)) && (1 == systemActive)) || (((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((1 == systemActive) && (waterLevel == 1)))) && ((((((methAndRunningLastTime == \old(methAndRunningLastTime)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 927]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: (((((pumpRunning != 0) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) && (waterLevel <= 2)) || (((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: ((((((((pumpRunning != 0) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) && (waterLevel <= 2)) || (((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 == systemActive))) && (\result == methaneLevelCritical)) && ((pumpRunning != 0) || ((methaneLevelCritical <= 2147483647) && (0 <= (methaneLevelCritical + 2147483648))))) && (((((((methAndRunningLastTime == \old(methAndRunningLastTime)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) RESULT: Ultimate proved your program to be correct! [2024-11-14 05:13:50,020 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fbf4f103-06d4-4ffb-95fa-abc88539373b/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE