./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 826ab2ba Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 4d13ffd2557e7d7902d8a5eac414f9fb7393252d85c14855e86000741be6847f --- Real Ultimate output --- This is Ultimate 0.3.0-dev-826ab2b [2024-11-14 04:07:12,185 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-14 04:07:12,276 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-14 04:07:12,281 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-14 04:07:12,282 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-14 04:07:12,310 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-14 04:07:12,311 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-14 04:07:12,312 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-14 04:07:12,312 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-14 04:07:12,312 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-14 04:07:12,312 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-14 04:07:12,312 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-14 04:07:12,312 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-14 04:07:12,313 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-14 04:07:12,313 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-14 04:07:12,313 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-14 04:07:12,313 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-14 04:07:12,313 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-14 04:07:12,313 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-14 04:07:12,313 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-14 04:07:12,314 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-14 04:07:12,314 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-14 04:07:12,314 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-14 04:07:12,315 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-14 04:07:12,315 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-14 04:07:12,315 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-14 04:07:12,315 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-14 04:07:12,315 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-14 04:07:12,315 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-14 04:07:12,316 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-14 04:07:12,316 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-14 04:07:12,316 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-14 04:07:12,316 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-14 04:07:12,316 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-14 04:07:12,316 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-14 04:07:12,317 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-14 04:07:12,317 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-14 04:07:12,317 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-14 04:07:12,317 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 04:07:12,317 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-14 04:07:12,317 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-14 04:07:12,318 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-14 04:07:12,318 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-14 04:07:12,318 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-14 04:07:12,318 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-14 04:07:12,318 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-14 04:07:12,318 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-14 04:07:12,319 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 4d13ffd2557e7d7902d8a5eac414f9fb7393252d85c14855e86000741be6847f [2024-11-14 04:07:12,728 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-14 04:07:12,745 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-14 04:07:12,751 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-14 04:07:12,753 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-14 04:07:12,753 INFO L274 PluginConnector]: CDTParser initialized [2024-11-14 04:07:12,756 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/../../sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c Unable to find full path for "g++" [2024-11-14 04:07:15,065 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-14 04:07:15,411 INFO L384 CDTParser]: Found 1 translation units. [2024-11-14 04:07:15,412 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c [2024-11-14 04:07:15,444 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/data/4845d8231/87407af4541f41dfb314796c9adc863d/FLAG6d6a54343 [2024-11-14 04:07:15,472 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/data/4845d8231/87407af4541f41dfb314796c9adc863d [2024-11-14 04:07:15,475 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-14 04:07:15,477 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-14 04:07:15,480 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-14 04:07:15,480 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-14 04:07:15,485 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-14 04:07:15,486 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 04:07:15" (1/1) ... [2024-11-14 04:07:15,487 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@380b6b93 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:15, skipping insertion in model container [2024-11-14 04:07:15,487 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 04:07:15" (1/1) ... [2024-11-14 04:07:15,552 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-14 04:07:15,741 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c[1605,1618] [2024-11-14 04:07:15,939 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 04:07:15,961 INFO L200 MainTranslator]: Completed pre-run [2024-11-14 04:07:15,971 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49] [2024-11-14 04:07:15,974 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [58] [2024-11-14 04:07:15,975 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [95] [2024-11-14 04:07:15,975 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [461] [2024-11-14 04:07:15,976 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [570] [2024-11-14 04:07:15,977 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [608] [2024-11-14 04:07:15,977 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [861] [2024-11-14 04:07:15,978 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [929] [2024-11-14 04:07:15,983 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c[1605,1618] [2024-11-14 04:07:16,063 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 04:07:16,089 INFO L204 MainTranslator]: Completed translation [2024-11-14 04:07:16,092 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16 WrapperNode [2024-11-14 04:07:16,092 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-14 04:07:16,093 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-14 04:07:16,094 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-14 04:07:16,095 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-14 04:07:16,103 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,127 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,159 INFO L138 Inliner]: procedures = 58, calls = 106, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 229 [2024-11-14 04:07:16,160 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-14 04:07:16,160 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-14 04:07:16,161 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-14 04:07:16,161 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-14 04:07:16,169 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,170 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,172 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,172 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,178 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,182 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,184 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,185 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,188 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-14 04:07:16,189 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-14 04:07:16,189 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-14 04:07:16,189 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-14 04:07:16,190 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (1/1) ... [2024-11-14 04:07:16,197 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 04:07:16,215 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:07:16,234 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-14 04:07:16,237 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-14 04:07:16,270 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-14 04:07:16,270 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-14 04:07:16,270 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-14 04:07:16,270 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-14 04:07:16,270 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-14 04:07:16,270 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-14 04:07:16,271 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-14 04:07:16,271 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-14 04:07:16,271 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-14 04:07:16,272 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 04:07:16,272 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 04:07:16,272 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-14 04:07:16,272 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-14 04:07:16,272 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-14 04:07:16,273 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-14 04:07:16,274 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-14 04:07:16,275 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-14 04:07:16,275 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-14 04:07:16,276 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-14 04:07:16,276 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-14 04:07:16,277 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-14 04:07:16,277 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-14 04:07:16,277 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-14 04:07:16,279 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-14 04:07:16,379 INFO L238 CfgBuilder]: Building ICFG [2024-11-14 04:07:16,382 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-14 04:07:16,771 INFO L? ?]: Removed 54 outVars from TransFormulas that were not future-live. [2024-11-14 04:07:16,771 INFO L287 CfgBuilder]: Performing block encoding [2024-11-14 04:07:16,894 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-14 04:07:16,894 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-14 04:07:16,895 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 04:07:16 BoogieIcfgContainer [2024-11-14 04:07:16,895 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-14 04:07:16,897 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-14 04:07:16,897 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-14 04:07:16,902 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-14 04:07:16,902 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 14.11 04:07:15" (1/3) ... [2024-11-14 04:07:16,903 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@29490622 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 04:07:16, skipping insertion in model container [2024-11-14 04:07:16,903 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:07:16" (2/3) ... [2024-11-14 04:07:16,903 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@29490622 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 04:07:16, skipping insertion in model container [2024-11-14 04:07:16,903 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 04:07:16" (3/3) ... [2024-11-14 04:07:16,905 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec3_product62.cil.c [2024-11-14 04:07:16,920 INFO L217 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-14 04:07:16,922 INFO L154 ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec3_product62.cil.c that has 11 procedures, 75 locations, 1 initial locations, 2 loop locations, and 1 error locations. [2024-11-14 04:07:16,985 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-14 04:07:17,001 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@e1305fa, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-14 04:07:17,002 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-14 04:07:17,006 INFO L276 IsEmpty]: Start isEmpty. Operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2024-11-14 04:07:17,015 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2024-11-14 04:07:17,016 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:17,017 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:17,018 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:17,023 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:17,024 INFO L85 PathProgramCache]: Analyzing trace with hash -822215548, now seen corresponding path program 1 times [2024-11-14 04:07:17,032 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:17,033 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [582714703] [2024-11-14 04:07:17,034 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:17,034 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:17,126 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:17,187 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:07:17,187 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:17,188 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [582714703] [2024-11-14 04:07:17,189 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [582714703] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:17,189 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:17,189 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-14 04:07:17,191 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [84029315] [2024-11-14 04:07:17,193 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:17,197 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-14 04:07:17,197 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:17,216 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-14 04:07:17,216 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 04:07:17,219 INFO L87 Difference]: Start difference. First operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 04:07:17,297 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:17,297 INFO L93 Difference]: Finished difference Result 148 states and 199 transitions. [2024-11-14 04:07:17,299 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-14 04:07:17,301 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2024-11-14 04:07:17,302 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:17,313 INFO L225 Difference]: With dead ends: 148 [2024-11-14 04:07:17,314 INFO L226 Difference]: Without dead ends: 70 [2024-11-14 04:07:17,318 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 04:07:17,322 INFO L432 NwaCegarLoop]: 77 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 77 SdHoareTripleChecker+Invalid, 20 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:17,324 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 77 Invalid, 20 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-14 04:07:17,352 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2024-11-14 04:07:17,376 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 70. [2024-11-14 04:07:17,378 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 70 states, 42 states have (on average 1.3095238095238095) internal successors, (55), 51 states have internal predecessors, (55), 18 states have call successors, (18), 10 states have call predecessors, (18), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2024-11-14 04:07:17,383 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 70 states to 70 states and 90 transitions. [2024-11-14 04:07:17,386 INFO L78 Accepts]: Start accepts. Automaton has 70 states and 90 transitions. Word has length 17 [2024-11-14 04:07:17,387 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:17,387 INFO L471 AbstractCegarLoop]: Abstraction has 70 states and 90 transitions. [2024-11-14 04:07:17,387 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 04:07:17,389 INFO L276 IsEmpty]: Start isEmpty. Operand 70 states and 90 transitions. [2024-11-14 04:07:17,390 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2024-11-14 04:07:17,391 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:17,392 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:17,392 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-14 04:07:17,393 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:17,394 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:17,395 INFO L85 PathProgramCache]: Analyzing trace with hash -1326089735, now seen corresponding path program 1 times [2024-11-14 04:07:17,395 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:17,395 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2108867397] [2024-11-14 04:07:17,395 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:17,395 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:17,430 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:17,566 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:07:17,567 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:17,567 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2108867397] [2024-11-14 04:07:17,567 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2108867397] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:17,567 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:17,567 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 04:07:17,567 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1784601733] [2024-11-14 04:07:17,567 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:17,568 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 04:07:17,568 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:17,569 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 04:07:17,569 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 04:07:17,573 INFO L87 Difference]: Start difference. First operand 70 states and 90 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 04:07:17,653 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:17,655 INFO L93 Difference]: Finished difference Result 117 states and 151 transitions. [2024-11-14 04:07:17,656 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 04:07:17,656 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2024-11-14 04:07:17,656 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:17,658 INFO L225 Difference]: With dead ends: 117 [2024-11-14 04:07:17,661 INFO L226 Difference]: Without dead ends: 62 [2024-11-14 04:07:17,661 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 04:07:17,662 INFO L432 NwaCegarLoop]: 63 mSDtfsCounter, 7 mSDsluCounter, 54 mSDsCounter, 0 mSdLazyCounter, 29 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 117 SdHoareTripleChecker+Invalid, 29 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 29 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:17,662 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 117 Invalid, 29 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 29 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 04:07:17,663 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-11-14 04:07:17,673 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 62. [2024-11-14 04:07:17,673 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 37 states have (on average 1.3243243243243243) internal successors, (49), 46 states have internal predecessors, (49), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-14 04:07:17,675 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 79 transitions. [2024-11-14 04:07:17,675 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 79 transitions. Word has length 18 [2024-11-14 04:07:17,675 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:17,675 INFO L471 AbstractCegarLoop]: Abstraction has 62 states and 79 transitions. [2024-11-14 04:07:17,676 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 04:07:17,676 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 79 transitions. [2024-11-14 04:07:17,677 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2024-11-14 04:07:17,677 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:17,677 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:17,677 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-14 04:07:17,677 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:17,678 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:17,678 INFO L85 PathProgramCache]: Analyzing trace with hash -236189220, now seen corresponding path program 1 times [2024-11-14 04:07:17,678 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:17,678 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1037129076] [2024-11-14 04:07:17,678 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:17,678 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:17,727 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:18,007 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:07:18,007 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:18,007 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1037129076] [2024-11-14 04:07:18,008 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1037129076] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:18,008 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:18,008 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-14 04:07:18,008 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [561850091] [2024-11-14 04:07:18,008 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:18,008 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-14 04:07:18,008 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:18,009 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-14 04:07:18,009 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2024-11-14 04:07:18,009 INFO L87 Difference]: Start difference. First operand 62 states and 79 transitions. Second operand has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 04:07:18,258 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:18,258 INFO L93 Difference]: Finished difference Result 194 states and 248 transitions. [2024-11-14 04:07:18,261 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-14 04:07:18,261 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2024-11-14 04:07:18,261 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:18,263 INFO L225 Difference]: With dead ends: 194 [2024-11-14 04:07:18,263 INFO L226 Difference]: Without dead ends: 134 [2024-11-14 04:07:18,264 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2024-11-14 04:07:18,265 INFO L432 NwaCegarLoop]: 67 mSDtfsCounter, 67 mSDsluCounter, 200 mSDsCounter, 0 mSdLazyCounter, 95 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 267 SdHoareTripleChecker+Invalid, 99 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 95 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:18,265 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 267 Invalid, 99 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 95 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 04:07:18,268 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 134 states. [2024-11-14 04:07:18,298 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 134 to 119. [2024-11-14 04:07:18,301 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 119 states, 74 states have (on average 1.2432432432432432) internal successors, (92), 85 states have internal predecessors, (92), 24 states have call successors, (24), 17 states have call predecessors, (24), 20 states have return successors, (27), 21 states have call predecessors, (27), 24 states have call successors, (27) [2024-11-14 04:07:18,303 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 119 states to 119 states and 143 transitions. [2024-11-14 04:07:18,307 INFO L78 Accepts]: Start accepts. Automaton has 119 states and 143 transitions. Word has length 20 [2024-11-14 04:07:18,307 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:18,307 INFO L471 AbstractCegarLoop]: Abstraction has 119 states and 143 transitions. [2024-11-14 04:07:18,308 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-14 04:07:18,308 INFO L276 IsEmpty]: Start isEmpty. Operand 119 states and 143 transitions. [2024-11-14 04:07:18,309 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2024-11-14 04:07:18,309 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:18,309 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:18,309 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-14 04:07:18,310 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:18,311 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:18,312 INFO L85 PathProgramCache]: Analyzing trace with hash -882467163, now seen corresponding path program 1 times [2024-11-14 04:07:18,312 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:18,312 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [67644703] [2024-11-14 04:07:18,312 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:18,312 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:18,342 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:18,480 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:07:18,483 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:18,483 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [67644703] [2024-11-14 04:07:18,484 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [67644703] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:18,484 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:18,484 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 04:07:18,484 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1096867803] [2024-11-14 04:07:18,484 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:18,484 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 04:07:18,485 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:18,485 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 04:07:18,485 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 04:07:18,486 INFO L87 Difference]: Start difference. First operand 119 states and 143 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-14 04:07:18,558 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:18,558 INFO L93 Difference]: Finished difference Result 236 states and 286 transitions. [2024-11-14 04:07:18,561 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 04:07:18,561 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 23 [2024-11-14 04:07:18,562 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:18,563 INFO L225 Difference]: With dead ends: 236 [2024-11-14 04:07:18,563 INFO L226 Difference]: Without dead ends: 119 [2024-11-14 04:07:18,564 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 04:07:18,568 INFO L432 NwaCegarLoop]: 61 mSDtfsCounter, 67 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 61 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:18,568 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 61 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-14 04:07:18,569 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 119 states. [2024-11-14 04:07:18,598 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 119 to 119. [2024-11-14 04:07:18,599 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 119 states, 74 states have (on average 1.2162162162162162) internal successors, (90), 85 states have internal predecessors, (90), 24 states have call successors, (24), 17 states have call predecessors, (24), 20 states have return successors, (27), 21 states have call predecessors, (27), 24 states have call successors, (27) [2024-11-14 04:07:18,600 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 119 states to 119 states and 141 transitions. [2024-11-14 04:07:18,600 INFO L78 Accepts]: Start accepts. Automaton has 119 states and 141 transitions. Word has length 23 [2024-11-14 04:07:18,601 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:18,601 INFO L471 AbstractCegarLoop]: Abstraction has 119 states and 141 transitions. [2024-11-14 04:07:18,601 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-14 04:07:18,601 INFO L276 IsEmpty]: Start isEmpty. Operand 119 states and 141 transitions. [2024-11-14 04:07:18,606 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-11-14 04:07:18,606 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:18,606 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:18,607 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-14 04:07:18,607 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:18,607 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:18,607 INFO L85 PathProgramCache]: Analyzing trace with hash -2114866574, now seen corresponding path program 1 times [2024-11-14 04:07:18,607 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:18,608 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1134067185] [2024-11-14 04:07:18,608 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:18,608 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:18,661 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:18,782 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:07:18,782 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:18,782 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1134067185] [2024-11-14 04:07:18,782 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1134067185] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:18,782 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:18,783 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-14 04:07:18,783 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [43155342] [2024-11-14 04:07:18,783 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:18,783 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-14 04:07:18,783 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:18,784 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-14 04:07:18,784 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-14 04:07:18,784 INFO L87 Difference]: Start difference. First operand 119 states and 141 transitions. Second operand has 5 states, 5 states have (on average 5.0) internal successors, (25), 5 states have internal predecessors, (25), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-14 04:07:19,159 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:19,159 INFO L93 Difference]: Finished difference Result 252 states and 307 transitions. [2024-11-14 04:07:19,159 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-14 04:07:19,160 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 5.0) internal successors, (25), 5 states have internal predecessors, (25), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) Word has length 34 [2024-11-14 04:07:19,160 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:19,162 INFO L225 Difference]: With dead ends: 252 [2024-11-14 04:07:19,162 INFO L226 Difference]: Without dead ends: 192 [2024-11-14 04:07:19,163 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-14 04:07:19,163 INFO L432 NwaCegarLoop]: 73 mSDtfsCounter, 134 mSDsluCounter, 97 mSDsCounter, 0 mSdLazyCounter, 159 mSolverCounterSat, 76 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 135 SdHoareTripleChecker+Valid, 170 SdHoareTripleChecker+Invalid, 235 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 76 IncrementalHoareTripleChecker+Valid, 159 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:19,164 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [135 Valid, 170 Invalid, 235 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [76 Valid, 159 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-14 04:07:19,168 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 192 states. [2024-11-14 04:07:19,213 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 192 to 186. [2024-11-14 04:07:19,215 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 186 states, 120 states have (on average 1.2083333333333333) internal successors, (145), 130 states have internal predecessors, (145), 31 states have call successors, (31), 26 states have call predecessors, (31), 34 states have return successors, (41), 35 states have call predecessors, (41), 31 states have call successors, (41) [2024-11-14 04:07:19,217 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 186 states to 186 states and 217 transitions. [2024-11-14 04:07:19,219 INFO L78 Accepts]: Start accepts. Automaton has 186 states and 217 transitions. Word has length 34 [2024-11-14 04:07:19,220 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:19,220 INFO L471 AbstractCegarLoop]: Abstraction has 186 states and 217 transitions. [2024-11-14 04:07:19,220 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 5.0) internal successors, (25), 5 states have internal predecessors, (25), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-14 04:07:19,220 INFO L276 IsEmpty]: Start isEmpty. Operand 186 states and 217 transitions. [2024-11-14 04:07:19,221 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2024-11-14 04:07:19,222 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:19,222 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:19,222 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-14 04:07:19,222 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:19,226 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:19,226 INFO L85 PathProgramCache]: Analyzing trace with hash 2075432895, now seen corresponding path program 1 times [2024-11-14 04:07:19,226 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:19,226 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [669878183] [2024-11-14 04:07:19,226 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:19,226 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:19,256 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:19,749 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:07:19,749 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:19,750 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [669878183] [2024-11-14 04:07:19,750 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [669878183] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:19,750 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:19,750 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2024-11-14 04:07:19,750 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1766592361] [2024-11-14 04:07:19,750 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:19,751 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2024-11-14 04:07:19,751 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:19,751 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2024-11-14 04:07:19,752 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=50, Unknown=0, NotChecked=0, Total=72 [2024-11-14 04:07:19,752 INFO L87 Difference]: Start difference. First operand 186 states and 217 transitions. Second operand has 9 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 6 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-14 04:07:20,628 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:20,629 INFO L93 Difference]: Finished difference Result 543 states and 670 transitions. [2024-11-14 04:07:20,629 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 14 states. [2024-11-14 04:07:20,629 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 6 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) Word has length 39 [2024-11-14 04:07:20,630 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:20,633 INFO L225 Difference]: With dead ends: 543 [2024-11-14 04:07:20,633 INFO L226 Difference]: Without dead ends: 416 [2024-11-14 04:07:20,634 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 19 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 30 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=61, Invalid=149, Unknown=0, NotChecked=0, Total=210 [2024-11-14 04:07:20,635 INFO L432 NwaCegarLoop]: 86 mSDtfsCounter, 314 mSDsluCounter, 194 mSDsCounter, 0 mSdLazyCounter, 451 mSolverCounterSat, 139 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 336 SdHoareTripleChecker+Valid, 280 SdHoareTripleChecker+Invalid, 590 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 139 IncrementalHoareTripleChecker+Valid, 451 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.7s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:20,635 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [336 Valid, 280 Invalid, 590 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [139 Valid, 451 Invalid, 0 Unknown, 0 Unchecked, 0.7s Time] [2024-11-14 04:07:20,637 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 416 states. [2024-11-14 04:07:20,745 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 416 to 384. [2024-11-14 04:07:20,746 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 384 states, 251 states have (on average 1.2350597609561753) internal successors, (310), 271 states have internal predecessors, (310), 68 states have call successors, (68), 52 states have call predecessors, (68), 64 states have return successors, (89), 71 states have call predecessors, (89), 68 states have call successors, (89) [2024-11-14 04:07:20,755 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 384 states to 384 states and 467 transitions. [2024-11-14 04:07:20,755 INFO L78 Accepts]: Start accepts. Automaton has 384 states and 467 transitions. Word has length 39 [2024-11-14 04:07:20,756 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:20,756 INFO L471 AbstractCegarLoop]: Abstraction has 384 states and 467 transitions. [2024-11-14 04:07:20,756 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 8 states have (on average 3.5) internal successors, (28), 8 states have internal predecessors, (28), 6 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-14 04:07:20,756 INFO L276 IsEmpty]: Start isEmpty. Operand 384 states and 467 transitions. [2024-11-14 04:07:20,757 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2024-11-14 04:07:20,758 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:20,758 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:20,758 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-14 04:07:20,760 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:20,761 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:20,761 INFO L85 PathProgramCache]: Analyzing trace with hash 216051022, now seen corresponding path program 1 times [2024-11-14 04:07:20,761 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:20,761 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1187884450] [2024-11-14 04:07:20,761 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:20,761 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:20,789 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:21,097 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-14 04:07:21,097 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:21,097 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1187884450] [2024-11-14 04:07:21,097 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1187884450] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:07:21,097 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [607638753] [2024-11-14 04:07:21,097 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:21,097 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:07:21,097 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:07:21,101 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:07:21,103 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-14 04:07:21,201 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:21,205 INFO L255 TraceCheckSpWp]: Trace formula consists of 197 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-14 04:07:21,211 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:07:21,485 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:07:21,485 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:07:22,002 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-14 04:07:22,002 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [607638753] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 04:07:22,003 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1076167227] [2024-11-14 04:07:22,030 INFO L159 IcfgInterpreter]: Started Sifa with 43 locations of interest [2024-11-14 04:07:22,030 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:07:22,034 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:07:22,039 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:07:22,040 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:07:23,081 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 120 for LOIs [2024-11-14 04:07:23,121 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 142 for LOIs [2024-11-14 04:07:24,714 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 141 for LOIs [2024-11-14 04:07:25,221 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 141 for LOIs [2024-11-14 04:07:26,156 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 141 for LOIs [2024-11-14 04:07:26,721 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 148 for LOIs [2024-11-14 04:07:26,908 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:07:38,840 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSifa [1076167227] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:38,840 INFO L185 FreeRefinementEngine]: Found 1 perfect and 3 imperfect interpolant sequences. [2024-11-14 04:07:38,840 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [24] imperfect sequences [10, 9, 10] total 45 [2024-11-14 04:07:38,841 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1062931285] [2024-11-14 04:07:38,841 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:38,841 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-11-14 04:07:38,841 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:38,842 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-11-14 04:07:38,843 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=217, Invalid=1763, Unknown=0, NotChecked=0, Total=1980 [2024-11-14 04:07:38,843 INFO L87 Difference]: Start difference. First operand 384 states and 467 transitions. Second operand has 25 states, 21 states have (on average 1.4285714285714286) internal successors, (30), 19 states have internal predecessors, (30), 7 states have call successors, (7), 5 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-14 04:07:46,507 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:46,507 INFO L93 Difference]: Finished difference Result 781 states and 954 transitions. [2024-11-14 04:07:46,508 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 24 states. [2024-11-14 04:07:46,508 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 21 states have (on average 1.4285714285714286) internal successors, (30), 19 states have internal predecessors, (30), 7 states have call successors, (7), 5 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) Word has length 44 [2024-11-14 04:07:46,509 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:46,512 INFO L225 Difference]: With dead ends: 781 [2024-11-14 04:07:46,512 INFO L226 Difference]: Without dead ends: 475 [2024-11-14 04:07:46,516 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 152 GetRequests, 92 SyntacticMatches, 5 SemanticMatches, 55 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 865 ImplicationChecksByTransitivity, 16.8s TimeCoverageRelationStatistics Valid=329, Invalid=2863, Unknown=0, NotChecked=0, Total=3192 [2024-11-14 04:07:46,517 INFO L432 NwaCegarLoop]: 47 mSDtfsCounter, 87 mSDsluCounter, 378 mSDsCounter, 0 mSdLazyCounter, 1198 mSolverCounterSat, 56 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 87 SdHoareTripleChecker+Valid, 425 SdHoareTripleChecker+Invalid, 1254 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 56 IncrementalHoareTripleChecker+Valid, 1198 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 3.0s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:46,517 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [87 Valid, 425 Invalid, 1254 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [56 Valid, 1198 Invalid, 0 Unknown, 0 Unchecked, 3.0s Time] [2024-11-14 04:07:46,519 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 475 states. [2024-11-14 04:07:46,607 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 475 to 458. [2024-11-14 04:07:46,608 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 458 states, 301 states have (on average 1.212624584717608) internal successors, (365), 322 states have internal predecessors, (365), 80 states have call successors, (80), 64 states have call predecessors, (80), 76 states have return successors, (101), 82 states have call predecessors, (101), 80 states have call successors, (101) [2024-11-14 04:07:46,612 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 458 states to 458 states and 546 transitions. [2024-11-14 04:07:46,614 INFO L78 Accepts]: Start accepts. Automaton has 458 states and 546 transitions. Word has length 44 [2024-11-14 04:07:46,615 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:46,616 INFO L471 AbstractCegarLoop]: Abstraction has 458 states and 546 transitions. [2024-11-14 04:07:46,616 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 21 states have (on average 1.4285714285714286) internal successors, (30), 19 states have internal predecessors, (30), 7 states have call successors, (7), 5 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-14 04:07:46,617 INFO L276 IsEmpty]: Start isEmpty. Operand 458 states and 546 transitions. [2024-11-14 04:07:46,618 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2024-11-14 04:07:46,618 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:46,618 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:46,642 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-14 04:07:46,819 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2024-11-14 04:07:46,819 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:46,820 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:46,820 INFO L85 PathProgramCache]: Analyzing trace with hash 193768461, now seen corresponding path program 1 times [2024-11-14 04:07:46,820 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:46,820 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [813456442] [2024-11-14 04:07:46,820 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:46,820 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:46,849 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:47,216 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 04:07:47,216 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:47,217 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [813456442] [2024-11-14 04:07:47,217 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [813456442] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:47,217 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:47,217 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [11] imperfect sequences [] total 11 [2024-11-14 04:07:47,217 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [66884539] [2024-11-14 04:07:47,217 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:47,217 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2024-11-14 04:07:47,217 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:47,218 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2024-11-14 04:07:47,218 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-14 04:07:47,218 INFO L87 Difference]: Start difference. First operand 458 states and 546 transitions. Second operand has 11 states, 9 states have (on average 3.4444444444444446) internal successors, (31), 8 states have internal predecessors, (31), 2 states have call successors, (8), 1 states have call predecessors, (8), 4 states have return successors, (7), 5 states have call predecessors, (7), 2 states have call successors, (7) [2024-11-14 04:07:48,050 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:48,050 INFO L93 Difference]: Finished difference Result 1105 states and 1384 transitions. [2024-11-14 04:07:48,051 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-11-14 04:07:48,051 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 9 states have (on average 3.4444444444444446) internal successors, (31), 8 states have internal predecessors, (31), 2 states have call successors, (8), 1 states have call predecessors, (8), 4 states have return successors, (7), 5 states have call predecessors, (7), 2 states have call successors, (7) Word has length 47 [2024-11-14 04:07:48,051 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:48,058 INFO L225 Difference]: With dead ends: 1105 [2024-11-14 04:07:48,058 INFO L226 Difference]: Without dead ends: 822 [2024-11-14 04:07:48,060 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 28 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 23 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 71 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=140, Invalid=460, Unknown=0, NotChecked=0, Total=600 [2024-11-14 04:07:48,061 INFO L432 NwaCegarLoop]: 150 mSDtfsCounter, 205 mSDsluCounter, 767 mSDsCounter, 0 mSdLazyCounter, 634 mSolverCounterSat, 63 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 211 SdHoareTripleChecker+Valid, 917 SdHoareTripleChecker+Invalid, 697 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 63 IncrementalHoareTripleChecker+Valid, 634 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:48,061 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [211 Valid, 917 Invalid, 697 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [63 Valid, 634 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-14 04:07:48,062 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 822 states. [2024-11-14 04:07:48,222 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 822 to 800. [2024-11-14 04:07:48,223 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 800 states, 527 states have (on average 1.1973434535104364) internal successors, (631), 564 states have internal predecessors, (631), 140 states have call successors, (140), 108 states have call predecessors, (140), 132 states have return successors, (202), 143 states have call predecessors, (202), 140 states have call successors, (202) [2024-11-14 04:07:48,228 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 800 states to 800 states and 973 transitions. [2024-11-14 04:07:48,230 INFO L78 Accepts]: Start accepts. Automaton has 800 states and 973 transitions. Word has length 47 [2024-11-14 04:07:48,230 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:48,230 INFO L471 AbstractCegarLoop]: Abstraction has 800 states and 973 transitions. [2024-11-14 04:07:48,230 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 9 states have (on average 3.4444444444444446) internal successors, (31), 8 states have internal predecessors, (31), 2 states have call successors, (8), 1 states have call predecessors, (8), 4 states have return successors, (7), 5 states have call predecessors, (7), 2 states have call successors, (7) [2024-11-14 04:07:48,230 INFO L276 IsEmpty]: Start isEmpty. Operand 800 states and 973 transitions. [2024-11-14 04:07:48,233 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2024-11-14 04:07:48,234 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:48,234 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:48,234 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-14 04:07:48,234 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:48,235 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:48,235 INFO L85 PathProgramCache]: Analyzing trace with hash -438833478, now seen corresponding path program 1 times [2024-11-14 04:07:48,235 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:48,235 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2006829243] [2024-11-14 04:07:48,235 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:48,235 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:48,249 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:48,517 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-14 04:07:48,518 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:48,518 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2006829243] [2024-11-14 04:07:48,518 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2006829243] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:48,518 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:48,518 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-14 04:07:48,518 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1822169155] [2024-11-14 04:07:48,518 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:48,519 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-14 04:07:48,519 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:48,519 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-14 04:07:48,519 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-14 04:07:48,520 INFO L87 Difference]: Start difference. First operand 800 states and 973 transitions. Second operand has 8 states, 8 states have (on average 6.0) internal successors, (48), 7 states have internal predecessors, (48), 6 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (10), 5 states have call predecessors, (10), 6 states have call successors, (10) [2024-11-14 04:07:48,968 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:48,969 INFO L93 Difference]: Finished difference Result 1393 states and 1722 transitions. [2024-11-14 04:07:48,969 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-14 04:07:48,969 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 6.0) internal successors, (48), 7 states have internal predecessors, (48), 6 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (10), 5 states have call predecessors, (10), 6 states have call successors, (10) Word has length 76 [2024-11-14 04:07:48,970 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:48,976 INFO L225 Difference]: With dead ends: 1393 [2024-11-14 04:07:48,977 INFO L226 Difference]: Without dead ends: 865 [2024-11-14 04:07:48,979 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=45, Invalid=87, Unknown=0, NotChecked=0, Total=132 [2024-11-14 04:07:48,979 INFO L432 NwaCegarLoop]: 44 mSDtfsCounter, 134 mSDsluCounter, 64 mSDsCounter, 0 mSdLazyCounter, 215 mSolverCounterSat, 77 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 108 SdHoareTripleChecker+Invalid, 292 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 77 IncrementalHoareTripleChecker+Valid, 215 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:48,980 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 108 Invalid, 292 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [77 Valid, 215 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-14 04:07:48,981 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 865 states. [2024-11-14 04:07:49,103 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 865 to 790. [2024-11-14 04:07:49,104 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 790 states, 522 states have (on average 1.1992337164750957) internal successors, (626), 557 states have internal predecessors, (626), 137 states have call successors, (137), 109 states have call predecessors, (137), 130 states have return successors, (194), 139 states have call predecessors, (194), 137 states have call successors, (194) [2024-11-14 04:07:49,109 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 790 states to 790 states and 957 transitions. [2024-11-14 04:07:49,111 INFO L78 Accepts]: Start accepts. Automaton has 790 states and 957 transitions. Word has length 76 [2024-11-14 04:07:49,111 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:49,111 INFO L471 AbstractCegarLoop]: Abstraction has 790 states and 957 transitions. [2024-11-14 04:07:49,112 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 6.0) internal successors, (48), 7 states have internal predecessors, (48), 6 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (10), 5 states have call predecessors, (10), 6 states have call successors, (10) [2024-11-14 04:07:49,112 INFO L276 IsEmpty]: Start isEmpty. Operand 790 states and 957 transitions. [2024-11-14 04:07:49,113 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2024-11-14 04:07:49,114 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:49,114 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:49,114 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-14 04:07:49,114 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:49,114 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:49,115 INFO L85 PathProgramCache]: Analyzing trace with hash -1667739196, now seen corresponding path program 1 times [2024-11-14 04:07:49,115 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:49,115 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1842207175] [2024-11-14 04:07:49,115 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:49,115 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:49,130 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:49,538 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-14 04:07:49,539 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:49,539 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1842207175] [2024-11-14 04:07:49,539 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1842207175] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:07:49,539 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:07:49,539 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2024-11-14 04:07:49,539 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [485920593] [2024-11-14 04:07:49,539 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:07:49,539 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-11-14 04:07:49,539 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:07:49,540 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-11-14 04:07:49,540 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90 [2024-11-14 04:07:49,540 INFO L87 Difference]: Start difference. First operand 790 states and 957 transitions. Second operand has 10 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (11), 4 states have call predecessors, (11), 3 states have return successors, (10), 4 states have call predecessors, (10), 5 states have call successors, (10) [2024-11-14 04:07:50,493 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:07:50,493 INFO L93 Difference]: Finished difference Result 1393 states and 1719 transitions. [2024-11-14 04:07:50,494 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-11-14 04:07:50,494 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (11), 4 states have call predecessors, (11), 3 states have return successors, (10), 4 states have call predecessors, (10), 5 states have call successors, (10) Word has length 76 [2024-11-14 04:07:50,495 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:07:50,502 INFO L225 Difference]: With dead ends: 1393 [2024-11-14 04:07:50,502 INFO L226 Difference]: Without dead ends: 840 [2024-11-14 04:07:50,505 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 30 GetRequests, 8 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 119 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=139, Invalid=413, Unknown=0, NotChecked=0, Total=552 [2024-11-14 04:07:50,506 INFO L432 NwaCegarLoop]: 42 mSDtfsCounter, 290 mSDsluCounter, 122 mSDsCounter, 0 mSdLazyCounter, 414 mSolverCounterSat, 191 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 299 SdHoareTripleChecker+Valid, 164 SdHoareTripleChecker+Invalid, 605 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 191 IncrementalHoareTripleChecker+Valid, 414 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-14 04:07:50,509 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [299 Valid, 164 Invalid, 605 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [191 Valid, 414 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-14 04:07:50,510 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 840 states. [2024-11-14 04:07:50,672 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 840 to 794. [2024-11-14 04:07:50,674 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 794 states, 524 states have (on average 1.1946564885496183) internal successors, (626), 559 states have internal predecessors, (626), 137 states have call successors, (137), 111 states have call predecessors, (137), 132 states have return successors, (194), 139 states have call predecessors, (194), 137 states have call successors, (194) [2024-11-14 04:07:50,678 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 794 states to 794 states and 957 transitions. [2024-11-14 04:07:50,680 INFO L78 Accepts]: Start accepts. Automaton has 794 states and 957 transitions. Word has length 76 [2024-11-14 04:07:50,680 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:07:50,680 INFO L471 AbstractCegarLoop]: Abstraction has 794 states and 957 transitions. [2024-11-14 04:07:50,681 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (11), 4 states have call predecessors, (11), 3 states have return successors, (10), 4 states have call predecessors, (10), 5 states have call successors, (10) [2024-11-14 04:07:50,681 INFO L276 IsEmpty]: Start isEmpty. Operand 794 states and 957 transitions. [2024-11-14 04:07:50,683 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 79 [2024-11-14 04:07:50,686 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:07:50,686 INFO L215 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:07:50,687 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2024-11-14 04:07:50,687 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:07:50,687 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:07:50,687 INFO L85 PathProgramCache]: Analyzing trace with hash 1719612622, now seen corresponding path program 1 times [2024-11-14 04:07:50,687 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:07:50,687 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1157266914] [2024-11-14 04:07:50,687 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:50,687 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:07:50,709 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:50,832 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 16 proven. 3 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-11-14 04:07:50,833 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:07:50,833 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1157266914] [2024-11-14 04:07:50,833 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1157266914] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:07:50,833 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [661794358] [2024-11-14 04:07:50,833 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:07:50,833 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:07:50,833 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:07:50,835 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:07:50,837 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-14 04:07:50,937 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:07:50,939 INFO L255 TraceCheckSpWp]: Trace formula consists of 274 conjuncts, 22 conjuncts are in the unsatisfiable core [2024-11-14 04:07:50,942 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:07:51,214 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 12 proven. 11 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2024-11-14 04:07:51,215 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:07:51,642 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 6 proven. 2 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2024-11-14 04:07:51,642 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [661794358] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 04:07:51,643 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1033054270] [2024-11-14 04:07:51,645 INFO L159 IcfgInterpreter]: Started Sifa with 54 locations of interest [2024-11-14 04:07:51,645 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:07:51,646 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:07:51,646 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:07:51,646 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:07:54,004 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 156 for LOIs [2024-11-14 04:07:54,067 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 41 for LOIs [2024-11-14 04:07:54,607 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 39 for LOIs [2024-11-14 04:07:54,666 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 39 for LOIs [2024-11-14 04:07:54,745 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 49 for LOIs [2024-11-14 04:07:54,852 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 9 for LOIs [2024-11-14 04:07:54,853 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 21 for LOIs [2024-11-14 04:07:54,858 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 64 for LOIs [2024-11-14 04:07:54,907 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:08:01,575 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '15988#(and (= ~pumpRunning~0 0) (<= 0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0) (= ~methaneLevelCritical~0 0) (<= |old(~pumpRunning~0)| 1))' at error location [2024-11-14 04:08:01,575 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:08:01,576 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 04:08:01,576 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 9, 8] total 20 [2024-11-14 04:08:01,576 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [380422758] [2024-11-14 04:08:01,576 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 04:08:01,577 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-11-14 04:08:01,577 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:08:01,578 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-11-14 04:08:01,579 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=296, Invalid=2896, Unknown=0, NotChecked=0, Total=3192 [2024-11-14 04:08:01,579 INFO L87 Difference]: Start difference. First operand 794 states and 957 transitions. Second operand has 20 states, 18 states have (on average 6.277777777777778) internal successors, (113), 18 states have internal predecessors, (113), 8 states have call successors, (31), 7 states have call predecessors, (31), 8 states have return successors, (28), 10 states have call predecessors, (28), 8 states have call successors, (28) [2024-11-14 04:08:07,795 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:08:07,795 INFO L93 Difference]: Finished difference Result 3339 states and 4278 transitions. [2024-11-14 04:08:07,796 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 105 states. [2024-11-14 04:08:07,796 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 18 states have (on average 6.277777777777778) internal successors, (113), 18 states have internal predecessors, (113), 8 states have call successors, (31), 7 states have call predecessors, (31), 8 states have return successors, (28), 10 states have call predecessors, (28), 8 states have call successors, (28) Word has length 78 [2024-11-14 04:08:07,797 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:08:07,814 INFO L225 Difference]: With dead ends: 3339 [2024-11-14 04:08:07,815 INFO L226 Difference]: Without dead ends: 2516 [2024-11-14 04:08:07,825 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 370 GetRequests, 210 SyntacticMatches, 6 SemanticMatches, 154 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 8678 ImplicationChecksByTransitivity, 10.3s TimeCoverageRelationStatistics Valid=2099, Invalid=22081, Unknown=0, NotChecked=0, Total=24180 [2024-11-14 04:08:07,826 INFO L432 NwaCegarLoop]: 107 mSDtfsCounter, 939 mSDsluCounter, 930 mSDsCounter, 0 mSdLazyCounter, 2951 mSolverCounterSat, 683 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 941 SdHoareTripleChecker+Valid, 1037 SdHoareTripleChecker+Invalid, 3634 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 683 IncrementalHoareTripleChecker+Valid, 2951 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.3s IncrementalHoareTripleChecker+Time [2024-11-14 04:08:07,826 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [941 Valid, 1037 Invalid, 3634 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [683 Valid, 2951 Invalid, 0 Unknown, 0 Unchecked, 2.3s Time] [2024-11-14 04:08:07,829 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2516 states. [2024-11-14 04:08:08,142 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2516 to 2295. [2024-11-14 04:08:08,146 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2295 states, 1503 states have (on average 1.147039254823686) internal successors, (1724), 1576 states have internal predecessors, (1724), 397 states have call successors, (397), 343 states have call predecessors, (397), 394 states have return successors, (623), 404 states have call predecessors, (623), 397 states have call successors, (623) [2024-11-14 04:08:08,153 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2295 states to 2295 states and 2744 transitions. [2024-11-14 04:08:08,157 INFO L78 Accepts]: Start accepts. Automaton has 2295 states and 2744 transitions. Word has length 78 [2024-11-14 04:08:08,157 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:08:08,157 INFO L471 AbstractCegarLoop]: Abstraction has 2295 states and 2744 transitions. [2024-11-14 04:08:08,157 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 18 states have (on average 6.277777777777778) internal successors, (113), 18 states have internal predecessors, (113), 8 states have call successors, (31), 7 states have call predecessors, (31), 8 states have return successors, (28), 10 states have call predecessors, (28), 8 states have call successors, (28) [2024-11-14 04:08:08,158 INFO L276 IsEmpty]: Start isEmpty. Operand 2295 states and 2744 transitions. [2024-11-14 04:08:08,160 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 84 [2024-11-14 04:08:08,160 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:08:08,160 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:08:08,182 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-14 04:08:08,364 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:08:08,365 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 04:08:08,365 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:08:08,365 INFO L85 PathProgramCache]: Analyzing trace with hash 820840853, now seen corresponding path program 1 times [2024-11-14 04:08:08,365 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:08:08,365 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [131665197] [2024-11-14 04:08:08,365 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:08:08,365 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:08:08,388 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:08:08,532 INFO L134 CoverageAnalysis]: Checked inductivity of 35 backedges. 10 proven. 0 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-14 04:08:08,532 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:08:08,532 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [131665197] [2024-11-14 04:08:08,532 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [131665197] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:08:08,532 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:08:08,533 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-14 04:08:08,533 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1815791602] [2024-11-14 04:08:08,533 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:08:08,533 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-14 04:08:08,533 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:08:08,534 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-14 04:08:08,534 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2024-11-14 04:08:08,534 INFO L87 Difference]: Start difference. First operand 2295 states and 2744 transitions. Second operand has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (10), 1 states have call predecessors, (10), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-14 04:08:08,918 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:08:08,918 INFO L93 Difference]: Finished difference Result 4218 states and 5080 transitions. [2024-11-14 04:08:08,918 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-14 04:08:08,918 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (10), 1 states have call predecessors, (10), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 83 [2024-11-14 04:08:08,919 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:08:08,925 INFO L225 Difference]: With dead ends: 4218 [2024-11-14 04:08:08,925 INFO L226 Difference]: Without dead ends: 0 [2024-11-14 04:08:08,935 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=13, Invalid=17, Unknown=0, NotChecked=0, Total=30 [2024-11-14 04:08:08,935 INFO L432 NwaCegarLoop]: 83 mSDtfsCounter, 61 mSDsluCounter, 193 mSDsCounter, 0 mSdLazyCounter, 77 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 61 SdHoareTripleChecker+Valid, 276 SdHoareTripleChecker+Invalid, 79 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 77 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 04:08:08,936 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [61 Valid, 276 Invalid, 79 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 77 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 04:08:08,936 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-14 04:08:08,936 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-14 04:08:08,936 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 04:08:08,936 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-14 04:08:08,940 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 83 [2024-11-14 04:08:08,940 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:08:08,940 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-14 04:08:08,941 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (10), 1 states have call predecessors, (10), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-14 04:08:08,941 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-14 04:08:08,941 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-14 04:08:08,945 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-14 04:08:08,945 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2024-11-14 04:08:08,948 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:08:08,950 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-14 04:08:42,240 INFO L173 ceAbstractionStarter]: Computing trace abstraction results [2024-11-14 04:08:42,258 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (not (= |old(~pumpRunning~0)| 0)) (<= ~waterLevel~0 1) (= 1 ~systemActive~0)) Eliminated clause: (and (not (= ~pumpRunning~0 0)) (<= ~waterLevel~0 1) (= 1 ~systemActive~0)) [2024-11-14 04:08:42,268 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (and (or (= |old(~methaneLevelCritical~0)| 0) (not (= ~methaneLevelCritical~0 0))) (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) Eliminated clause: (and (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) [2024-11-14 04:08:42,272 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 1 ~systemActive~0) (= |old(~waterLevel~0)| ~waterLevel~0) (<= |old(~waterLevel~0)| 2)) Eliminated clause: (and (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) [2024-11-14 04:08:42,287 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and .cse0 (= |old(~pumpRunning~0)| 0) (<= ~waterLevel~0 2))))) Eliminated clause: (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and (= ~pumpRunning~0 0) .cse0 (<= ~waterLevel~0 2)))) [2024-11-14 04:08:42,293 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (let ((.cse1 (<= |old(~waterLevel~0)| 2)) (.cse0 (= 1 ~systemActive~0))) (or (and .cse0 (<= |old(~waterLevel~0)| 1)) (and (= ~pumpRunning~0 0) .cse0 .cse1) (and .cse0 .cse1 (= ~pumpRunning~0 1)) (and .cse0 (not (= ~methaneLevelCritical~0 0)) (= |old(~waterLevel~0)| 2)))) (= |old(~waterLevel~0)| ~waterLevel~0)) Eliminated clause: (let ((.cse1 (<= ~waterLevel~0 2)) (.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and .cse0 .cse1 (= ~pumpRunning~0 1)) (and (= ~pumpRunning~0 0) .cse0 .cse1) (and (= 2 ~waterLevel~0) .cse0 (not (= ~methaneLevelCritical~0 0))))) [2024-11-14 04:08:42,298 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and .cse0 (= |old(~pumpRunning~0)| 0) (<= ~waterLevel~0 2))))) Eliminated clause: (let ((.cse0 (= 1 ~systemActive~0))) (or (and (<= ~waterLevel~0 1) .cse0) (and (= ~pumpRunning~0 0) .cse0 (<= ~waterLevel~0 2)))) [2024-11-14 04:08:42,306 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 14.11 04:08:42 BoogieIcfgContainer [2024-11-14 04:08:42,306 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-14 04:08:42,307 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-14 04:08:42,307 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-14 04:08:42,307 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-14 04:08:42,308 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 04:07:16" (3/4) ... [2024-11-14 04:08:42,310 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-14 04:08:42,313 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-14 04:08:42,314 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-14 04:08:42,314 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-14 04:08:42,314 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-14 04:08:42,314 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-14 04:08:42,314 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-14 04:08:42,314 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 04:08:42,314 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-14 04:08:42,315 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-14 04:08:42,315 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-14 04:08:42,321 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 48 nodes and edges [2024-11-14 04:08:42,321 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-14 04:08:42,322 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-14 04:08:42,322 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 04:08:42,323 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 04:08:42,348 WARN L216 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == \old(pumpRunning)) && (1 == systemActive)) && (\old(waterLevel) == waterLevel)) && (\old(waterLevel) <= 2)) [2024-11-14 04:08:42,388 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == \old(pumpRunning)) && (1 == systemActive)) && (\old(waterLevel) == waterLevel)) && (\old(waterLevel) <= 2)) [2024-11-14 04:08:42,437 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/witness.graphml [2024-11-14 04:08:42,438 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/witness.yml [2024-11-14 04:08:42,438 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-14 04:08:42,439 INFO L158 Benchmark]: Toolchain (without parser) took 86962.26ms. Allocated memory was 142.6MB in the beginning and 1.2GB in the end (delta: 1.1GB). Free memory was 118.4MB in the beginning and 811.9MB in the end (delta: -693.4MB). Peak memory consumption was 400.1MB. Max. memory is 16.1GB. [2024-11-14 04:08:42,439 INFO L158 Benchmark]: CDTParser took 1.36ms. Allocated memory is still 167.8MB. Free memory is still 104.9MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 04:08:42,440 INFO L158 Benchmark]: CACSL2BoogieTranslator took 612.87ms. Allocated memory is still 142.6MB. Free memory was 118.4MB in the beginning and 99.4MB in the end (delta: 19.1MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-14 04:08:42,440 INFO L158 Benchmark]: Boogie Procedure Inliner took 66.71ms. Allocated memory is still 142.6MB. Free memory was 99.4MB in the beginning and 97.6MB in the end (delta: 1.7MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 04:08:42,440 INFO L158 Benchmark]: Boogie Preprocessor took 27.74ms. Allocated memory is still 142.6MB. Free memory was 97.3MB in the beginning and 96.2MB in the end (delta: 1.0MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 04:08:42,441 INFO L158 Benchmark]: RCFGBuilder took 706.03ms. Allocated memory is still 142.6MB. Free memory was 96.2MB in the beginning and 65.9MB in the end (delta: 30.3MB). Peak memory consumption was 33.6MB. Max. memory is 16.1GB. [2024-11-14 04:08:42,441 INFO L158 Benchmark]: TraceAbstraction took 85409.32ms. Allocated memory was 142.6MB in the beginning and 1.2GB in the end (delta: 1.1GB). Free memory was 65.6MB in the beginning and 820.2MB in the end (delta: -754.7MB). Peak memory consumption was 706.7MB. Max. memory is 16.1GB. [2024-11-14 04:08:42,441 INFO L158 Benchmark]: Witness Printer took 130.65ms. Allocated memory is still 1.2GB. Free memory was 820.2MB in the beginning and 811.9MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-14 04:08:42,444 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 1.36ms. Allocated memory is still 167.8MB. Free memory is still 104.9MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 612.87ms. Allocated memory is still 142.6MB. Free memory was 118.4MB in the beginning and 99.4MB in the end (delta: 19.1MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 66.71ms. Allocated memory is still 142.6MB. Free memory was 99.4MB in the beginning and 97.6MB in the end (delta: 1.7MB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 27.74ms. Allocated memory is still 142.6MB. Free memory was 97.3MB in the beginning and 96.2MB in the end (delta: 1.0MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 706.03ms. Allocated memory is still 142.6MB. Free memory was 96.2MB in the beginning and 65.9MB in the end (delta: 30.3MB). Peak memory consumption was 33.6MB. Max. memory is 16.1GB. * TraceAbstraction took 85409.32ms. Allocated memory was 142.6MB in the beginning and 1.2GB in the end (delta: 1.1GB). Free memory was 65.6MB in the beginning and 820.2MB in the end (delta: -754.7MB). Peak memory consumption was 706.7MB. Max. memory is 16.1GB. * Witness Printer took 130.65ms. Allocated memory is still 1.2GB. Free memory was 820.2MB in the beginning and 811.9MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49] - GenericResultAtLocation [Line: 58]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [58] - GenericResultAtLocation [Line: 95]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [95] - GenericResultAtLocation [Line: 461]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [461] - GenericResultAtLocation [Line: 570]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [570] - GenericResultAtLocation [Line: 608]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [608] - GenericResultAtLocation [Line: 861]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [861] - GenericResultAtLocation [Line: 929]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [929] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 54]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 75 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 52.0s, OverallIterations: 12, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 18.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2358 SdHoareTripleChecker+Valid, 7.9s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2305 mSDsluCounter, 3899 SdHoareTripleChecker+Invalid, 6.9s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2999 mSDsCounter, 1292 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 6259 IncrementalHoareTripleChecker+Invalid, 7551 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1292 mSolverCounterUnsat, 900 mSDtfsCounter, 6259 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 649 GetRequests, 344 SyntacticMatches, 11 SemanticMatches, 294 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 9781 ImplicationChecksByTransitivity, 28.0s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=2295occurred in iteration=11, InterpolantAutomatonStates: 223, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 1.2s AutomataMinimizationTime, 12 MinimizatonAttempts, 434 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 4.3s InterpolantComputationTime, 677 NumberOfCodeBlocks, 677 NumberOfCodeBlocksAsserted, 14 NumberOfCheckSat, 783 ConstructedInterpolants, 0 QuantifiedInterpolants, 2245 SizeOfPredicates, 9 NumberOfNonLiveVariables, 471 ConjunctsInSsa, 35 ConjunctsInUnsatCore, 16 InterpolantComputations, 10 PerfectInterpolantSequences, 180/200 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: OVERALL_TIME: 4.9s, ICFG_INTERPRETER_ENTERED_PROCEDURES: 7, DAG_INTERPRETER_EARLY_EXIT_QUERIES_NONTRIVIAL: 46, DAG_INTERPRETER_EARLY_EXITS: 1, TOOLS_POST_APPLICATIONS: 41, TOOLS_POST_TIME: 2.0s, TOOLS_POST_CALL_APPLICATIONS: 25, TOOLS_POST_CALL_TIME: 1.2s, TOOLS_POST_RETURN_APPLICATIONS: 18, TOOLS_POST_RETURN_TIME: 0.9s, TOOLS_QUANTIFIERELIM_APPLICATIONS: 84, TOOLS_QUANTIFIERELIM_TIME: 4.0s, TOOLS_QUANTIFIERELIM_MAX_TIME: 0.2s, FLUID_QUERY_TIME: 0.0s, FLUID_QUERIES: 124, FLUID_YES_ANSWERS: 0, DOMAIN_JOIN_APPLICATIONS: 16, DOMAIN_JOIN_TIME: 0.5s, DOMAIN_ALPHA_APPLICATIONS: 0, DOMAIN_ALPHA_TIME: 0.0s, DOMAIN_WIDEN_APPLICATIONS: 0, DOMAIN_WIDEN_TIME: 0.0s, DOMAIN_ISSUBSETEQ_APPLICATIONS: 0, DOMAIN_ISSUBSETEQ_TIME: 0.0s, DOMAIN_ISBOTTOM_APPLICATIONS: 46, DOMAIN_ISBOTTOM_TIME: 0.2s, LOOP_SUMMARIZER_APPLICATIONS: 0, LOOP_SUMMARIZER_CACHE_MISSES: 0, LOOP_SUMMARIZER_OVERALL_TIME: 0.0s, LOOP_SUMMARIZER_NEW_COMPUTATION_TIME: 0.0s, LOOP_SUMMARIZER_FIXPOINT_ITERATIONS: 0, CALL_SUMMARIZER_APPLICATIONS: 18, CALL_SUMMARIZER_CACHE_MISSES: 5, CALL_SUMMARIZER_OVERALL_TIME: 0.1s, CALL_SUMMARIZER_NEW_COMPUTATION_TIME: 0.1s, PROCEDURE_GRAPH_BUILDER_TIME: 0.0s, PATH_EXPR_TIME: 0.0s, REGEX_TO_DAG_TIME: 0.0s, DAG_COMPRESSION_TIME: 0.0s, DAG_COMPRESSION_PROCESSED_NODES: 348, DAG_COMPRESSION_RETAINED_NODES: 122, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 941]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 872]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 873]: Loop Invariant Derived loop invariant: (((((waterLevel <= 1) && (1 == systemActive)) && (splverifierCounter == 0)) || ((((1 == systemActive) && (methaneLevelCritical != 0)) && (splverifierCounter == 0)) && (waterLevel <= 2))) || ((((2 == waterLevel) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1))) - InvariantResult [Line: 617]: Location Invariant Derived location invariant: ((((pumpRunning == \old(pumpRunning)) && (1 == systemActive)) && (\old(waterLevel) == waterLevel)) && (\old(waterLevel) <= 2)) - ProcedureContractResult [Line: 751]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: (((pumpRunning != 0) && (waterLevel <= 1)) && (1 == systemActive)) Ensures: (((((\old(pumpRunning) != 0) && (pumpRunning == 0)) && (waterLevel <= 1)) && (1 == systemActive)) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 641]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((waterLevel <= 1) && (1 == systemActive)) Ensures: (((waterLevel <= 1) && (1 == systemActive)) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 494]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((1 == systemActive) && (waterLevel <= 2)) Ensures: (((1 == systemActive) && (waterLevel <= 2)) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 931]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 617]: Procedure Contract for timeShift Derived contract for procedure timeShift. Requires: ((1 == systemActive) && (waterLevel <= 2)) Ensures: ((((((((\old(pumpRunning) != 1) || ((waterLevel <= 1) && (pumpRunning == 1))) || ((pumpRunning == 0) && (waterLevel <= 1))) && (((((2 == waterLevel) && (methaneLevelCritical != 0)) || (\old(waterLevel) != 2)) || (waterLevel == 1)) || ((2 == waterLevel) && (pumpRunning == 1)))) && (1 == systemActive)) && ((((((pumpRunning == 0) && (\old(waterLevel) == waterLevel)) || (((pumpRunning == \old(pumpRunning)) && (\old(pumpRunning) != 0)) && (waterLevel <= 1))) || (((waterLevel != 1) && (\old(waterLevel) == waterLevel)) && (pumpRunning == 1))) || (((waterLevel != 1) && (methaneLevelCritical != 0)) && (\old(waterLevel) == waterLevel))) || (((\old(pumpRunning) != 0) && (pumpRunning == 0)) && (waterLevel <= 1)))) && (\old(waterLevel) <= 2)) && ((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 506]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: ((((waterLevel <= 1) && (1 == systemActive)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((((methaneLevelCritical != 0) || (pumpRunning == 1)) && (1 == systemActive)) && (waterLevel <= 2))) Ensures: (((((((waterLevel <= 1) && (1 == systemActive)) || ((pumpRunning == 0) && (1 == systemActive))) || (((methaneLevelCritical != 0) || (pumpRunning == 1)) && (1 == systemActive))) && (\result == methaneLevelCritical)) && ((2 == waterLevel) || (waterLevel < 2))) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 649]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: (((waterLevel <= 1) && (1 == systemActive)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) Ensures: (((((((waterLevel <= 1) && (1 == systemActive)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2))) && (((waterLevel != 1) || (\old(pumpRunning) != 0)) || (pumpRunning == 0))) && ((((\old(pumpRunning) != 0) || (methaneLevelCritical != 0)) || ((pumpRunning == 0) && (waterLevel <= 1))) || (pumpRunning == 1))) && ((pumpRunning == \old(pumpRunning)) || (\old(pumpRunning) == 0))) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 482]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: (((((waterLevel <= 1) && (1 == systemActive)) || (((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) || (((2 == waterLevel) && (1 == systemActive)) && (methaneLevelCritical != 0))) Ensures: ((((((((pumpRunning == 0) || (\old(waterLevel) < 2)) || (methaneLevelCritical != 0)) || (pumpRunning == 1)) && (1 == systemActive)) && (waterLevel <= 2)) && ((((long long) \old(waterLevel) + 1) == waterLevel) || ((2 <= \old(waterLevel)) && (\old(waterLevel) == waterLevel)))) && (((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 675]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Requires: (((waterLevel <= 1) && (1 == systemActive)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) Ensures: (((((((waterLevel <= 1) && (1 == systemActive)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2))) && (((waterLevel != 1) || (\old(pumpRunning) != 0)) || (pumpRunning == 0))) && ((((\old(pumpRunning) != 0) || (methaneLevelCritical != 0)) || ((pumpRunning == 0) && (waterLevel <= 1))) || (pumpRunning == 1))) && (((pumpRunning == \old(pumpRunning)) || (pumpRunning == 0)) || (\old(pumpRunning) == 0))) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 759]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: (((((waterLevel != 1) && (waterLevel <= 1)) && (1 == systemActive)) || (((pumpRunning != 0) && (waterLevel <= 1)) && (1 == systemActive))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: ((((\result == 0) || (methaneLevelCritical != 0)) && (((((waterLevel != 1) && (waterLevel <= 1)) && (1 == systemActive)) || (((pumpRunning != 0) && (waterLevel <= 1)) && (1 == systemActive))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)))) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) RESULT: Ultimate proved your program to be correct! [2024-11-14 04:08:42,495 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ecf12440-d7d9-4a18-8951-762af5bfd93e/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE