./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 826ab2ba Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 12ff1c3352fe657a44d5503b0c0550124efd9c84e66a259e2d68c9ba31095791 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-826ab2b [2024-11-14 02:41:59,557 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-14 02:41:59,629 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-Reach-32bit-Taipan_Default.epf [2024-11-14 02:41:59,642 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-14 02:41:59,642 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-14 02:41:59,686 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-14 02:41:59,686 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-14 02:41:59,687 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-14 02:41:59,687 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-14 02:41:59,687 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-14 02:41:59,687 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-14 02:41:59,688 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-14 02:41:59,688 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-14 02:41:59,688 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-14 02:41:59,688 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-14 02:41:59,688 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-14 02:41:59,688 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-14 02:41:59,688 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-14 02:41:59,688 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-14 02:41:59,688 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-14 02:41:59,689 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-14 02:41:59,689 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-14 02:41:59,689 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-14 02:41:59,689 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-14 02:41:59,689 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-14 02:41:59,689 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-14 02:41:59,691 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-14 02:41:59,692 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-14 02:41:59,692 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-14 02:41:59,692 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-14 02:41:59,692 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-14 02:41:59,692 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-14 02:41:59,692 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-14 02:41:59,692 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-14 02:41:59,693 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-14 02:41:59,693 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-14 02:41:59,693 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-14 02:41:59,694 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-14 02:41:59,694 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 02:41:59,694 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-14 02:41:59,694 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-14 02:41:59,694 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-14 02:41:59,695 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-14 02:41:59,695 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-14 02:41:59,695 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-14 02:41:59,695 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-14 02:41:59,695 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-14 02:41:59,695 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 12ff1c3352fe657a44d5503b0c0550124efd9c84e66a259e2d68c9ba31095791 [2024-11-14 02:42:00,059 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-14 02:42:00,072 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-14 02:42:00,078 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-14 02:42:00,080 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-14 02:42:00,080 INFO L274 PluginConnector]: CDTParser initialized [2024-11-14 02:42:00,082 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/../../sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c Unable to find full path for "g++" [2024-11-14 02:42:02,088 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-14 02:42:02,419 INFO L384 CDTParser]: Found 1 translation units. [2024-11-14 02:42:02,419 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c [2024-11-14 02:42:02,432 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/data/c38176cd5/ed5efddc530949da81600c94573191e8/FLAG4fbe9f8f1 [2024-11-14 02:42:02,445 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/data/c38176cd5/ed5efddc530949da81600c94573191e8 [2024-11-14 02:42:02,448 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-14 02:42:02,449 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-14 02:42:02,451 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-14 02:42:02,451 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-14 02:42:02,455 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-14 02:42:02,456 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:02,457 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@16649de4 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02, skipping insertion in model container [2024-11-14 02:42:02,457 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:02,492 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-14 02:42:02,813 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c[18376,18389] [2024-11-14 02:42:02,824 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 02:42:02,841 INFO L200 MainTranslator]: Completed pre-run [2024-11-14 02:42:02,850 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [49] [2024-11-14 02:42:02,852 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [118] [2024-11-14 02:42:02,852 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [372] [2024-11-14 02:42:02,852 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [476] [2024-11-14 02:42:02,853 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [842] [2024-11-14 02:42:02,853 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [892] [2024-11-14 02:42:02,854 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [930] [2024-11-14 02:42:02,855 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [939] [2024-11-14 02:42:02,953 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c[18376,18389] [2024-11-14 02:42:02,960 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 02:42:02,988 INFO L204 MainTranslator]: Completed translation [2024-11-14 02:42:02,989 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02 WrapperNode [2024-11-14 02:42:02,989 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-14 02:42:02,990 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-14 02:42:02,990 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-14 02:42:02,990 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-14 02:42:02,996 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,014 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,053 INFO L138 Inliner]: procedures = 59, calls = 107, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 240 [2024-11-14 02:42:03,054 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-14 02:42:03,054 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-14 02:42:03,054 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-14 02:42:03,054 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-14 02:42:03,067 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,067 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,071 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,074 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,080 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,088 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,089 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,090 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,095 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-14 02:42:03,098 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-14 02:42:03,099 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-14 02:42:03,101 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-14 02:42:03,102 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (1/1) ... [2024-11-14 02:42:03,115 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 02:42:03,131 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 02:42:03,149 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-14 02:42:03,153 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-14 02:42:03,184 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-14 02:42:03,184 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-14 02:42:03,184 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-14 02:42:03,184 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-14 02:42:03,184 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-14 02:42:03,184 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-14 02:42:03,184 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-14 02:42:03,185 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 02:42:03,185 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 02:42:03,185 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-14 02:42:03,185 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-14 02:42:03,185 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-14 02:42:03,186 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-14 02:42:03,186 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-14 02:42:03,187 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-14 02:42:03,187 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-14 02:42:03,187 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-14 02:42:03,187 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-14 02:42:03,187 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-14 02:42:03,187 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-14 02:42:03,187 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-14 02:42:03,187 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-14 02:42:03,188 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-14 02:42:03,188 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-14 02:42:03,290 INFO L238 CfgBuilder]: Building ICFG [2024-11-14 02:42:03,292 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-14 02:42:03,664 INFO L? ?]: Removed 52 outVars from TransFormulas that were not future-live. [2024-11-14 02:42:03,664 INFO L287 CfgBuilder]: Performing block encoding [2024-11-14 02:42:03,815 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-14 02:42:03,816 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-14 02:42:03,816 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 02:42:03 BoogieIcfgContainer [2024-11-14 02:42:03,816 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-14 02:42:03,820 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-14 02:42:03,821 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-14 02:42:03,826 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-14 02:42:03,826 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 14.11 02:42:02" (1/3) ... [2024-11-14 02:42:03,827 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@76b01b11 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 02:42:03, skipping insertion in model container [2024-11-14 02:42:03,827 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 02:42:02" (2/3) ... [2024-11-14 02:42:03,827 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@76b01b11 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 02:42:03, skipping insertion in model container [2024-11-14 02:42:03,827 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 02:42:03" (3/3) ... [2024-11-14 02:42:03,830 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product61.cil.c [2024-11-14 02:42:03,846 INFO L217 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-14 02:42:03,848 INFO L154 ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec5_product61.cil.c that has 11 procedures, 75 locations, 1 initial locations, 2 loop locations, and 1 error locations. [2024-11-14 02:42:03,932 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-14 02:42:03,949 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@6e88b30, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-14 02:42:03,949 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-14 02:42:03,955 INFO L276 IsEmpty]: Start isEmpty. Operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2024-11-14 02:42:03,963 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2024-11-14 02:42:03,963 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:03,965 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:03,965 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:03,970 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:03,971 INFO L85 PathProgramCache]: Analyzing trace with hash 462207574, now seen corresponding path program 1 times [2024-11-14 02:42:03,978 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:03,979 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [380897023] [2024-11-14 02:42:03,979 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:03,980 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:04,087 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:04,180 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:42:04,180 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:04,180 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [380897023] [2024-11-14 02:42:04,181 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [380897023] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:42:04,181 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:42:04,181 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-14 02:42:04,186 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1929860201] [2024-11-14 02:42:04,187 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:42:04,190 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-14 02:42:04,191 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:04,215 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-14 02:42:04,216 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 02:42:04,218 INFO L87 Difference]: Start difference. First operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-14 02:42:04,317 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:04,318 INFO L93 Difference]: Finished difference Result 148 states and 199 transitions. [2024-11-14 02:42:04,320 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-14 02:42:04,322 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2024-11-14 02:42:04,323 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:04,333 INFO L225 Difference]: With dead ends: 148 [2024-11-14 02:42:04,333 INFO L226 Difference]: Without dead ends: 70 [2024-11-14 02:42:04,338 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 02:42:04,343 INFO L432 NwaCegarLoop]: 78 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 78 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:04,344 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 78 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 02:42:04,360 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2024-11-14 02:42:04,379 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 70. [2024-11-14 02:42:04,381 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 70 states, 42 states have (on average 1.3095238095238095) internal successors, (55), 51 states have internal predecessors, (55), 18 states have call successors, (18), 10 states have call predecessors, (18), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2024-11-14 02:42:04,389 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 70 states to 70 states and 90 transitions. [2024-11-14 02:42:04,392 INFO L78 Accepts]: Start accepts. Automaton has 70 states and 90 transitions. Word has length 21 [2024-11-14 02:42:04,393 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:04,393 INFO L471 AbstractCegarLoop]: Abstraction has 70 states and 90 transitions. [2024-11-14 02:42:04,394 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-14 02:42:04,394 INFO L276 IsEmpty]: Start isEmpty. Operand 70 states and 90 transitions. [2024-11-14 02:42:04,396 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2024-11-14 02:42:04,396 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:04,396 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:04,396 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-14 02:42:04,396 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:04,399 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:04,399 INFO L85 PathProgramCache]: Analyzing trace with hash -1141394441, now seen corresponding path program 1 times [2024-11-14 02:42:04,399 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:04,399 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [784433808] [2024-11-14 02:42:04,399 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:04,400 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:04,433 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:04,523 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:42:04,523 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:04,523 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [784433808] [2024-11-14 02:42:04,524 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [784433808] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:42:04,524 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:42:04,524 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 02:42:04,524 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2097323474] [2024-11-14 02:42:04,524 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:42:04,525 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 02:42:04,525 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:04,525 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 02:42:04,526 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:42:04,526 INFO L87 Difference]: Start difference. First operand 70 states and 90 transitions. Second operand has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-14 02:42:04,605 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:04,605 INFO L93 Difference]: Finished difference Result 117 states and 151 transitions. [2024-11-14 02:42:04,607 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 02:42:04,608 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 22 [2024-11-14 02:42:04,608 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:04,609 INFO L225 Difference]: With dead ends: 117 [2024-11-14 02:42:04,609 INFO L226 Difference]: Without dead ends: 62 [2024-11-14 02:42:04,609 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:42:04,612 INFO L432 NwaCegarLoop]: 64 mSDtfsCounter, 7 mSDsluCounter, 55 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:04,612 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 119 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 02:42:04,613 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-11-14 02:42:04,624 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 62. [2024-11-14 02:42:04,624 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 37 states have (on average 1.3243243243243243) internal successors, (49), 46 states have internal predecessors, (49), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-14 02:42:04,626 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 79 transitions. [2024-11-14 02:42:04,626 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 79 transitions. Word has length 22 [2024-11-14 02:42:04,626 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:04,626 INFO L471 AbstractCegarLoop]: Abstraction has 62 states and 79 transitions. [2024-11-14 02:42:04,627 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-14 02:42:04,627 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 79 transitions. [2024-11-14 02:42:04,628 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2024-11-14 02:42:04,628 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:04,628 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:04,628 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-14 02:42:04,629 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:04,629 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:04,629 INFO L85 PathProgramCache]: Analyzing trace with hash -1926490144, now seen corresponding path program 1 times [2024-11-14 02:42:04,629 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:04,629 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1312086836] [2024-11-14 02:42:04,630 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:04,630 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:04,656 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:04,804 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:42:04,805 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:04,805 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1312086836] [2024-11-14 02:42:04,805 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1312086836] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:42:04,805 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:42:04,805 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 02:42:04,806 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [552304093] [2024-11-14 02:42:04,806 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:42:04,806 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 02:42:04,807 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:04,808 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 02:42:04,808 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:42:04,809 INFO L87 Difference]: Start difference. First operand 62 states and 79 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-14 02:42:04,876 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:04,876 INFO L93 Difference]: Finished difference Result 122 states and 157 transitions. [2024-11-14 02:42:04,880 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 02:42:04,880 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 24 [2024-11-14 02:42:04,881 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:04,882 INFO L225 Difference]: With dead ends: 122 [2024-11-14 02:42:04,882 INFO L226 Difference]: Without dead ends: 62 [2024-11-14 02:42:04,882 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:42:04,883 INFO L432 NwaCegarLoop]: 62 mSDtfsCounter, 66 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 16 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 66 SdHoareTripleChecker+Valid, 62 SdHoareTripleChecker+Invalid, 16 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 16 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:04,884 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [66 Valid, 62 Invalid, 16 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 16 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-14 02:42:04,885 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 62 states. [2024-11-14 02:42:04,899 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 62 to 62. [2024-11-14 02:42:04,899 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 62 states, 37 states have (on average 1.2972972972972974) internal successors, (48), 46 states have internal predecessors, (48), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-14 02:42:04,900 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 62 states to 62 states and 78 transitions. [2024-11-14 02:42:04,900 INFO L78 Accepts]: Start accepts. Automaton has 62 states and 78 transitions. Word has length 24 [2024-11-14 02:42:04,903 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:04,903 INFO L471 AbstractCegarLoop]: Abstraction has 62 states and 78 transitions. [2024-11-14 02:42:04,904 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-14 02:42:04,904 INFO L276 IsEmpty]: Start isEmpty. Operand 62 states and 78 transitions. [2024-11-14 02:42:04,905 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-11-14 02:42:04,906 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:04,906 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:04,906 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-14 02:42:04,906 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:04,906 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:04,906 INFO L85 PathProgramCache]: Analyzing trace with hash 1080391580, now seen corresponding path program 1 times [2024-11-14 02:42:04,907 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:04,907 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [559256450] [2024-11-14 02:42:04,907 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:04,907 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:04,937 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:05,050 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:42:05,050 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:05,050 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [559256450] [2024-11-14 02:42:05,051 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [559256450] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:42:05,051 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:42:05,051 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 02:42:05,051 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [300125524] [2024-11-14 02:42:05,051 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:42:05,051 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 02:42:05,052 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:05,052 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 02:42:05,052 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:42:05,053 INFO L87 Difference]: Start difference. First operand 62 states and 78 transitions. Second operand has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-14 02:42:05,182 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:05,184 INFO L93 Difference]: Finished difference Result 165 states and 212 transitions. [2024-11-14 02:42:05,184 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 02:42:05,185 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 34 [2024-11-14 02:42:05,185 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:05,186 INFO L225 Difference]: With dead ends: 165 [2024-11-14 02:42:05,186 INFO L226 Difference]: Without dead ends: 105 [2024-11-14 02:42:05,187 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 02:42:05,188 INFO L432 NwaCegarLoop]: 70 mSDtfsCounter, 48 mSDsluCounter, 49 mSDsCounter, 0 mSdLazyCounter, 30 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 48 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 36 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 30 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:05,188 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [48 Valid, 119 Invalid, 36 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 30 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 02:42:05,192 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 105 states. [2024-11-14 02:42:05,217 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 105 to 103. [2024-11-14 02:42:05,219 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 103 states, 65 states have (on average 1.2461538461538462) internal successors, (81), 73 states have internal predecessors, (81), 20 states have call successors, (20), 17 states have call predecessors, (20), 17 states have return successors, (26), 18 states have call predecessors, (26), 20 states have call successors, (26) [2024-11-14 02:42:05,222 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 103 states to 103 states and 127 transitions. [2024-11-14 02:42:05,225 INFO L78 Accepts]: Start accepts. Automaton has 103 states and 127 transitions. Word has length 34 [2024-11-14 02:42:05,225 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:05,225 INFO L471 AbstractCegarLoop]: Abstraction has 103 states and 127 transitions. [2024-11-14 02:42:05,225 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-14 02:42:05,225 INFO L276 IsEmpty]: Start isEmpty. Operand 103 states and 127 transitions. [2024-11-14 02:42:05,226 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2024-11-14 02:42:05,228 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:05,228 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:05,229 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-14 02:42:05,229 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:05,229 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:05,229 INFO L85 PathProgramCache]: Analyzing trace with hash -1913310562, now seen corresponding path program 1 times [2024-11-14 02:42:05,230 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:05,230 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [776590511] [2024-11-14 02:42:05,230 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:05,230 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:05,259 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:05,506 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-14 02:42:05,506 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:05,506 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [776590511] [2024-11-14 02:42:05,506 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [776590511] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:42:05,506 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:42:05,506 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-14 02:42:05,507 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [399770384] [2024-11-14 02:42:05,507 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:42:05,507 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-14 02:42:05,507 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:05,508 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-14 02:42:05,508 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-11-14 02:42:05,508 INFO L87 Difference]: Start difference. First operand 103 states and 127 transitions. Second operand has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-14 02:42:05,999 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:06,000 INFO L93 Difference]: Finished difference Result 228 states and 283 transitions. [2024-11-14 02:42:06,000 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-14 02:42:06,001 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) Word has length 40 [2024-11-14 02:42:06,001 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:06,002 INFO L225 Difference]: With dead ends: 228 [2024-11-14 02:42:06,006 INFO L226 Difference]: Without dead ends: 127 [2024-11-14 02:42:06,007 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 19 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 18 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=48, Invalid=134, Unknown=0, NotChecked=0, Total=182 [2024-11-14 02:42:06,008 INFO L432 NwaCegarLoop]: 51 mSDtfsCounter, 76 mSDsluCounter, 192 mSDsCounter, 0 mSdLazyCounter, 230 mSolverCounterSat, 40 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 83 SdHoareTripleChecker+Valid, 243 SdHoareTripleChecker+Invalid, 270 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 40 IncrementalHoareTripleChecker+Valid, 230 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:06,009 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [83 Valid, 243 Invalid, 270 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [40 Valid, 230 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-14 02:42:06,010 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 127 states. [2024-11-14 02:42:06,045 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 127 to 125. [2024-11-14 02:42:06,046 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 125 states, 80 states have (on average 1.225) internal successors, (98), 88 states have internal predecessors, (98), 22 states have call successors, (22), 17 states have call predecessors, (22), 22 states have return successors, (33), 24 states have call predecessors, (33), 22 states have call successors, (33) [2024-11-14 02:42:06,047 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 125 states to 125 states and 153 transitions. [2024-11-14 02:42:06,048 INFO L78 Accepts]: Start accepts. Automaton has 125 states and 153 transitions. Word has length 40 [2024-11-14 02:42:06,049 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:06,049 INFO L471 AbstractCegarLoop]: Abstraction has 125 states and 153 transitions. [2024-11-14 02:42:06,050 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-14 02:42:06,050 INFO L276 IsEmpty]: Start isEmpty. Operand 125 states and 153 transitions. [2024-11-14 02:42:06,051 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-11-14 02:42:06,051 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:06,051 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:06,053 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-14 02:42:06,054 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:06,054 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:06,056 INFO L85 PathProgramCache]: Analyzing trace with hash 2145096312, now seen corresponding path program 1 times [2024-11-14 02:42:06,056 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:06,056 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1739611372] [2024-11-14 02:42:06,056 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:06,057 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:06,094 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:06,419 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:42:06,420 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:06,420 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1739611372] [2024-11-14 02:42:06,420 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1739611372] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:42:06,420 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:42:06,420 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-14 02:42:06,420 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [727879075] [2024-11-14 02:42:06,420 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:42:06,420 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-14 02:42:06,420 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:06,421 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-14 02:42:06,421 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-11-14 02:42:06,421 INFO L87 Difference]: Start difference. First operand 125 states and 153 transitions. Second operand has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-14 02:42:06,663 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:06,663 INFO L93 Difference]: Finished difference Result 322 states and 394 transitions. [2024-11-14 02:42:06,663 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-14 02:42:06,663 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) Word has length 41 [2024-11-14 02:42:06,664 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:06,665 INFO L225 Difference]: With dead ends: 322 [2024-11-14 02:42:06,666 INFO L226 Difference]: Without dead ends: 199 [2024-11-14 02:42:06,670 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2024-11-14 02:42:06,671 INFO L432 NwaCegarLoop]: 91 mSDtfsCounter, 92 mSDsluCounter, 154 mSDsCounter, 0 mSdLazyCounter, 129 mSolverCounterSat, 17 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 92 SdHoareTripleChecker+Valid, 245 SdHoareTripleChecker+Invalid, 146 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 17 IncrementalHoareTripleChecker+Valid, 129 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:06,671 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [92 Valid, 245 Invalid, 146 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [17 Valid, 129 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 02:42:06,672 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 199 states. [2024-11-14 02:42:06,725 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 199 to 195. [2024-11-14 02:42:06,725 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 195 states, 123 states have (on average 1.1951219512195121) internal successors, (147), 136 states have internal predecessors, (147), 37 states have call successors, (37), 31 states have call predecessors, (37), 34 states have return successors, (52), 36 states have call predecessors, (52), 37 states have call successors, (52) [2024-11-14 02:42:06,728 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 195 states to 195 states and 236 transitions. [2024-11-14 02:42:06,729 INFO L78 Accepts]: Start accepts. Automaton has 195 states and 236 transitions. Word has length 41 [2024-11-14 02:42:06,729 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:06,729 INFO L471 AbstractCegarLoop]: Abstraction has 195 states and 236 transitions. [2024-11-14 02:42:06,729 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-14 02:42:06,729 INFO L276 IsEmpty]: Start isEmpty. Operand 195 states and 236 transitions. [2024-11-14 02:42:06,730 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2024-11-14 02:42:06,730 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:06,730 INFO L215 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:06,730 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-14 02:42:06,731 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:06,731 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:06,731 INFO L85 PathProgramCache]: Analyzing trace with hash 1243205280, now seen corresponding path program 1 times [2024-11-14 02:42:06,731 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:06,731 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [752059408] [2024-11-14 02:42:06,735 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:06,735 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:06,760 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:07,120 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2024-11-14 02:42:07,120 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:07,120 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [752059408] [2024-11-14 02:42:07,120 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [752059408] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:42:07,120 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 02:42:07,120 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-14 02:42:07,121 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [135242915] [2024-11-14 02:42:07,121 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:42:07,121 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-14 02:42:07,121 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:07,121 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-14 02:42:07,122 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2024-11-14 02:42:07,122 INFO L87 Difference]: Start difference. First operand 195 states and 236 transitions. Second operand has 8 states, 7 states have (on average 4.285714285714286) internal successors, (30), 7 states have internal predecessors, (30), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) [2024-11-14 02:42:07,874 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:07,874 INFO L93 Difference]: Finished difference Result 449 states and 556 transitions. [2024-11-14 02:42:07,874 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-11-14 02:42:07,875 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 4.285714285714286) internal successors, (30), 7 states have internal predecessors, (30), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) Word has length 44 [2024-11-14 02:42:07,875 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:07,878 INFO L225 Difference]: With dead ends: 449 [2024-11-14 02:42:07,880 INFO L226 Difference]: Without dead ends: 309 [2024-11-14 02:42:07,882 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 17 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=54, Invalid=102, Unknown=0, NotChecked=0, Total=156 [2024-11-14 02:42:07,883 INFO L432 NwaCegarLoop]: 63 mSDtfsCounter, 173 mSDsluCounter, 193 mSDsCounter, 0 mSdLazyCounter, 392 mSolverCounterSat, 70 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 182 SdHoareTripleChecker+Valid, 256 SdHoareTripleChecker+Invalid, 462 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 70 IncrementalHoareTripleChecker+Valid, 392 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:07,885 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [182 Valid, 256 Invalid, 462 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [70 Valid, 392 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-14 02:42:07,887 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 309 states. [2024-11-14 02:42:07,955 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 309 to 285. [2024-11-14 02:42:07,956 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 285 states, 184 states have (on average 1.201086956521739) internal successors, (221), 202 states have internal predecessors, (221), 52 states have call successors, (52), 39 states have call predecessors, (52), 48 states have return successors, (75), 55 states have call predecessors, (75), 52 states have call successors, (75) [2024-11-14 02:42:07,961 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 285 states to 285 states and 348 transitions. [2024-11-14 02:42:07,961 INFO L78 Accepts]: Start accepts. Automaton has 285 states and 348 transitions. Word has length 44 [2024-11-14 02:42:07,962 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:07,962 INFO L471 AbstractCegarLoop]: Abstraction has 285 states and 348 transitions. [2024-11-14 02:42:07,963 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 4.285714285714286) internal successors, (30), 7 states have internal predecessors, (30), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) [2024-11-14 02:42:07,963 INFO L276 IsEmpty]: Start isEmpty. Operand 285 states and 348 transitions. [2024-11-14 02:42:07,966 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 79 [2024-11-14 02:42:07,966 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:07,966 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:07,968 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-14 02:42:07,968 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:07,969 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:07,969 INFO L85 PathProgramCache]: Analyzing trace with hash 1058381755, now seen corresponding path program 1 times [2024-11-14 02:42:07,969 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:07,969 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1839791554] [2024-11-14 02:42:07,969 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:07,969 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:08,008 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:08,303 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 8 proven. 14 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2024-11-14 02:42:08,303 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:08,304 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1839791554] [2024-11-14 02:42:08,304 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1839791554] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 02:42:08,304 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [533806131] [2024-11-14 02:42:08,304 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:08,305 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:42:08,305 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 02:42:08,308 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 02:42:08,310 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-14 02:42:08,450 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:08,453 INFO L255 TraceCheckSpWp]: Trace formula consists of 292 conjuncts, 14 conjuncts are in the unsatisfiable core [2024-11-14 02:42:08,462 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 02:42:08,707 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 35 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 02:42:08,707 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 02:42:08,964 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 15 proven. 1 refuted. 0 times theorem prover too weak. 20 trivial. 0 not checked. [2024-11-14 02:42:08,964 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [533806131] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 02:42:08,964 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [466946630] [2024-11-14 02:42:08,992 INFO L159 IcfgInterpreter]: Started Sifa with 45 locations of interest [2024-11-14 02:42:08,992 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 02:42:08,996 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 02:42:09,002 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 02:42:09,002 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 02:42:12,963 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 137 for LOIs [2024-11-14 02:42:13,015 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 36 for LOIs [2024-11-14 02:42:13,570 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 62 for LOIs [2024-11-14 02:42:13,628 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 34 for LOIs [2024-11-14 02:42:13,721 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 34 for LOIs [2024-11-14 02:42:13,815 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 35 for LOIs [2024-11-14 02:42:13,822 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 02:42:20,205 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4372#(and (= ~methaneLevelCritical~0 0) (not (= 2 ~waterLevel~0)) (<= 2 ~waterLevel~0) (= |old(~pumpRunning~0)| 0) (<= ~waterLevel~0 2147483647) (= |old(~waterLevel~0)| ~waterLevel~0) (exists ((|v_ULTIMATE.start_test_~tmp___1~0#1_35| Int) (|v_ULTIMATE.start_test_#t~nondet7#1_BEFORE_CALL_7| Int) (|v_ULTIMATE.start_test_~tmp___1~0#1_19| Int) (|v_ULTIMATE.start_test_~tmp___2~0#1_16| Int) (|v_ULTIMATE.start_test_~tmp___1~0#1_BEFORE_CALL_7| Int) (|v_ULTIMATE.start_test_#t~nondet7#1_18| Int)) (and (<= 0 (+ 2147483648 |v_ULTIMATE.start_test_~tmp___2~0#1_16|)) (<= |v_ULTIMATE.start_test_~tmp___2~0#1_16| 2147483647) (or (and (= |v_ULTIMATE.start_test_~tmp___1~0#1_BEFORE_CALL_7| |v_ULTIMATE.start_test_~tmp___1~0#1_35|) (= |v_ULTIMATE.start_test_#t~nondet7#1_BEFORE_CALL_7| |v_ULTIMATE.start_test_#t~nondet7#1_18|) (not (= 0 |v_ULTIMATE.start_test_~tmp___2~0#1_16|))) (and (<= 0 (+ |v_ULTIMATE.start_test_~tmp___1~0#1_19| 2147483648)) (= 0 |v_ULTIMATE.start_test_~tmp___2~0#1_16|) (<= |v_ULTIMATE.start_test_~tmp___1~0#1_19| 2147483647))))) (= ~switchedOnBeforeTS~0 0) (not (= 0 ~systemActive~0)) (= ~pumpRunning~0 1) (= |old(~switchedOnBeforeTS~0)| 0))' at error location [2024-11-14 02:42:20,207 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 02:42:20,207 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 02:42:20,207 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 6, 6] total 15 [2024-11-14 02:42:20,208 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2022932308] [2024-11-14 02:42:20,208 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 02:42:20,208 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2024-11-14 02:42:20,208 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:20,209 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2024-11-14 02:42:20,210 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=209, Invalid=1771, Unknown=0, NotChecked=0, Total=1980 [2024-11-14 02:42:20,218 INFO L87 Difference]: Start difference. First operand 285 states and 348 transitions. Second operand has 15 states, 14 states have (on average 6.5) internal successors, (91), 14 states have internal predecessors, (91), 6 states have call successors, (21), 4 states have call predecessors, (21), 6 states have return successors, (21), 8 states have call predecessors, (21), 6 states have call successors, (21) [2024-11-14 02:42:23,393 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:23,394 INFO L93 Difference]: Finished difference Result 1998 states and 2532 transitions. [2024-11-14 02:42:23,394 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 55 states. [2024-11-14 02:42:23,395 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 14 states have (on average 6.5) internal successors, (91), 14 states have internal predecessors, (91), 6 states have call successors, (21), 4 states have call predecessors, (21), 6 states have return successors, (21), 8 states have call predecessors, (21), 6 states have call successors, (21) Word has length 78 [2024-11-14 02:42:23,395 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:23,409 INFO L225 Difference]: With dead ends: 1998 [2024-11-14 02:42:23,409 INFO L226 Difference]: Without dead ends: 1715 [2024-11-14 02:42:23,417 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 309 GetRequests, 209 SyntacticMatches, 6 SemanticMatches, 94 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2958 ImplicationChecksByTransitivity, 7.9s TimeCoverageRelationStatistics Valid=883, Invalid=8237, Unknown=0, NotChecked=0, Total=9120 [2024-11-14 02:42:23,417 INFO L432 NwaCegarLoop]: 212 mSDtfsCounter, 752 mSDsluCounter, 994 mSDsCounter, 0 mSdLazyCounter, 1608 mSolverCounterSat, 485 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 757 SdHoareTripleChecker+Valid, 1206 SdHoareTripleChecker+Invalid, 2093 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 485 IncrementalHoareTripleChecker+Valid, 1608 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.5s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:23,418 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [757 Valid, 1206 Invalid, 2093 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [485 Valid, 1608 Invalid, 0 Unknown, 0 Unchecked, 1.5s Time] [2024-11-14 02:42:23,423 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1715 states. [2024-11-14 02:42:23,627 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1715 to 1379. [2024-11-14 02:42:23,629 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1379 states, 892 states have (on average 1.147982062780269) internal successors, (1024), 963 states have internal predecessors, (1024), 243 states have call successors, (243), 210 states have call predecessors, (243), 243 states have return successors, (355), 246 states have call predecessors, (355), 243 states have call successors, (355) [2024-11-14 02:42:23,640 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1379 states to 1379 states and 1622 transitions. [2024-11-14 02:42:23,645 INFO L78 Accepts]: Start accepts. Automaton has 1379 states and 1622 transitions. Word has length 78 [2024-11-14 02:42:23,646 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:23,647 INFO L471 AbstractCegarLoop]: Abstraction has 1379 states and 1622 transitions. [2024-11-14 02:42:23,647 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 14 states have (on average 6.5) internal successors, (91), 14 states have internal predecessors, (91), 6 states have call successors, (21), 4 states have call predecessors, (21), 6 states have return successors, (21), 8 states have call predecessors, (21), 6 states have call successors, (21) [2024-11-14 02:42:23,647 INFO L276 IsEmpty]: Start isEmpty. Operand 1379 states and 1622 transitions. [2024-11-14 02:42:23,652 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 83 [2024-11-14 02:42:23,653 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:23,653 INFO L215 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:23,668 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-14 02:42:23,853 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:42:23,854 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:23,854 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:23,854 INFO L85 PathProgramCache]: Analyzing trace with hash 1302345638, now seen corresponding path program 1 times [2024-11-14 02:42:23,854 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:23,854 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1613671326] [2024-11-14 02:42:23,854 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:23,854 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:23,877 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:24,158 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 5 proven. 17 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2024-11-14 02:42:24,158 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:24,158 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1613671326] [2024-11-14 02:42:24,158 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1613671326] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 02:42:24,158 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1887735198] [2024-11-14 02:42:24,158 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:24,158 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:42:24,158 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 02:42:24,160 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 02:42:24,164 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-14 02:42:24,258 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:24,259 INFO L255 TraceCheckSpWp]: Trace formula consists of 297 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-14 02:42:24,263 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 02:42:24,471 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 31 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 02:42:24,471 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-14 02:42:24,471 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1887735198] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 02:42:24,471 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-14 02:42:24,471 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [12] total 17 [2024-11-14 02:42:24,472 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [905759510] [2024-11-14 02:42:24,472 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 02:42:24,472 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-14 02:42:24,472 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:24,473 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-14 02:42:24,473 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=37, Invalid=235, Unknown=0, NotChecked=0, Total=272 [2024-11-14 02:42:24,473 INFO L87 Difference]: Start difference. First operand 1379 states and 1622 transitions. Second operand has 7 states, 7 states have (on average 8.142857142857142) internal successors, (57), 7 states have internal predecessors, (57), 4 states have call successors, (13), 4 states have call predecessors, (13), 4 states have return successors, (12), 4 states have call predecessors, (12), 4 states have call successors, (12) [2024-11-14 02:42:24,919 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:24,919 INFO L93 Difference]: Finished difference Result 2449 states and 2938 transitions. [2024-11-14 02:42:24,920 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-14 02:42:24,920 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 8.142857142857142) internal successors, (57), 7 states have internal predecessors, (57), 4 states have call successors, (13), 4 states have call predecessors, (13), 4 states have return successors, (12), 4 states have call predecessors, (12), 4 states have call successors, (12) Word has length 82 [2024-11-14 02:42:24,921 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:24,933 INFO L225 Difference]: With dead ends: 2449 [2024-11-14 02:42:24,934 INFO L226 Difference]: Without dead ends: 1673 [2024-11-14 02:42:24,937 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 97 GetRequests, 79 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 30 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=53, Invalid=327, Unknown=0, NotChecked=0, Total=380 [2024-11-14 02:42:24,938 INFO L432 NwaCegarLoop]: 99 mSDtfsCounter, 106 mSDsluCounter, 219 mSDsCounter, 0 mSdLazyCounter, 221 mSolverCounterSat, 18 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 106 SdHoareTripleChecker+Valid, 318 SdHoareTripleChecker+Invalid, 239 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 18 IncrementalHoareTripleChecker+Valid, 221 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:24,938 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [106 Valid, 318 Invalid, 239 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [18 Valid, 221 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 02:42:24,941 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1673 states. [2024-11-14 02:42:25,105 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1673 to 1565. [2024-11-14 02:42:25,108 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1565 states, 1001 states have (on average 1.1408591408591409) internal successors, (1142), 1083 states have internal predecessors, (1142), 283 states have call successors, (283), 249 states have call predecessors, (283), 280 states have return successors, (411), 276 states have call predecessors, (411), 283 states have call successors, (411) [2024-11-14 02:42:25,117 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1565 states to 1565 states and 1836 transitions. [2024-11-14 02:42:25,119 INFO L78 Accepts]: Start accepts. Automaton has 1565 states and 1836 transitions. Word has length 82 [2024-11-14 02:42:25,120 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:25,120 INFO L471 AbstractCegarLoop]: Abstraction has 1565 states and 1836 transitions. [2024-11-14 02:42:25,120 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 8.142857142857142) internal successors, (57), 7 states have internal predecessors, (57), 4 states have call successors, (13), 4 states have call predecessors, (13), 4 states have return successors, (12), 4 states have call predecessors, (12), 4 states have call successors, (12) [2024-11-14 02:42:25,120 INFO L276 IsEmpty]: Start isEmpty. Operand 1565 states and 1836 transitions. [2024-11-14 02:42:25,124 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2024-11-14 02:42:25,125 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 02:42:25,125 INFO L215 NwaCegarLoop]: trace histogram [5, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:25,146 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-14 02:42:25,325 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:42:25,326 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-14 02:42:25,326 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 02:42:25,326 INFO L85 PathProgramCache]: Analyzing trace with hash 2351809, now seen corresponding path program 1 times [2024-11-14 02:42:25,327 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 02:42:25,327 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [672441085] [2024-11-14 02:42:25,327 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:25,327 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 02:42:25,347 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:25,453 INFO L134 CoverageAnalysis]: Checked inductivity of 89 backedges. 40 proven. 1 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-14 02:42:25,453 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 02:42:25,453 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [672441085] [2024-11-14 02:42:25,453 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [672441085] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 02:42:25,453 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [576298839] [2024-11-14 02:42:25,453 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 02:42:25,454 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:42:25,454 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 02:42:25,456 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 02:42:25,459 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-14 02:42:25,565 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 02:42:25,567 INFO L255 TraceCheckSpWp]: Trace formula consists of 376 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-14 02:42:25,571 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 02:42:25,922 INFO L134 CoverageAnalysis]: Checked inductivity of 89 backedges. 66 proven. 15 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2024-11-14 02:42:25,922 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 02:42:26,525 INFO L134 CoverageAnalysis]: Checked inductivity of 89 backedges. 53 proven. 5 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2024-11-14 02:42:26,526 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [576298839] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 02:42:26,526 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1070328171] [2024-11-14 02:42:26,528 INFO L159 IcfgInterpreter]: Started Sifa with 51 locations of interest [2024-11-14 02:42:26,528 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 02:42:26,529 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 02:42:26,529 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 02:42:26,529 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 02:42:28,471 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 17 for LOIs [2024-11-14 02:42:28,482 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 35 for LOIs [2024-11-14 02:42:28,998 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 45 for LOIs [2024-11-14 02:42:29,003 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 34 for LOIs [2024-11-14 02:42:29,048 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 34 for LOIs [2024-11-14 02:42:29,100 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 47 for LOIs [2024-11-14 02:42:29,113 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 67 for LOIs [2024-11-14 02:42:29,143 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 02:42:33,903 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '16803#(and (not (= ~pumpRunning~0 0)) (<= 0 |old(~pumpRunning~0)|) (<= ~pumpRunning~0 1) (not (= 2 ~waterLevel~0)) (<= |old(~pumpRunning~0)| 2147483647) (<= 0 (+ ~waterLevel~0 2147483648)) (<= ~waterLevel~0 2147483647) (<= 0 ~pumpRunning~0) (<= ~methaneLevelCritical~0 2147483647) (<= 0 (+ ~methaneLevelCritical~0 2147483648)) (= ~switchedOnBeforeTS~0 0))' at error location [2024-11-14 02:42:33,903 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 02:42:33,903 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 02:42:33,903 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 11, 11] total 24 [2024-11-14 02:42:33,903 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [737047863] [2024-11-14 02:42:33,904 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 02:42:33,904 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 24 states [2024-11-14 02:42:33,904 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 02:42:33,905 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2024-11-14 02:42:33,906 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=326, Invalid=3214, Unknown=0, NotChecked=0, Total=3540 [2024-11-14 02:42:33,906 INFO L87 Difference]: Start difference. First operand 1565 states and 1836 transitions. Second operand has 24 states, 23 states have (on average 6.130434782608695) internal successors, (141), 23 states have internal predecessors, (141), 13 states have call successors, (35), 5 states have call predecessors, (35), 10 states have return successors, (35), 14 states have call predecessors, (35), 12 states have call successors, (35) [2024-11-14 02:42:37,746 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 02:42:37,746 INFO L93 Difference]: Finished difference Result 3162 states and 3714 transitions. [2024-11-14 02:42:37,746 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 62 states. [2024-11-14 02:42:37,747 INFO L78 Accepts]: Start accepts. Automaton has has 24 states, 23 states have (on average 6.130434782608695) internal successors, (141), 23 states have internal predecessors, (141), 13 states have call successors, (35), 5 states have call predecessors, (35), 10 states have return successors, (35), 14 states have call predecessors, (35), 12 states have call successors, (35) Word has length 110 [2024-11-14 02:42:37,747 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 02:42:37,751 INFO L225 Difference]: With dead ends: 3162 [2024-11-14 02:42:37,751 INFO L226 Difference]: Without dead ends: 0 [2024-11-14 02:42:37,762 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 420 GetRequests, 286 SyntacticMatches, 16 SemanticMatches, 118 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 5179 ImplicationChecksByTransitivity, 7.0s TimeCoverageRelationStatistics Valid=1224, Invalid=13056, Unknown=0, NotChecked=0, Total=14280 [2024-11-14 02:42:37,763 INFO L432 NwaCegarLoop]: 70 mSDtfsCounter, 797 mSDsluCounter, 476 mSDsCounter, 0 mSdLazyCounter, 1822 mSolverCounterSat, 668 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 797 SdHoareTripleChecker+Valid, 546 SdHoareTripleChecker+Invalid, 2490 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 668 IncrementalHoareTripleChecker+Valid, 1822 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.6s IncrementalHoareTripleChecker+Time [2024-11-14 02:42:37,765 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [797 Valid, 546 Invalid, 2490 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [668 Valid, 1822 Invalid, 0 Unknown, 0 Unchecked, 1.6s Time] [2024-11-14 02:42:37,765 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-14 02:42:37,766 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-14 02:42:37,766 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 02:42:37,766 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-14 02:42:37,769 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 110 [2024-11-14 02:42:37,769 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 02:42:37,769 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-14 02:42:37,769 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 24 states, 23 states have (on average 6.130434782608695) internal successors, (141), 23 states have internal predecessors, (141), 13 states have call successors, (35), 5 states have call predecessors, (35), 10 states have return successors, (35), 14 states have call predecessors, (35), 12 states have call successors, (35) [2024-11-14 02:42:37,769 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-14 02:42:37,770 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-14 02:42:37,773 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-14 02:42:37,794 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-14 02:42:37,974 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 02:42:37,977 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 02:42:37,979 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-14 02:42:50,499 INFO L173 ceAbstractionStarter]: Computing trace abstraction results [2024-11-14 02:42:50,523 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (not (= ~pumpRunning~0 0)) (or (< 1 ~waterLevel~0) (= ~waterLevel~0 1)) (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) Eliminated clause: (and (not (= ~pumpRunning~0 0)) (or (= 2 ~waterLevel~0) (= ~waterLevel~0 1)) (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) [2024-11-14 02:42:50,536 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse1 (= |old(~methaneLevelCritical~0)| 0)) (.cse2 (= ~methaneLevelCritical~0 0))) (and (let ((.cse0 (= 1 ~systemActive~0))) (or (and (= ~pumpRunning~0 0) .cse0 (= ~waterLevel~0 1)) (and (= 2 ~waterLevel~0) .cse0))) (or .cse1 (not .cse2)) (or (not .cse1) .cse2))) Eliminated clause: (and (let ((.cse0 (= 1 ~systemActive~0))) (or (and (= ~pumpRunning~0 0) .cse0 (= ~waterLevel~0 1)) (and (= 2 ~waterLevel~0) .cse0))) (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse1 (= |old(~methaneLevelCritical~0)| 0)) (.cse2 (= ~methaneLevelCritical~0 0))) (and (or .cse1 (not .cse2)) (or (not .cse1) .cse2))))) [2024-11-14 02:42:50,544 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 02:42:50,550 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse0 (= |old(~waterLevel~0)| 1))) (and (let ((.cse1 (= 1 ~systemActive~0))) (or (and .cse0 .cse1 (= |old(~pumpRunning~0)| 0)) (and .cse1 .cse2))) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse2)) (or (not .cse0) (and (= ~pumpRunning~0 0) (= ~waterLevel~0 1))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse0 (= |old(~waterLevel~0)| 1))) (and (let ((.cse1 (= 1 ~systemActive~0))) (or (and .cse0 .cse1 (= |old(~pumpRunning~0)| 0)) (and .cse1 .cse2))) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 2 ~waterLevel~0)) (not .cse2)) (or (not .cse0) (and (= ~pumpRunning~0 0) (= ~waterLevel~0 1)))))) [2024-11-14 02:42:50,565 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 02:42:50,567 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (<= ~waterLevel~0 2)) Eliminated clause: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (<= ~waterLevel~0 2)) [2024-11-14 02:42:50,576 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= 1 ~systemActive~0)) (.cse3 (= |old(~waterLevel~0)| 1))) (and (or (and .cse0 .cse1 .cse2) .cse3 (and .cse1 .cse2 (= ~pumpRunning~0 1)) (and .cse1 (not (= ~methaneLevelCritical~0 0)) .cse2)) (or (= 2 ~waterLevel~0) (not .cse2)) (or (and .cse0 .cse1 (= ~waterLevel~0 1)) (not .cse3)))) Eliminated clause: (exists ((|old(~waterLevel~0)| Int)) (let ((.cse2 (= |old(~waterLevel~0)| 2)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= 1 ~systemActive~0)) (.cse3 (= |old(~waterLevel~0)| 1))) (and (or (and .cse0 .cse1 .cse2) .cse3 (and .cse1 .cse2 (= ~pumpRunning~0 1)) (and .cse1 (not (= ~methaneLevelCritical~0 0)) .cse2)) (or (= 2 ~waterLevel~0) (not .cse2)) (or (and .cse0 .cse1 (= ~waterLevel~0 1)) (not .cse3))))) [2024-11-14 02:42:50,580 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-14 02:42:50,582 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0))) (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (or .cse0 (<= 1 ~waterLevel~0)) (= 1 ~systemActive~0) (or (= ~methaneLevelCritical~0 0) .cse0) (<= ~waterLevel~0 2))) Eliminated clause: (let ((.cse0 (= ~pumpRunning~0 0))) (and (or .cse0 (< 0 ~waterLevel~0)) (= 1 ~systemActive~0) (<= ~waterLevel~0 2) (or .cse0 (= ~methaneLevelCritical~0 0)))) [2024-11-14 02:42:50,592 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 14.11 02:42:50 BoogieIcfgContainer [2024-11-14 02:42:50,593 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-14 02:42:50,593 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-14 02:42:50,593 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-14 02:42:50,594 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-14 02:42:50,594 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 02:42:03" (3/4) ... [2024-11-14 02:42:50,596 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-14 02:42:50,600 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-14 02:42:50,600 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-14 02:42:50,600 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-14 02:42:50,600 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-14 02:42:50,600 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-14 02:42:50,600 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-14 02:42:50,601 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-14 02:42:50,601 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-14 02:42:50,601 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-14 02:42:50,601 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-14 02:42:50,607 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 50 nodes and edges [2024-11-14 02:42:50,608 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2024-11-14 02:42:50,608 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-14 02:42:50,608 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 02:42:50,609 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-14 02:42:50,726 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/witness.graphml [2024-11-14 02:42:50,727 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/witness.yml [2024-11-14 02:42:50,727 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-14 02:42:50,728 INFO L158 Benchmark]: Toolchain (without parser) took 48278.48ms. Allocated memory was 142.6MB in the beginning and 1.2GB in the end (delta: 1.1GB). Free memory was 118.6MB in the beginning and 544.5MB in the end (delta: -425.9MB). Peak memory consumption was 658.9MB. Max. memory is 16.1GB. [2024-11-14 02:42:50,729 INFO L158 Benchmark]: CDTParser took 1.03ms. Allocated memory is still 142.6MB. Free memory is still 78.8MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 02:42:50,729 INFO L158 Benchmark]: CACSL2BoogieTranslator took 538.59ms. Allocated memory is still 142.6MB. Free memory was 118.4MB in the beginning and 99.3MB in the end (delta: 19.1MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-11-14 02:42:50,730 INFO L158 Benchmark]: Boogie Procedure Inliner took 64.19ms. Allocated memory is still 142.6MB. Free memory was 99.3MB in the beginning and 97.3MB in the end (delta: 2.0MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 02:42:50,730 INFO L158 Benchmark]: Boogie Preprocessor took 43.54ms. Allocated memory is still 142.6MB. Free memory was 97.3MB in the beginning and 96.1MB in the end (delta: 1.2MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 02:42:50,730 INFO L158 Benchmark]: RCFGBuilder took 717.70ms. Allocated memory is still 142.6MB. Free memory was 95.9MB in the beginning and 65.9MB in the end (delta: 30.0MB). Peak memory consumption was 25.2MB. Max. memory is 16.1GB. [2024-11-14 02:42:50,731 INFO L158 Benchmark]: TraceAbstraction took 46772.23ms. Allocated memory was 142.6MB in the beginning and 1.2GB in the end (delta: 1.1GB). Free memory was 65.4MB in the beginning and 548.7MB in the end (delta: -483.2MB). Peak memory consumption was 693.1MB. Max. memory is 16.1GB. [2024-11-14 02:42:50,731 INFO L158 Benchmark]: Witness Printer took 133.61ms. Allocated memory is still 1.2GB. Free memory was 548.7MB in the beginning and 544.5MB in the end (delta: 4.2MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-14 02:42:50,733 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 1.03ms. Allocated memory is still 142.6MB. Free memory is still 78.8MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 538.59ms. Allocated memory is still 142.6MB. Free memory was 118.4MB in the beginning and 99.3MB in the end (delta: 19.1MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 64.19ms. Allocated memory is still 142.6MB. Free memory was 99.3MB in the beginning and 97.3MB in the end (delta: 2.0MB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 43.54ms. Allocated memory is still 142.6MB. Free memory was 97.3MB in the beginning and 96.1MB in the end (delta: 1.2MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 717.70ms. Allocated memory is still 142.6MB. Free memory was 95.9MB in the beginning and 65.9MB in the end (delta: 30.0MB). Peak memory consumption was 25.2MB. Max. memory is 16.1GB. * TraceAbstraction took 46772.23ms. Allocated memory was 142.6MB in the beginning and 1.2GB in the end (delta: 1.1GB). Free memory was 65.4MB in the beginning and 548.7MB in the end (delta: -483.2MB). Peak memory consumption was 693.1MB. Max. memory is 16.1GB. * Witness Printer took 133.61ms. Allocated memory is still 1.2GB. Free memory was 548.7MB in the beginning and 544.5MB in the end (delta: 4.2MB). There was no memory consumed. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [49] - GenericResultAtLocation [Line: 118]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [118] - GenericResultAtLocation [Line: 372]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [372] - GenericResultAtLocation [Line: 476]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [476] - GenericResultAtLocation [Line: 842]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [842] - GenericResultAtLocation [Line: 892]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [892] - GenericResultAtLocation [Line: 930]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [930] - GenericResultAtLocation [Line: 939]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [939] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 935]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 75 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 34.1s, OverallIterations: 10, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 9.5s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2141 SdHoareTripleChecker+Valid, 4.7s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2117 mSDsluCounter, 3192 SdHoareTripleChecker+Invalid, 3.9s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2332 mSDsCounter, 1305 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 4493 IncrementalHoareTripleChecker+Invalid, 5798 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1305 mSolverCounterUnsat, 860 mSDtfsCounter, 4493 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 881 GetRequests, 598 SyntacticMatches, 22 SemanticMatches, 261 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 8204 ImplicationChecksByTransitivity, 15.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1565occurred in iteration=9, InterpolantAutomatonStates: 166, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.7s AutomataMinimizationTime, 10 MinimizatonAttempts, 476 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 3.7s InterpolantComputationTime, 766 NumberOfCodeBlocks, 766 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 939 ConstructedInterpolants, 0 QuantifiedInterpolants, 2504 SizeOfPredicates, 11 NumberOfNonLiveVariables, 965 ConjunctsInSsa, 40 ConjunctsInUnsatCore, 15 InterpolantComputations, 8 PerfectInterpolantSequences, 397/451 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 63]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 278]: Location Invariant Derived location invariant: ((((pumpRunning != 0) && (1 == systemActive)) && (waterLevel == 1)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) - InvariantResult [Line: 64]: Loop Invariant Derived loop invariant: (((((((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) || ((((2 == waterLevel) && (1 == systemActive)) && (methaneLevelCritical != 0)) && (splverifierCounter == 0))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((2 == waterLevel) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1))) - InvariantResult [Line: 951]: Loop Invariant Derived loop invariant: 0 - ProcedureContractResult [Line: 270]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((((pumpRunning != 0) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) && (waterLevel <= 2)) Ensures: ((((((\old(pumpRunning) != 0) && (pumpRunning == 0)) && ((2 == waterLevel) || (waterLevel == 1))) && (1 == systemActive)) && (waterLevel <= 2)) && ((((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 160]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) Ensures: ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 400]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || ((2 == waterLevel) && (1 == systemActive))) Ensures: ((((((waterLevel != 1) || (pumpRunning == 0)) && ((methaneLevelCritical == 0) || (\old(methaneLevelCritical) == 0))) && (((2 == waterLevel) && (1 == systemActive)) || ((1 == systemActive) && (waterLevel == 1)))) && ((\old(methaneLevelCritical) != 0) || (methaneLevelCritical != 0))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 941]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((systemActive == \old(systemActive)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 133]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: (((((((((methaneLevelCritical == 0) || ((pumpRunning == 0) && (1 == systemActive))) && (((methaneLevelCritical == 0) || (\old(pumpRunning) == 0)) || (waterLevel == 1))) && (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (methaneLevelCritical != 0)) || (\old(pumpRunning) != 1))) && ((((\old(pumpRunning) != 0) || ((((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (pumpRunning == 1))) || (\old(waterLevel) != 2)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)))) && ((\old(waterLevel) == 1) || (\old(waterLevel) == 2))) && (((((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (\old(pumpRunning) == 0)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || ((((2 == waterLevel) && (1 == systemActive)) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || (methaneLevelCritical != 0))) && ((\old(waterLevel) != 1) || ((\old(pumpRunning) == 0) && (waterLevel == 1)))) && ((((systemActive == \old(systemActive)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 168]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) Ensures: (((((methaneLevelCritical == 0) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) && (\old(pumpRunning) == 0)) && ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1)))) && ((((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 388]: Procedure Contract for waterRise Derived contract for procedure waterRise. Ensures: (((2 == waterLevel) && ((((((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((pumpRunning == 0) && (\old(waterLevel) == 1)) && (1 == systemActive))) || (((1 == systemActive) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || (((1 == systemActive) && (methaneLevelCritical != 0)) && (\old(waterLevel) == 2)))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 194]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Requires: (((((pumpRunning == 0) || (0 < waterLevel)) && (1 == systemActive)) && (waterLevel <= 2)) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) Ensures: (((((methaneLevelCritical == 0) || ((pumpRunning == 0) && (\old(pumpRunning) == 0))) && ((\old(pumpRunning) == 0) || ((pumpRunning == 0) && ((2 == waterLevel) || (waterLevel == 1))))) && ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1)))) && ((((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 289]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: ((((pumpRunning == 0) && (1 == systemActive)) && ((waterLevel < 1) || (waterLevel == 1))) || ((2 == waterLevel) && (1 == systemActive))) Ensures: ((((((pumpRunning == 0) && (1 == systemActive)) && ((waterLevel < 1) || (waterLevel == 1))) || ((2 == waterLevel) && (1 == systemActive))) && (pumpRunning == \result)) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 278]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: ((((pumpRunning != 0) && (1 == systemActive)) && (waterLevel == 1)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: ((((methaneLevelCritical == \result) && ((2 == waterLevel) || (((pumpRunning != 0) && (1 == systemActive)) && (waterLevel == 1)))) && ((2 != waterLevel) || ((pumpRunning == 0) && (1 == systemActive)))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) RESULT: Ultimate proved your program to be correct! [2024-11-14 02:42:50,777 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_62820ee3-6102-46d8-ba32-457f4c09e45f/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE