./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec3_product57.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version aef121e0 Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec3_product57.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 3cfb2febd3006e73b0e8309478193e665e2e7ddd381dfad7d5652117e74962c4 --- Real Ultimate output --- This is Ultimate 0.2.1-dev-aef121e [2021-11-23 03:52:12,189 INFO L177 SettingsManager]: Resetting all preferences to default values... [2021-11-23 03:52:12,192 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2021-11-23 03:52:12,245 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2021-11-23 03:52:12,246 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2021-11-23 03:52:12,251 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2021-11-23 03:52:12,253 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2021-11-23 03:52:12,258 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2021-11-23 03:52:12,262 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2021-11-23 03:52:12,269 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2021-11-23 03:52:12,271 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2021-11-23 03:52:12,272 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2021-11-23 03:52:12,273 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2021-11-23 03:52:12,276 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2021-11-23 03:52:12,279 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2021-11-23 03:52:12,288 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2021-11-23 03:52:12,289 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2021-11-23 03:52:12,290 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2021-11-23 03:52:12,293 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2021-11-23 03:52:12,300 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2021-11-23 03:52:12,302 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2021-11-23 03:52:12,304 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2021-11-23 03:52:12,307 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2021-11-23 03:52:12,308 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2021-11-23 03:52:12,314 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2021-11-23 03:52:12,315 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2021-11-23 03:52:12,315 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2021-11-23 03:52:12,317 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2021-11-23 03:52:12,318 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2021-11-23 03:52:12,319 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2021-11-23 03:52:12,320 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2021-11-23 03:52:12,321 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2021-11-23 03:52:12,323 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2021-11-23 03:52:12,325 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2021-11-23 03:52:12,328 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2021-11-23 03:52:12,329 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2021-11-23 03:52:12,330 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2021-11-23 03:52:12,330 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2021-11-23 03:52:12,330 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2021-11-23 03:52:12,331 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2021-11-23 03:52:12,332 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2021-11-23 03:52:12,333 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/config/svcomp-Reach-32bit-Taipan_Default.epf [2021-11-23 03:52:12,381 INFO L113 SettingsManager]: Loading preferences was successful [2021-11-23 03:52:12,381 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2021-11-23 03:52:12,382 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2021-11-23 03:52:12,382 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2021-11-23 03:52:12,386 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2021-11-23 03:52:12,386 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2021-11-23 03:52:12,387 INFO L138 SettingsManager]: * User list type=DISABLED [2021-11-23 03:52:12,387 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2021-11-23 03:52:12,387 INFO L138 SettingsManager]: * Explicit value domain=true [2021-11-23 03:52:12,387 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2021-11-23 03:52:12,389 INFO L138 SettingsManager]: * Octagon Domain=false [2021-11-23 03:52:12,389 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2021-11-23 03:52:12,389 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2021-11-23 03:52:12,389 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2021-11-23 03:52:12,390 INFO L138 SettingsManager]: * Interval Domain=false [2021-11-23 03:52:12,390 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2021-11-23 03:52:12,390 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2021-11-23 03:52:12,390 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2021-11-23 03:52:12,392 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2021-11-23 03:52:12,392 INFO L138 SettingsManager]: * sizeof long=4 [2021-11-23 03:52:12,392 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2021-11-23 03:52:12,393 INFO L138 SettingsManager]: * sizeof POINTER=4 [2021-11-23 03:52:12,393 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2021-11-23 03:52:12,393 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2021-11-23 03:52:12,393 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2021-11-23 03:52:12,394 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2021-11-23 03:52:12,396 INFO L138 SettingsManager]: * sizeof long double=12 [2021-11-23 03:52:12,396 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2021-11-23 03:52:12,396 INFO L138 SettingsManager]: * Use constant arrays=true [2021-11-23 03:52:12,397 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2021-11-23 03:52:12,397 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2021-11-23 03:52:12,397 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2021-11-23 03:52:12,398 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2021-11-23 03:52:12,398 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2021-11-23 03:52:12,398 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2021-11-23 03:52:12,398 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2021-11-23 03:52:12,399 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2021-11-23 03:52:12,399 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2021-11-23 03:52:12,399 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2021-11-23 03:52:12,399 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2021-11-23 03:52:12,399 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2021-11-23 03:52:12,400 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 3cfb2febd3006e73b0e8309478193e665e2e7ddd381dfad7d5652117e74962c4 [2021-11-23 03:52:12,673 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2021-11-23 03:52:12,708 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2021-11-23 03:52:12,710 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2021-11-23 03:52:12,712 INFO L271 PluginConnector]: Initializing CDTParser... [2021-11-23 03:52:12,712 INFO L275 PluginConnector]: CDTParser initialized [2021-11-23 03:52:12,714 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/../../sv-benchmarks/c/product-lines/minepump_spec3_product57.cil.c [2021-11-23 03:52:12,788 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/data/cae8472ad/0d435a99a09a457b814da1a53b6416ac/FLAG976a0fde9 [2021-11-23 03:52:13,276 INFO L306 CDTParser]: Found 1 translation units. [2021-11-23 03:52:13,277 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/sv-benchmarks/c/product-lines/minepump_spec3_product57.cil.c [2021-11-23 03:52:13,301 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/data/cae8472ad/0d435a99a09a457b814da1a53b6416ac/FLAG976a0fde9 [2021-11-23 03:52:13,616 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/data/cae8472ad/0d435a99a09a457b814da1a53b6416ac [2021-11-23 03:52:13,619 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2021-11-23 03:52:13,634 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2021-11-23 03:52:13,637 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2021-11-23 03:52:13,637 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2021-11-23 03:52:13,641 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2021-11-23 03:52:13,642 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 03:52:13" (1/1) ... [2021-11-23 03:52:13,644 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@73fffa12 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:13, skipping insertion in model container [2021-11-23 03:52:13,646 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 03:52:13" (1/1) ... [2021-11-23 03:52:13,654 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2021-11-23 03:52:13,717 INFO L178 MainTranslator]: Built tables and reachable declarations [2021-11-23 03:52:14,051 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/sv-benchmarks/c/product-lines/minepump_spec3_product57.cil.c[13989,14002] [2021-11-23 03:52:14,122 INFO L209 PostProcessor]: Analyzing one entry point: main [2021-11-23 03:52:14,137 INFO L203 MainTranslator]: Completed pre-run [2021-11-23 03:52:14,211 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/sv-benchmarks/c/product-lines/minepump_spec3_product57.cil.c[13989,14002] [2021-11-23 03:52:14,228 INFO L209 PostProcessor]: Analyzing one entry point: main [2021-11-23 03:52:14,246 INFO L208 MainTranslator]: Completed translation [2021-11-23 03:52:14,247 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14 WrapperNode [2021-11-23 03:52:14,247 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2021-11-23 03:52:14,248 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2021-11-23 03:52:14,248 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2021-11-23 03:52:14,248 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2021-11-23 03:52:14,260 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,295 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,332 INFO L137 Inliner]: procedures = 56, calls = 157, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 280 [2021-11-23 03:52:14,332 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2021-11-23 03:52:14,333 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2021-11-23 03:52:14,333 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2021-11-23 03:52:14,334 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2021-11-23 03:52:14,342 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,343 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,360 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,360 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,369 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,375 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,377 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,381 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2021-11-23 03:52:14,382 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2021-11-23 03:52:14,382 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2021-11-23 03:52:14,382 INFO L275 PluginConnector]: RCFGBuilder initialized [2021-11-23 03:52:14,383 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (1/1) ... [2021-11-23 03:52:14,405 INFO L168 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2021-11-23 03:52:14,428 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 [2021-11-23 03:52:14,442 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2021-11-23 03:52:14,461 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2021-11-23 03:52:14,476 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2021-11-23 03:52:14,476 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2021-11-23 03:52:14,476 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2021-11-23 03:52:14,477 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2021-11-23 03:52:14,477 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2021-11-23 03:52:14,477 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2021-11-23 03:52:14,477 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2021-11-23 03:52:14,477 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2021-11-23 03:52:14,478 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2021-11-23 03:52:14,478 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2021-11-23 03:52:14,478 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2021-11-23 03:52:14,478 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2021-11-23 03:52:14,478 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2021-11-23 03:52:14,478 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2021-11-23 03:52:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2021-11-23 03:52:14,479 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2021-11-23 03:52:14,479 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2021-11-23 03:52:14,479 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2021-11-23 03:52:14,553 INFO L236 CfgBuilder]: Building ICFG [2021-11-23 03:52:14,555 INFO L262 CfgBuilder]: Building CFG for each procedure with an implementation [2021-11-23 03:52:14,950 INFO L277 CfgBuilder]: Performing block encoding [2021-11-23 03:52:15,051 INFO L296 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2021-11-23 03:52:15,052 INFO L301 CfgBuilder]: Removed 2 assume(true) statements. [2021-11-23 03:52:15,054 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 03:52:15 BoogieIcfgContainer [2021-11-23 03:52:15,054 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2021-11-23 03:52:15,056 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2021-11-23 03:52:15,057 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2021-11-23 03:52:15,060 INFO L275 PluginConnector]: TraceAbstraction initialized [2021-11-23 03:52:15,061 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 23.11 03:52:13" (1/3) ... [2021-11-23 03:52:15,061 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@4f49fbc0 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 03:52:15, skipping insertion in model container [2021-11-23 03:52:15,062 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 03:52:14" (2/3) ... [2021-11-23 03:52:15,062 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@4f49fbc0 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 03:52:15, skipping insertion in model container [2021-11-23 03:52:15,062 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 03:52:15" (3/3) ... [2021-11-23 03:52:15,064 INFO L111 eAbstractionObserver]: Analyzing ICFG minepump_spec3_product57.cil.c [2021-11-23 03:52:15,069 INFO L204 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2021-11-23 03:52:15,069 INFO L163 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2021-11-23 03:52:15,145 INFO L338 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2021-11-23 03:52:15,156 INFO L339 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mLoopAccelerationTechnique=FAST_UPR [2021-11-23 03:52:15,156 INFO L340 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2021-11-23 03:52:15,181 INFO L276 IsEmpty]: Start isEmpty. Operand has 58 states, 37 states have (on average 1.4324324324324325) internal successors, (53), 45 states have internal predecessors, (53), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) [2021-11-23 03:52:15,189 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2021-11-23 03:52:15,189 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:52:15,190 INFO L514 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:52:15,191 INFO L402 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:52:15,196 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:52:15,196 INFO L85 PathProgramCache]: Analyzing trace with hash -686051818, now seen corresponding path program 1 times [2021-11-23 03:52:15,206 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:52:15,207 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1766553756] [2021-11-23 03:52:15,207 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:52:15,208 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:52:15,347 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:52:15,457 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2021-11-23 03:52:15,458 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:52:15,458 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1766553756] [2021-11-23 03:52:15,459 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1766553756] provided 1 perfect and 0 imperfect interpolant sequences [2021-11-23 03:52:15,459 INFO L186 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2021-11-23 03:52:15,460 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2021-11-23 03:52:15,461 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2003004466] [2021-11-23 03:52:15,462 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2021-11-23 03:52:15,467 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2021-11-23 03:52:15,467 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:52:15,496 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2021-11-23 03:52:15,497 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2021-11-23 03:52:15,499 INFO L87 Difference]: Start difference. First operand has 58 states, 37 states have (on average 1.4324324324324325) internal successors, (53), 45 states have internal predecessors, (53), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2021-11-23 03:52:15,568 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:52:15,568 INFO L93 Difference]: Finished difference Result 114 states and 155 transitions. [2021-11-23 03:52:15,573 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2021-11-23 03:52:15,575 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2021-11-23 03:52:15,576 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:52:15,587 INFO L225 Difference]: With dead ends: 114 [2021-11-23 03:52:15,587 INFO L226 Difference]: Without dead ends: 53 [2021-11-23 03:52:15,592 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2021-11-23 03:52:15,597 INFO L933 BasicCegarLoop]: 56 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 56 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2021-11-23 03:52:15,599 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [0 Valid, 56 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2021-11-23 03:52:15,617 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 53 states. [2021-11-23 03:52:15,646 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 53 to 53. [2021-11-23 03:52:15,648 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 53 states, 34 states have (on average 1.3235294117647058) internal successors, (45), 41 states have internal predecessors, (45), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2021-11-23 03:52:15,656 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 53 states to 53 states and 68 transitions. [2021-11-23 03:52:15,662 INFO L78 Accepts]: Start accepts. Automaton has 53 states and 68 transitions. Word has length 17 [2021-11-23 03:52:15,663 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:52:15,663 INFO L470 AbstractCegarLoop]: Abstraction has 53 states and 68 transitions. [2021-11-23 03:52:15,663 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2021-11-23 03:52:15,664 INFO L276 IsEmpty]: Start isEmpty. Operand 53 states and 68 transitions. [2021-11-23 03:52:15,668 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2021-11-23 03:52:15,669 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:52:15,669 INFO L514 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:52:15,670 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2021-11-23 03:52:15,672 INFO L402 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:52:15,673 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:52:15,674 INFO L85 PathProgramCache]: Analyzing trace with hash 2119433633, now seen corresponding path program 1 times [2021-11-23 03:52:15,674 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:52:15,674 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [147721075] [2021-11-23 03:52:15,674 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:52:15,675 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:52:15,699 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:52:15,746 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2021-11-23 03:52:15,747 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:52:15,748 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [147721075] [2021-11-23 03:52:15,748 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [147721075] provided 1 perfect and 0 imperfect interpolant sequences [2021-11-23 03:52:15,748 INFO L186 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2021-11-23 03:52:15,749 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2021-11-23 03:52:15,749 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1296436624] [2021-11-23 03:52:15,749 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2021-11-23 03:52:15,750 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2021-11-23 03:52:15,752 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:52:15,752 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2021-11-23 03:52:15,753 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2021-11-23 03:52:15,754 INFO L87 Difference]: Start difference. First operand 53 states and 68 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2021-11-23 03:52:15,818 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:52:15,819 INFO L93 Difference]: Finished difference Result 83 states and 107 transitions. [2021-11-23 03:52:15,819 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2021-11-23 03:52:15,819 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2021-11-23 03:52:15,820 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:52:15,821 INFO L225 Difference]: With dead ends: 83 [2021-11-23 03:52:15,821 INFO L226 Difference]: Without dead ends: 45 [2021-11-23 03:52:15,822 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2021-11-23 03:52:15,823 INFO L933 BasicCegarLoop]: 42 mSDtfsCounter, 7 mSDsluCounter, 45 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 75 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2021-11-23 03:52:15,824 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [10 Valid, 75 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2021-11-23 03:52:15,825 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 45 states. [2021-11-23 03:52:15,832 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 45 to 45. [2021-11-23 03:52:15,832 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 45 states, 29 states have (on average 1.3448275862068966) internal successors, (39), 36 states have internal predecessors, (39), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2021-11-23 03:52:15,833 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 45 states to 45 states and 57 transitions. [2021-11-23 03:52:15,834 INFO L78 Accepts]: Start accepts. Automaton has 45 states and 57 transitions. Word has length 18 [2021-11-23 03:52:15,834 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:52:15,834 INFO L470 AbstractCegarLoop]: Abstraction has 45 states and 57 transitions. [2021-11-23 03:52:15,834 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2021-11-23 03:52:15,835 INFO L276 IsEmpty]: Start isEmpty. Operand 45 states and 57 transitions. [2021-11-23 03:52:15,836 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2021-11-23 03:52:15,836 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:52:15,836 INFO L514 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:52:15,836 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2021-11-23 03:52:15,837 INFO L402 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:52:15,837 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:52:15,837 INFO L85 PathProgramCache]: Analyzing trace with hash -978044382, now seen corresponding path program 1 times [2021-11-23 03:52:15,837 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:52:15,838 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2069062414] [2021-11-23 03:52:15,838 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:52:15,838 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:52:15,874 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:52:15,952 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2021-11-23 03:52:15,952 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:52:15,952 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2069062414] [2021-11-23 03:52:15,953 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2069062414] provided 1 perfect and 0 imperfect interpolant sequences [2021-11-23 03:52:15,953 INFO L186 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2021-11-23 03:52:15,953 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2021-11-23 03:52:15,953 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [100794694] [2021-11-23 03:52:15,953 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2021-11-23 03:52:15,954 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2021-11-23 03:52:15,954 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:52:15,954 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2021-11-23 03:52:15,955 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2021-11-23 03:52:15,955 INFO L87 Difference]: Start difference. First operand 45 states and 57 transitions. Second operand has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2021-11-23 03:52:16,042 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:52:16,042 INFO L93 Difference]: Finished difference Result 88 states and 113 transitions. [2021-11-23 03:52:16,042 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2021-11-23 03:52:16,043 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2021-11-23 03:52:16,043 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:52:16,044 INFO L225 Difference]: With dead ends: 88 [2021-11-23 03:52:16,044 INFO L226 Difference]: Without dead ends: 45 [2021-11-23 03:52:16,045 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2021-11-23 03:52:16,047 INFO L933 BasicCegarLoop]: 37 mSDtfsCounter, 53 mSDsluCounter, 27 mSDsCounter, 0 mSdLazyCounter, 46 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 53 SdHoareTripleChecker+Valid, 53 SdHoareTripleChecker+Invalid, 52 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 46 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2021-11-23 03:52:16,048 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [53 Valid, 53 Invalid, 52 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 46 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2021-11-23 03:52:16,049 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 45 states. [2021-11-23 03:52:16,056 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 45 to 45. [2021-11-23 03:52:16,056 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 45 states, 29 states have (on average 1.3103448275862069) internal successors, (38), 36 states have internal predecessors, (38), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2021-11-23 03:52:16,057 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 45 states to 45 states and 56 transitions. [2021-11-23 03:52:16,058 INFO L78 Accepts]: Start accepts. Automaton has 45 states and 56 transitions. Word has length 20 [2021-11-23 03:52:16,058 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:52:16,058 INFO L470 AbstractCegarLoop]: Abstraction has 45 states and 56 transitions. [2021-11-23 03:52:16,058 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2021-11-23 03:52:16,058 INFO L276 IsEmpty]: Start isEmpty. Operand 45 states and 56 transitions. [2021-11-23 03:52:16,059 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2021-11-23 03:52:16,060 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:52:16,060 INFO L514 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:52:16,060 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2021-11-23 03:52:16,060 INFO L402 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:52:16,061 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:52:16,061 INFO L85 PathProgramCache]: Analyzing trace with hash -1983763135, now seen corresponding path program 1 times [2021-11-23 03:52:16,061 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:52:16,061 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [812773983] [2021-11-23 03:52:16,062 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:52:16,062 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:52:16,087 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:52:16,167 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2021-11-23 03:52:16,167 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:52:16,168 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [812773983] [2021-11-23 03:52:16,168 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [812773983] provided 1 perfect and 0 imperfect interpolant sequences [2021-11-23 03:52:16,168 INFO L186 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2021-11-23 03:52:16,168 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2021-11-23 03:52:16,169 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2101022262] [2021-11-23 03:52:16,170 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2021-11-23 03:52:16,171 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2021-11-23 03:52:16,171 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:52:16,172 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2021-11-23 03:52:16,172 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2021-11-23 03:52:16,172 INFO L87 Difference]: Start difference. First operand 45 states and 56 transitions. Second operand has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2021-11-23 03:52:16,284 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:52:16,286 INFO L93 Difference]: Finished difference Result 123 states and 156 transitions. [2021-11-23 03:52:16,287 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2021-11-23 03:52:16,287 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2021-11-23 03:52:16,287 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:52:16,291 INFO L225 Difference]: With dead ends: 123 [2021-11-23 03:52:16,291 INFO L226 Difference]: Without dead ends: 80 [2021-11-23 03:52:16,292 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2021-11-23 03:52:16,296 INFO L933 BasicCegarLoop]: 52 mSDtfsCounter, 38 mSDsluCounter, 40 mSDsCounter, 0 mSdLazyCounter, 31 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 38 SdHoareTripleChecker+Valid, 85 SdHoareTripleChecker+Invalid, 35 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 31 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2021-11-23 03:52:16,297 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [38 Valid, 85 Invalid, 35 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 31 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2021-11-23 03:52:16,298 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 80 states. [2021-11-23 03:52:16,312 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 80 to 78. [2021-11-23 03:52:16,312 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 78 states, 52 states have (on average 1.2692307692307692) internal successors, (66), 59 states have internal predecessors, (66), 13 states have call successors, (13), 12 states have call predecessors, (13), 12 states have return successors, (17), 13 states have call predecessors, (17), 13 states have call successors, (17) [2021-11-23 03:52:16,314 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 78 states to 78 states and 96 transitions. [2021-11-23 03:52:16,314 INFO L78 Accepts]: Start accepts. Automaton has 78 states and 96 transitions. Word has length 23 [2021-11-23 03:52:16,315 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:52:16,315 INFO L470 AbstractCegarLoop]: Abstraction has 78 states and 96 transitions. [2021-11-23 03:52:16,315 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2021-11-23 03:52:16,315 INFO L276 IsEmpty]: Start isEmpty. Operand 78 states and 96 transitions. [2021-11-23 03:52:16,317 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2021-11-23 03:52:16,317 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:52:16,317 INFO L514 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:52:16,317 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2021-11-23 03:52:16,318 INFO L402 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:52:16,318 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:52:16,319 INFO L85 PathProgramCache]: Analyzing trace with hash -1561343924, now seen corresponding path program 1 times [2021-11-23 03:52:16,319 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:52:16,319 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1565706044] [2021-11-23 03:52:16,319 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:52:16,320 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:52:16,343 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:52:16,418 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2021-11-23 03:52:16,419 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:52:16,419 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1565706044] [2021-11-23 03:52:16,420 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1565706044] provided 1 perfect and 0 imperfect interpolant sequences [2021-11-23 03:52:16,420 INFO L186 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2021-11-23 03:52:16,420 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2021-11-23 03:52:16,420 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [396275131] [2021-11-23 03:52:16,420 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2021-11-23 03:52:16,422 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2021-11-23 03:52:16,423 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:52:16,425 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2021-11-23 03:52:16,426 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2021-11-23 03:52:16,426 INFO L87 Difference]: Start difference. First operand 78 states and 96 transitions. Second operand has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2021-11-23 03:52:16,585 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:52:16,586 INFO L93 Difference]: Finished difference Result 219 states and 271 transitions. [2021-11-23 03:52:16,587 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2021-11-23 03:52:16,587 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 31 [2021-11-23 03:52:16,587 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:52:16,593 INFO L225 Difference]: With dead ends: 219 [2021-11-23 03:52:16,599 INFO L226 Difference]: Without dead ends: 143 [2021-11-23 03:52:16,602 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2021-11-23 03:52:16,604 INFO L933 BasicCegarLoop]: 55 mSDtfsCounter, 71 mSDsluCounter, 133 mSDsCounter, 0 mSdLazyCounter, 73 mSolverCounterSat, 13 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 71 SdHoareTripleChecker+Valid, 164 SdHoareTripleChecker+Invalid, 86 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 13 IncrementalHoareTripleChecker+Valid, 73 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2021-11-23 03:52:16,608 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [71 Valid, 164 Invalid, 86 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [13 Valid, 73 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2021-11-23 03:52:16,610 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 143 states. [2021-11-23 03:52:16,639 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 143 to 124. [2021-11-23 03:52:16,642 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 124 states, 83 states have (on average 1.2289156626506024) internal successors, (102), 92 states have internal predecessors, (102), 20 states have call successors, (20), 18 states have call predecessors, (20), 20 states have return successors, (26), 21 states have call predecessors, (26), 20 states have call successors, (26) [2021-11-23 03:52:16,647 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 124 states to 124 states and 148 transitions. [2021-11-23 03:52:16,647 INFO L78 Accepts]: Start accepts. Automaton has 124 states and 148 transitions. Word has length 31 [2021-11-23 03:52:16,648 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:52:16,648 INFO L470 AbstractCegarLoop]: Abstraction has 124 states and 148 transitions. [2021-11-23 03:52:16,649 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2021-11-23 03:52:16,649 INFO L276 IsEmpty]: Start isEmpty. Operand 124 states and 148 transitions. [2021-11-23 03:52:16,655 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2021-11-23 03:52:16,656 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:52:16,656 INFO L514 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:52:16,656 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2021-11-23 03:52:16,657 INFO L402 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:52:16,658 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:52:16,658 INFO L85 PathProgramCache]: Analyzing trace with hash -831134401, now seen corresponding path program 1 times [2021-11-23 03:52:16,658 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:52:16,659 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2003259108] [2021-11-23 03:52:16,659 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:52:16,659 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:52:16,698 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:52:16,811 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2021-11-23 03:52:16,811 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:52:16,811 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2003259108] [2021-11-23 03:52:16,811 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2003259108] provided 1 perfect and 0 imperfect interpolant sequences [2021-11-23 03:52:16,811 INFO L186 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2021-11-23 03:52:16,812 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2021-11-23 03:52:16,812 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1226374011] [2021-11-23 03:52:16,812 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2021-11-23 03:52:16,812 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2021-11-23 03:52:16,812 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:52:16,813 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2021-11-23 03:52:16,813 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=29, Unknown=0, NotChecked=0, Total=42 [2021-11-23 03:52:16,813 INFO L87 Difference]: Start difference. First operand 124 states and 148 transitions. Second operand has 7 states, 7 states have (on average 3.5714285714285716) internal successors, (25), 7 states have internal predecessors, (25), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2021-11-23 03:52:17,062 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:52:17,063 INFO L93 Difference]: Finished difference Result 281 states and 354 transitions. [2021-11-23 03:52:17,063 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2021-11-23 03:52:17,063 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 3.5714285714285716) internal successors, (25), 7 states have internal predecessors, (25), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 34 [2021-11-23 03:52:17,064 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:52:17,070 INFO L225 Difference]: With dead ends: 281 [2021-11-23 03:52:17,071 INFO L226 Difference]: Without dead ends: 205 [2021-11-23 03:52:17,073 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=45, Invalid=87, Unknown=0, NotChecked=0, Total=132 [2021-11-23 03:52:17,075 INFO L933 BasicCegarLoop]: 70 mSDtfsCounter, 163 mSDsluCounter, 256 mSDsCounter, 0 mSdLazyCounter, 115 mSolverCounterSat, 83 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 163 SdHoareTripleChecker+Valid, 289 SdHoareTripleChecker+Invalid, 198 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 83 IncrementalHoareTripleChecker+Valid, 115 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2021-11-23 03:52:17,078 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [163 Valid, 289 Invalid, 198 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [83 Valid, 115 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2021-11-23 03:52:17,080 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 205 states. [2021-11-23 03:52:17,118 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 205 to 187. [2021-11-23 03:52:17,119 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 187 states, 127 states have (on average 1.2283464566929134) internal successors, (156), 139 states have internal predecessors, (156), 30 states have call successors, (30), 27 states have call predecessors, (30), 29 states have return successors, (42), 30 states have call predecessors, (42), 30 states have call successors, (42) [2021-11-23 03:52:17,121 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 187 states to 187 states and 228 transitions. [2021-11-23 03:52:17,122 INFO L78 Accepts]: Start accepts. Automaton has 187 states and 228 transitions. Word has length 34 [2021-11-23 03:52:17,122 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:52:17,122 INFO L470 AbstractCegarLoop]: Abstraction has 187 states and 228 transitions. [2021-11-23 03:52:17,123 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 3.5714285714285716) internal successors, (25), 7 states have internal predecessors, (25), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2021-11-23 03:52:17,123 INFO L276 IsEmpty]: Start isEmpty. Operand 187 states and 228 transitions. [2021-11-23 03:52:17,124 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2021-11-23 03:52:17,124 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:52:17,125 INFO L514 BasicCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:52:17,125 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2021-11-23 03:52:17,125 INFO L402 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:52:17,126 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:52:17,126 INFO L85 PathProgramCache]: Analyzing trace with hash -1720978991, now seen corresponding path program 1 times [2021-11-23 03:52:17,126 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:52:17,127 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1816677694] [2021-11-23 03:52:17,127 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:52:17,127 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:52:17,145 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:52:17,210 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2021-11-23 03:52:17,210 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:52:17,211 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1816677694] [2021-11-23 03:52:17,211 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1816677694] provided 0 perfect and 1 imperfect interpolant sequences [2021-11-23 03:52:17,211 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1164732310] [2021-11-23 03:52:17,211 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:52:17,212 INFO L168 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2021-11-23 03:52:17,212 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 [2021-11-23 03:52:17,213 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2021-11-23 03:52:17,241 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2021-11-23 03:52:17,318 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:52:17,322 INFO L263 TraceCheckSpWp]: Trace formula consists of 357 conjuncts, 31 conjunts are in the unsatisfiable core [2021-11-23 03:52:17,328 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2021-11-23 03:52:17,621 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2021-11-23 03:52:17,621 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2021-11-23 03:52:18,152 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2021-11-23 03:52:18,153 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1164732310] provided 0 perfect and 2 imperfect interpolant sequences [2021-11-23 03:52:18,153 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1203676608] [2021-11-23 03:52:18,181 INFO L159 IcfgInterpreter]: Started Sifa with 34 locations of interest [2021-11-23 03:52:18,181 INFO L166 IcfgInterpreter]: Building call graph [2021-11-23 03:52:18,186 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2021-11-23 03:52:18,192 INFO L176 IcfgInterpreter]: Starting interpretation [2021-11-23 03:52:18,193 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2021-11-23 03:52:20,020 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 294 for LOIs [2021-11-23 03:52:20,099 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 295 for LOIs [2021-11-23 03:52:25,137 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 292 for LOIs [2021-11-23 03:52:26,097 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 45 for LOIs [2021-11-23 03:52:26,106 INFO L180 IcfgInterpreter]: Interpretation finished [2021-11-23 03:53:03,130 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2589#(and (= (select |#length| 15) 25) (= (select (select |#memory_int| 19) 0) 79) (= (select (select |#memory_int| 17) 6) 0) (= 9 (select |#length| 5)) (= (select |#length| 9) 21) (= 30 (select |#length| 7)) (= 1 (select |#valid| 5)) (= |timeShift_getWaterLevel_~retValue_acc~4#1| |timeShift_getWaterLevel_#res#1|) (= (select |#length| 3) 12) (= 2 (select |#length| 20)) (= (select |#valid| 15) 1) (= (select (select |#memory_int| 22) 0) 79) (= 5 (select |#length| 18)) (= (select |#valid| 26) 1) (= (select (select |#memory_int| 27) 2) 0) (= |timeShift_getWaterLevel_~retValue_acc~4#1| ~waterLevel~0) (= (select (select |#memory_int| 26) 3) 0) (= (select |#valid| 9) 1) (= 13 (select |#length| 16)) (= (select |#length| 12) 25) (= (select (select |#memory_int| 18) 2) 73) (= (select |#length| 28) 2) (= (select |#valid| 11) 1) (= (select |#valid| 27) 1) (= 30 (select |#length| 4)) (= (select |#length| 22) 3) (= 4 (select |#length| 26)) (= 102 (select (select |#memory_int| 23) 1)) (= 31 (select |#length| 2)) (= ~head~0.offset 0) (= (select |#length| 21) 13) (= (select |#length| 27) 3) (<= 1 ~systemActive~0) (= 2 (select |#length| 1)) (= (select |#length| 8) 9) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~10#1|) (= 84 (select (select |#memory_int| 18) 3)) (= 41 (select (select |#memory_int| 27) 0)) (= (select |#valid| 3) 1) (= (select |#length| 19) 3) (= (select |#valid| 7) 1) (= |timeShift_getWaterLevel_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|) (= (select |#valid| 18) 1) (<= |#NULL.offset| 0) (= 0 |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (= (select |#valid| 22) 1) (= 30 (select |#length| 13)) (= 117 (select (select |#memory_int| 24) 2)) (= |old(~pumpRunning~0)| 0) (= (select |#valid| 24) 1) (= 30 (select |#length| 10)) (= (select (select |#memory_int| 19) 2) 0) (= 3 (select |#length| 25)) (= (select |#valid| 12) 1) (= 82 (select (select |#memory_int| 18) 1)) (= (select (select |#memory_int| 25) 1) 110) (= (select |#valid| 28) 1) (= (select (select |#memory_int| 25) 2) 0) (= 102 (select (select |#memory_int| 23) 2)) (= (select (select |#memory_int| 28) 1) 0) (<= ~methaneLevelCritical~0 0) (= (select |#valid| 4) 1) (<= 0 ~head~0.base) (= (select (select |#memory_int| 22) 2) 0) (= (select |#valid| 1) 1) (= (select |#valid| 20) 1) (= (select |#length| 6) 21) (= (select |#valid| 21) 1) (= 7 (select |#length| 24)) (= 58 (select (select |#memory_int| 24) 5)) (= (select (select |#memory_int| 24) 1) 80) (= (select (select |#memory_int| 26) 2) 102) (= (select (select |#memory_int| 24) 6) 0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~10#1|) (<= 0 ~methaneLevelCritical~0) (= (select (select |#memory_int| 18) 4) 0) (= (select |#valid| 14) 1) (= 109 (select (select |#memory_int| 24) 3)) (= |old(~waterLevel~0)| ~waterLevel~0) (= 77 (select (select |#memory_int| 17) 1)) (= 110 (select (select |#memory_int| 22) 1)) (= 9 (select |#length| 14)) (= (select (select |#memory_int| 17) 4) 104) (= (select |#valid| 0) 0) (= 79 (select (select |#memory_int| 26) 0)) (= (select (select |#memory_int| 28) 0) 10) (= (select |#valid| 25) 1) (<= ~head~0.base 0) (= 112 (select (select |#memory_int| 24) 4)) (= (select (select |#memory_int| 23) 3) 0) (= 116 (select (select |#memory_int| 17) 3)) (= (select |#valid| 2) 1) (= (select (select |#memory_int| 20) 0) 41) (= 9 (select |#length| 11)) (= 44 (select (select |#memory_int| 24) 0)) (= |timeShift___utac_acc__Specification3_spec__1_~tmp~3#1| 0) (= (select (select |#memory_int| 26) 1) 102) (= (select (select |#memory_int| 1) 0) 48) (= 67 (select (select |#memory_int| 18) 0)) (= (select |#valid| 23) 1) (= 4 (select |#length| 23)) (= (select (select |#memory_int| 23) 0) 79) (= (select (select |#memory_int| 27) 1) 32) (= 101 (select (select |#memory_int| 17) 2)) (= (select |#valid| 19) 1) (= (select (select |#memory_int| 19) 1) 75) (= (select (select |#memory_int| 20) 1) 0) (<= 0 |#NULL.offset|) (= 44 (select (select |#memory_int| 17) 0)) (= (select |#valid| 16) 1) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (= (select |#valid| 6) 1) (= (select (select |#memory_int| 1) 1) 0) (= (select |#length| 17) 7) (= (select |#valid| 17) 1) (= (select |#valid| 10) 1) (= (select |#valid| 8) 1) (= (select (select |#memory_int| 17) 5) 58) (= (select |#valid| 13) 1) (< 0 |#StackHeapBarrier|) (<= ~systemActive~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0) (= 2 |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|) (= (select (select |#memory_int| 25) 0) 79))' at error location [2021-11-23 03:53:03,131 WARN L312 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2021-11-23 03:53:03,131 INFO L186 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2021-11-23 03:53:03,131 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 8, 10] total 20 [2021-11-23 03:53:03,132 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1697365078] [2021-11-23 03:53:03,132 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2021-11-23 03:53:03,132 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2021-11-23 03:53:03,133 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:53:03,133 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2021-11-23 03:53:03,135 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=259, Invalid=1633, Unknown=0, NotChecked=0, Total=1892 [2021-11-23 03:53:03,138 INFO L87 Difference]: Start difference. First operand 187 states and 228 transitions. Second operand has 20 states, 17 states have (on average 3.823529411764706) internal successors, (65), 17 states have internal predecessors, (65), 6 states have call successors, (13), 5 states have call predecessors, (13), 9 states have return successors, (12), 8 states have call predecessors, (12), 6 states have call successors, (12) [2021-11-23 03:53:05,291 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:53:05,291 INFO L93 Difference]: Finished difference Result 1004 states and 1315 transitions. [2021-11-23 03:53:05,291 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 48 states. [2021-11-23 03:53:05,292 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 17 states have (on average 3.823529411764706) internal successors, (65), 17 states have internal predecessors, (65), 6 states have call successors, (13), 5 states have call predecessors, (13), 9 states have return successors, (12), 8 states have call predecessors, (12), 6 states have call successors, (12) Word has length 35 [2021-11-23 03:53:05,292 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:53:05,299 INFO L225 Difference]: With dead ends: 1004 [2021-11-23 03:53:05,299 INFO L226 Difference]: Without dead ends: 865 [2021-11-23 03:53:05,304 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 159 GetRequests, 72 SyntacticMatches, 6 SemanticMatches, 81 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2530 ImplicationChecksByTransitivity, 38.2s TimeCoverageRelationStatistics Valid=786, Invalid=6020, Unknown=0, NotChecked=0, Total=6806 [2021-11-23 03:53:05,304 INFO L933 BasicCegarLoop]: 135 mSDtfsCounter, 486 mSDsluCounter, 1069 mSDsCounter, 0 mSdLazyCounter, 1227 mSolverCounterSat, 259 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 489 SdHoareTripleChecker+Valid, 1053 SdHoareTripleChecker+Invalid, 1486 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 259 IncrementalHoareTripleChecker+Valid, 1227 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2021-11-23 03:53:05,305 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [489 Valid, 1053 Invalid, 1486 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [259 Valid, 1227 Invalid, 0 Unknown, 0 Unchecked, 0.9s Time] [2021-11-23 03:53:05,307 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 865 states. [2021-11-23 03:53:05,386 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 865 to 768. [2021-11-23 03:53:05,388 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 768 states, 534 states have (on average 1.2172284644194757) internal successors, (650), 564 states have internal predecessors, (650), 120 states have call successors, (120), 104 states have call predecessors, (120), 113 states have return successors, (191), 120 states have call predecessors, (191), 120 states have call successors, (191) [2021-11-23 03:53:05,395 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 768 states to 768 states and 961 transitions. [2021-11-23 03:53:05,395 INFO L78 Accepts]: Start accepts. Automaton has 768 states and 961 transitions. Word has length 35 [2021-11-23 03:53:05,396 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:53:05,396 INFO L470 AbstractCegarLoop]: Abstraction has 768 states and 961 transitions. [2021-11-23 03:53:05,396 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 17 states have (on average 3.823529411764706) internal successors, (65), 17 states have internal predecessors, (65), 6 states have call successors, (13), 5 states have call predecessors, (13), 9 states have return successors, (12), 8 states have call predecessors, (12), 6 states have call successors, (12) [2021-11-23 03:53:05,396 INFO L276 IsEmpty]: Start isEmpty. Operand 768 states and 961 transitions. [2021-11-23 03:53:05,398 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2021-11-23 03:53:05,398 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:53:05,398 INFO L514 BasicCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:53:05,436 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2021-11-23 03:53:05,616 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2021-11-23 03:53:05,616 INFO L402 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:53:05,616 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:53:05,617 INFO L85 PathProgramCache]: Analyzing trace with hash -215949219, now seen corresponding path program 1 times [2021-11-23 03:53:05,617 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:53:05,617 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1027128744] [2021-11-23 03:53:05,617 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:53:05,617 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:53:05,640 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:53:05,731 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2021-11-23 03:53:05,732 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:53:05,732 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1027128744] [2021-11-23 03:53:05,732 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1027128744] provided 1 perfect and 0 imperfect interpolant sequences [2021-11-23 03:53:05,732 INFO L186 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2021-11-23 03:53:05,732 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2021-11-23 03:53:05,732 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2071826047] [2021-11-23 03:53:05,733 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2021-11-23 03:53:05,734 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2021-11-23 03:53:05,734 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:53:05,735 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2021-11-23 03:53:05,735 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=18, Invalid=72, Unknown=0, NotChecked=0, Total=90 [2021-11-23 03:53:05,735 INFO L87 Difference]: Start difference. First operand 768 states and 961 transitions. Second operand has 10 states, 8 states have (on average 3.375) internal successors, (27), 8 states have internal predecessors, (27), 3 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) [2021-11-23 03:53:06,290 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:53:06,290 INFO L93 Difference]: Finished difference Result 1941 states and 2547 transitions. [2021-11-23 03:53:06,291 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2021-11-23 03:53:06,291 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 8 states have (on average 3.375) internal successors, (27), 8 states have internal predecessors, (27), 3 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) Word has length 38 [2021-11-23 03:53:06,291 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:53:06,302 INFO L225 Difference]: With dead ends: 1941 [2021-11-23 03:53:06,302 INFO L226 Difference]: Without dead ends: 1352 [2021-11-23 03:53:06,305 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 21 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 33 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=72, Invalid=270, Unknown=0, NotChecked=0, Total=342 [2021-11-23 03:53:06,306 INFO L933 BasicCegarLoop]: 58 mSDtfsCounter, 144 mSDsluCounter, 142 mSDsCounter, 0 mSdLazyCounter, 545 mSolverCounterSat, 88 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 149 SdHoareTripleChecker+Valid, 172 SdHoareTripleChecker+Invalid, 633 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 88 IncrementalHoareTripleChecker+Valid, 545 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2021-11-23 03:53:06,306 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [149 Valid, 172 Invalid, 633 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [88 Valid, 545 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2021-11-23 03:53:06,309 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1352 states. [2021-11-23 03:53:06,407 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1352 to 1296. [2021-11-23 03:53:06,410 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1296 states, 893 states have (on average 1.1926091825307952) internal successors, (1065), 942 states have internal predecessors, (1065), 207 states have call successors, (207), 179 states have call predecessors, (207), 195 states have return successors, (339), 208 states have call predecessors, (339), 207 states have call successors, (339) [2021-11-23 03:53:06,421 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1296 states to 1296 states and 1611 transitions. [2021-11-23 03:53:06,422 INFO L78 Accepts]: Start accepts. Automaton has 1296 states and 1611 transitions. Word has length 38 [2021-11-23 03:53:06,422 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:53:06,422 INFO L470 AbstractCegarLoop]: Abstraction has 1296 states and 1611 transitions. [2021-11-23 03:53:06,422 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 8 states have (on average 3.375) internal successors, (27), 8 states have internal predecessors, (27), 3 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) [2021-11-23 03:53:06,423 INFO L276 IsEmpty]: Start isEmpty. Operand 1296 states and 1611 transitions. [2021-11-23 03:53:06,426 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2021-11-23 03:53:06,427 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:53:06,427 INFO L514 BasicCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:53:06,427 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2021-11-23 03:53:06,427 INFO L402 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:53:06,428 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:53:06,428 INFO L85 PathProgramCache]: Analyzing trace with hash 97085556, now seen corresponding path program 1 times [2021-11-23 03:53:06,428 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:53:06,428 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1199020447] [2021-11-23 03:53:06,428 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:53:06,429 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:53:06,444 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:53:06,486 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 16 proven. 1 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2021-11-23 03:53:06,486 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:53:06,486 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1199020447] [2021-11-23 03:53:06,487 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1199020447] provided 0 perfect and 1 imperfect interpolant sequences [2021-11-23 03:53:06,487 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1776785596] [2021-11-23 03:53:06,487 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:53:06,487 INFO L168 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2021-11-23 03:53:06,487 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 [2021-11-23 03:53:06,490 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2021-11-23 03:53:06,501 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2021-11-23 03:53:06,577 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:53:06,580 INFO L263 TraceCheckSpWp]: Trace formula consists of 426 conjuncts, 24 conjunts are in the unsatisfiable core [2021-11-23 03:53:06,584 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2021-11-23 03:53:06,841 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 4 proven. 11 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2021-11-23 03:53:06,842 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2021-11-23 03:53:07,193 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 6 proven. 2 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2021-11-23 03:53:07,193 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1776785596] provided 0 perfect and 2 imperfect interpolant sequences [2021-11-23 03:53:07,193 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1194334121] [2021-11-23 03:53:07,196 INFO L159 IcfgInterpreter]: Started Sifa with 37 locations of interest [2021-11-23 03:53:07,196 INFO L166 IcfgInterpreter]: Building call graph [2021-11-23 03:53:07,197 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2021-11-23 03:53:07,197 INFO L176 IcfgInterpreter]: Starting interpretation [2021-11-23 03:53:07,197 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2021-11-23 03:53:13,153 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 294 for LOIs [2021-11-23 03:53:13,191 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 299 for LOIs [2021-11-23 03:53:14,689 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 299 for LOIs [2021-11-23 03:53:15,994 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 44 for LOIs [2021-11-23 03:53:16,001 INFO L180 IcfgInterpreter]: Interpretation finished [2021-11-23 03:53:47,034 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10822#(and (= ~methaneLevelCritical~0 |timeShift___utac_acc__Specification3_spec__1_~tmp~3#1|) (= |timeShift_getWaterLevel_~retValue_acc~4#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~4#1| ~waterLevel~0) (= ~methaneLevelCritical~0 0) (= ~head~0.offset 0) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~10#1|) (= |timeShift_getWaterLevel_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|) (= 0 |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (<= 2 |old(~waterLevel~0)|) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~10#1|) (= ~head~0.base 0) (= |#NULL.offset| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0) (= 2 |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|))' at error location [2021-11-23 03:53:47,034 WARN L312 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2021-11-23 03:53:47,034 INFO L186 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2021-11-23 03:53:47,034 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 9, 8] total 19 [2021-11-23 03:53:47,034 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1206522626] [2021-11-23 03:53:47,034 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2021-11-23 03:53:47,035 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 19 states [2021-11-23 03:53:47,035 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:53:47,036 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2021-11-23 03:53:47,036 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=241, Invalid=1565, Unknown=0, NotChecked=0, Total=1806 [2021-11-23 03:53:47,037 INFO L87 Difference]: Start difference. First operand 1296 states and 1611 transitions. Second operand has 19 states, 17 states have (on average 5.705882352941177) internal successors, (97), 18 states have internal predecessors, (97), 9 states have call successors, (19), 7 states have call predecessors, (19), 7 states have return successors, (16), 10 states have call predecessors, (16), 9 states have call successors, (16) [2021-11-23 03:53:51,637 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:53:51,637 INFO L93 Difference]: Finished difference Result 4410 states and 5847 transitions. [2021-11-23 03:53:51,637 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 103 states. [2021-11-23 03:53:51,638 INFO L78 Accepts]: Start accepts. Automaton has has 19 states, 17 states have (on average 5.705882352941177) internal successors, (97), 18 states have internal predecessors, (97), 9 states have call successors, (19), 7 states have call predecessors, (19), 7 states have return successors, (16), 10 states have call predecessors, (16), 9 states have call successors, (16) Word has length 55 [2021-11-23 03:53:51,638 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:53:51,662 INFO L225 Difference]: With dead ends: 4410 [2021-11-23 03:53:51,663 INFO L226 Difference]: Without dead ends: 3116 [2021-11-23 03:53:51,679 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 296 GetRequests, 148 SyntacticMatches, 6 SemanticMatches, 142 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 7891 ImplicationChecksByTransitivity, 33.8s TimeCoverageRelationStatistics Valid=1942, Invalid=18650, Unknown=0, NotChecked=0, Total=20592 [2021-11-23 03:53:51,681 INFO L933 BasicCegarLoop]: 148 mSDtfsCounter, 1178 mSDsluCounter, 948 mSDsCounter, 0 mSdLazyCounter, 2692 mSolverCounterSat, 1118 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1178 SdHoareTripleChecker+Valid, 826 SdHoareTripleChecker+Invalid, 3810 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1118 IncrementalHoareTripleChecker+Valid, 2692 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.7s IncrementalHoareTripleChecker+Time [2021-11-23 03:53:51,682 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [1178 Valid, 826 Invalid, 3810 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1118 Valid, 2692 Invalid, 0 Unknown, 0 Unchecked, 1.7s Time] [2021-11-23 03:53:51,686 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 3116 states. [2021-11-23 03:53:51,929 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 3116 to 2823. [2021-11-23 03:53:51,936 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2823 states, 1938 states have (on average 1.152734778121775) internal successors, (2234), 2042 states have internal predecessors, (2234), 457 states have call successors, (457), 387 states have call predecessors, (457), 427 states have return successors, (780), 450 states have call predecessors, (780), 457 states have call successors, (780) [2021-11-23 03:53:51,956 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2823 states to 2823 states and 3471 transitions. [2021-11-23 03:53:51,957 INFO L78 Accepts]: Start accepts. Automaton has 2823 states and 3471 transitions. Word has length 55 [2021-11-23 03:53:51,957 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:53:51,957 INFO L470 AbstractCegarLoop]: Abstraction has 2823 states and 3471 transitions. [2021-11-23 03:53:51,958 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 19 states, 17 states have (on average 5.705882352941177) internal successors, (97), 18 states have internal predecessors, (97), 9 states have call successors, (19), 7 states have call predecessors, (19), 7 states have return successors, (16), 10 states have call predecessors, (16), 9 states have call successors, (16) [2021-11-23 03:53:51,958 INFO L276 IsEmpty]: Start isEmpty. Operand 2823 states and 3471 transitions. [2021-11-23 03:53:51,962 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 71 [2021-11-23 03:53:51,963 INFO L506 BasicCegarLoop]: Found error trace [2021-11-23 03:53:51,963 INFO L514 BasicCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:53:52,001 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2021-11-23 03:53:52,175 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2021-11-23 03:53:52,176 INFO L402 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2021-11-23 03:53:52,176 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2021-11-23 03:53:52,176 INFO L85 PathProgramCache]: Analyzing trace with hash -1354679767, now seen corresponding path program 1 times [2021-11-23 03:53:52,176 INFO L121 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2021-11-23 03:53:52,176 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2070345577] [2021-11-23 03:53:52,177 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:53:52,177 INFO L126 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2021-11-23 03:53:52,202 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:53:52,348 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 14 proven. 10 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2021-11-23 03:53:52,348 INFO L139 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2021-11-23 03:53:52,349 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2070345577] [2021-11-23 03:53:52,349 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2070345577] provided 0 perfect and 1 imperfect interpolant sequences [2021-11-23 03:53:52,349 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [132640374] [2021-11-23 03:53:52,349 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2021-11-23 03:53:52,349 INFO L168 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2021-11-23 03:53:52,350 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 [2021-11-23 03:53:52,350 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2021-11-23 03:53:52,356 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2021-11-23 03:53:52,471 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2021-11-23 03:53:52,474 INFO L263 TraceCheckSpWp]: Trace formula consists of 464 conjuncts, 39 conjunts are in the unsatisfiable core [2021-11-23 03:53:52,480 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2021-11-23 03:53:52,679 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 2 proven. 34 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2021-11-23 03:53:52,679 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2021-11-23 03:53:53,168 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 12 proven. 1 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2021-11-23 03:53:53,168 INFO L160 FreeRefinementEngine]: IpTcStrategyModuleZ3 [132640374] provided 0 perfect and 2 imperfect interpolant sequences [2021-11-23 03:53:53,168 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1606391551] [2021-11-23 03:53:53,171 INFO L159 IcfgInterpreter]: Started Sifa with 39 locations of interest [2021-11-23 03:53:53,171 INFO L166 IcfgInterpreter]: Building call graph [2021-11-23 03:53:53,171 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2021-11-23 03:53:53,172 INFO L176 IcfgInterpreter]: Starting interpretation [2021-11-23 03:53:53,172 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2021-11-23 03:54:10,150 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 303 for LOIs [2021-11-23 03:54:10,207 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 46 for LOIs [2021-11-23 03:54:10,358 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 42 for LOIs [2021-11-23 03:54:10,526 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 43 for LOIs [2021-11-23 03:54:10,532 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 38 for LOIs [2021-11-23 03:54:10,536 INFO L180 IcfgInterpreter]: Interpretation finished [2021-11-23 03:54:20,984 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '22646#(and (= ~methaneLevelCritical~0 |timeShift___utac_acc__Specification3_spec__1_~tmp~3#1|) (= |timeShift_getWaterLevel_~retValue_acc~4#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~4#1| ~waterLevel~0) (= ~head~0.offset 0) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~10#1|) (= |timeShift_getWaterLevel_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|) (= 0 |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (<= 2 |old(~waterLevel~0)|) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~10#1|) (= ~head~0.base 0) (= |#NULL.offset| 0) (= |timeShift___utac_acc__Specification3_spec__1_~tmp~3#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0) (= 2 |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|))' at error location [2021-11-23 03:54:20,985 WARN L312 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2021-11-23 03:54:20,985 INFO L186 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2021-11-23 03:54:20,985 INFO L199 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 11, 10] total 26 [2021-11-23 03:54:20,985 INFO L115 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1886893896] [2021-11-23 03:54:20,985 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2021-11-23 03:54:20,986 INFO L546 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2021-11-23 03:54:20,986 INFO L103 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2021-11-23 03:54:20,986 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2021-11-23 03:54:20,988 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=254, Invalid=2826, Unknown=0, NotChecked=0, Total=3080 [2021-11-23 03:54:20,988 INFO L87 Difference]: Start difference. First operand 2823 states and 3471 transitions. Second operand has 26 states, 20 states have (on average 4.75) internal successors, (95), 21 states have internal predecessors, (95), 7 states have call successors, (21), 5 states have call predecessors, (21), 10 states have return successors, (24), 11 states have call predecessors, (24), 7 states have call successors, (24) [2021-11-23 03:54:23,915 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2021-11-23 03:54:23,915 INFO L93 Difference]: Finished difference Result 4931 states and 6269 transitions. [2021-11-23 03:54:23,916 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 40 states. [2021-11-23 03:54:23,916 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 20 states have (on average 4.75) internal successors, (95), 21 states have internal predecessors, (95), 7 states have call successors, (21), 5 states have call predecessors, (21), 10 states have return successors, (24), 11 states have call predecessors, (24), 7 states have call successors, (24) Word has length 70 [2021-11-23 03:54:23,917 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2021-11-23 03:54:23,918 INFO L225 Difference]: With dead ends: 4931 [2021-11-23 03:54:23,919 INFO L226 Difference]: Without dead ends: 0 [2021-11-23 03:54:23,939 INFO L932 BasicCegarLoop]: 0 DeclaredPredicates, 281 GetRequests, 187 SyntacticMatches, 2 SemanticMatches, 92 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2530 ImplicationChecksByTransitivity, 12.1s TimeCoverageRelationStatistics Valid=879, Invalid=7863, Unknown=0, NotChecked=0, Total=8742 [2021-11-23 03:54:23,939 INFO L933 BasicCegarLoop]: 86 mSDtfsCounter, 916 mSDsluCounter, 432 mSDsCounter, 0 mSdLazyCounter, 1813 mSolverCounterSat, 830 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 916 SdHoareTripleChecker+Valid, 432 SdHoareTripleChecker+Invalid, 2643 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 830 IncrementalHoareTripleChecker+Valid, 1813 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.3s IncrementalHoareTripleChecker+Time [2021-11-23 03:54:23,940 INFO L934 BasicCegarLoop]: SdHoareTripleChecker [916 Valid, 432 Invalid, 2643 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [830 Valid, 1813 Invalid, 0 Unknown, 0 Unchecked, 1.3s Time] [2021-11-23 03:54:23,940 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2021-11-23 03:54:23,941 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2021-11-23 03:54:23,941 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2021-11-23 03:54:23,941 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2021-11-23 03:54:23,942 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 70 [2021-11-23 03:54:23,942 INFO L84 Accepts]: Finished accepts. word is rejected. [2021-11-23 03:54:23,942 INFO L470 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2021-11-23 03:54:23,943 INFO L471 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 20 states have (on average 4.75) internal successors, (95), 21 states have internal predecessors, (95), 7 states have call successors, (21), 5 states have call predecessors, (21), 10 states have return successors, (24), 11 states have call predecessors, (24), 7 states have call successors, (24) [2021-11-23 03:54:23,943 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2021-11-23 03:54:23,943 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2021-11-23 03:54:23,946 INFO L764 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2021-11-23 03:54:23,985 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2021-11-23 03:54:24,161 WARN L452 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2021-11-23 03:54:24,163 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2021-11-23 03:54:42,674 INFO L858 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 641 647) no Hoare annotation was computed. [2021-11-23 03:54:42,674 INFO L861 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 641 647) the Hoare annotation is: true [2021-11-23 03:54:42,674 INFO L854 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 450 461) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0) (not (<= ~waterLevel~0 2))) [2021-11-23 03:54:42,675 INFO L858 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 450 461) no Hoare annotation was computed. [2021-11-23 03:54:42,675 INFO L858 garLoopResultBuilder]: For program point cleanupEXIT(lines 896 925) no Hoare annotation was computed. [2021-11-23 03:54:42,675 INFO L861 garLoopResultBuilder]: At program point cleanupENTRY(lines 896 925) the Hoare annotation is: true [2021-11-23 03:54:42,675 INFO L861 garLoopResultBuilder]: At program point L921(lines 896 925) the Hoare annotation is: true [2021-11-23 03:54:42,675 INFO L858 garLoopResultBuilder]: For program point L917(line 917) no Hoare annotation was computed. [2021-11-23 03:54:42,675 INFO L858 garLoopResultBuilder]: For program point L910(lines 910 914) no Hoare annotation was computed. [2021-11-23 03:54:42,676 INFO L861 garLoopResultBuilder]: At program point L910-1(lines 910 914) the Hoare annotation is: true [2021-11-23 03:54:42,676 INFO L861 garLoopResultBuilder]: At program point L906-2(lines 906 920) the Hoare annotation is: true [2021-11-23 03:54:42,676 INFO L861 garLoopResultBuilder]: At program point L902(line 902) the Hoare annotation is: true [2021-11-23 03:54:42,676 INFO L858 garLoopResultBuilder]: For program point L902-1(line 902) no Hoare annotation was computed. [2021-11-23 03:54:42,676 INFO L854 garLoopResultBuilder]: At program point L576(lines 576 596) the Hoare annotation is: (let ((.cse8 (= ~methaneLevelCritical~0 |timeShift___utac_acc__Specification3_spec__1_~tmp~3#1|)) (.cse9 (<= ~waterLevel~0 1)) (.cse13 (= ~methaneLevelCritical~0 0)) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse10 (= ~pumpRunning~0 1))) (let ((.cse4 (= ~pumpRunning~0 0)) (.cse5 (and .cse13 .cse3 .cse10)) (.cse6 (not .cse13)) (.cse7 (not (<= |old(~waterLevel~0)| 2))) (.cse12 (and .cse8 .cse9)) (.cse11 (not (<= |old(~waterLevel~0)| 1))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse4 .cse5 .cse1 .cse6 .cse7) (or .cse8 .cse1 .cse2) (or .cse1 (not (= |old(~pumpRunning~0)| 1)) (and .cse9 .cse10) .cse7 (and .cse4 .cse9)) (or .cse11 .cse1 .cse12) (or .cse5 .cse1 .cse6 .cse7 .cse12) (or .cse11 .cse0 .cse1 .cse3) (or .cse1 .cse2 .cse3 (= ~waterLevel~0 1))))) [2021-11-23 03:54:42,677 INFO L854 garLoopResultBuilder]: At program point L605(line 605) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (not (<= |old(~waterLevel~0)| 2))) [2021-11-23 03:54:42,677 INFO L854 garLoopResultBuilder]: At program point L689(line 689) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 0))) (let ((.cse3 (not .cse1)) (.cse0 (not (= 1 ~systemActive~0))) (.cse4 (not (<= |old(~waterLevel~0)| 2)))) (and (or (not (<= |old(~waterLevel~0)| 1)) .cse0 (and (let ((.cse2 (= |old(~waterLevel~0)| ~waterLevel~0))) (or (and .cse1 .cse2) (and .cse3 (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (< 0 |old(~waterLevel~0)|)) (and (<= |old(~waterLevel~0)| 0) .cse2))))) (or .cse3 (< |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1| 2)))) (or (and .cse3 (= ~waterLevel~0 1)) .cse0 (not (= |old(~waterLevel~0)| 2))) (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse4 (= ~pumpRunning~0 1)) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse4)))) [2021-11-23 03:54:42,677 INFO L858 garLoopResultBuilder]: For program point L586(lines 586 592) no Hoare annotation was computed. [2021-11-23 03:54:42,677 INFO L854 garLoopResultBuilder]: At program point L582(lines 582 595) the Hoare annotation is: (let ((.cse8 (= ~methaneLevelCritical~0 0)) (.cse10 (<= ~waterLevel~0 1)) (.cse11 (= ~methaneLevelCritical~0 |timeShift___utac_acc__Specification3_spec__1_~tmp~3#1|)) (.cse12 (= 1 ~systemActive~0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (= ~pumpRunning~0 1))) (let ((.cse4 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= |old(~waterLevel~0)| 2))) (.cse2 (and .cse11 (= 2 ~waterLevel~0) .cse12 .cse6 .cse7)) (.cse5 (= ~pumpRunning~0 0)) (.cse0 (not .cse12)) (.cse3 (and .cse11 .cse8 .cse10 .cse12 (<= |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1| 1))) (.cse9 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 (= ~waterLevel~0 1) .cse2) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse3) (or .cse4 (and .cse5 .cse6) .cse0 (not (< |old(~waterLevel~0)| 2)) (and .cse6 .cse7)) (or .cse4 (not (= |old(~waterLevel~0)| 1)) .cse0 (= |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1| 1)) (or .cse8 .cse0 .cse9) (or .cse4 .cse0 .cse1 .cse2) (or .cse5 .cse0 (not (= |old(~pumpRunning~0)| 1)) (and .cse10 .cse7) .cse9) (or .cse0 .cse3 .cse6 .cse9)))) [2021-11-23 03:54:42,678 INFO L854 garLoopResultBuilder]: At program point L582-1(lines 567 599) the Hoare annotation is: (let ((.cse9 (= ~methaneLevelCritical~0 |timeShift___utac_acc__Specification3_spec__1_~tmp~3#1|)) (.cse15 (= ~methaneLevelCritical~0 0)) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse14 (= ~pumpRunning~0 1))) (let ((.cse6 (<= |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1| 1)) (.cse4 (and .cse9 .cse15 .cse3 .cse14)) (.cse7 (not .cse15)) (.cse5 (<= ~waterLevel~0 1)) (.cse10 (not (<= |old(~waterLevel~0)| 1))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (not (= |old(~waterLevel~0)| 2))) (.cse12 (= ~waterLevel~0 1)) (.cse11 (= ~pumpRunning~0 0)) (.cse1 (not (= 1 ~systemActive~0))) (.cse13 (not (= |old(~pumpRunning~0)| 1))) (.cse8 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse1 .cse4 (and .cse5 .cse6) .cse7 .cse8) (or .cse9 .cse1 .cse2) (or .cse10 .cse1 .cse7 .cse6) (or .cse0 .cse11 .cse1 .cse4 .cse7 .cse8) (or .cse10 .cse1 (and .cse9 .cse5)) (or .cse10 .cse0 .cse1 .cse3) (or .cse1 .cse2 .cse3 .cse12) (or .cse1 .cse13 .cse2 .cse12) (or .cse11 .cse1 .cse13 .cse8 .cse14)))) [2021-11-23 03:54:42,678 INFO L854 garLoopResultBuilder]: At program point L574(line 574) the Hoare annotation is: (let ((.cse2 (not (= |old(~waterLevel~0)| 2))) (.cse4 (= ~waterLevel~0 1)) (.cse0 (not (<= |old(~waterLevel~0)| 1))) (.cse6 (not (= |old(~pumpRunning~0)| 1))) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse9 (not (= |old(~pumpRunning~0)| 0))) (.cse7 (= ~pumpRunning~0 0)) (.cse1 (not (= 1 ~systemActive~0))) (.cse8 (not (= ~methaneLevelCritical~0 0))) (.cse5 (= ~pumpRunning~0 1))) (and (or .cse0 .cse1 (<= ~waterLevel~0 1)) (or .cse1 .cse2 .cse3 .cse4) (or (and .cse4 .cse5) .cse1 .cse6 (and .cse7 .cse4) .cse2) (or .cse1 .cse8 .cse2 .cse4 .cse5) (or .cse0 .cse7 .cse1 .cse6 .cse5) (or .cse9 .cse1 .cse3 (not (<= |old(~waterLevel~0)| 2))) (or .cse9 .cse7 .cse1 (not (< |old(~waterLevel~0)| 2)) .cse8 .cse5))) [2021-11-23 03:54:42,678 INFO L858 garLoopResultBuilder]: For program point L574-1(line 574) no Hoare annotation was computed. [2021-11-23 03:54:42,678 INFO L854 garLoopResultBuilder]: At program point L694(line 694) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse1) (or (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse0 .cse1))) [2021-11-23 03:54:42,679 INFO L854 garLoopResultBuilder]: At program point L694-1(lines 675 699) the Hoare annotation is: (let ((.cse2 (not (= |old(~waterLevel~0)| 2))) (.cse4 (= ~waterLevel~0 1)) (.cse0 (not (<= |old(~waterLevel~0)| 1))) (.cse6 (not (= |old(~pumpRunning~0)| 1))) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse9 (not (= |old(~pumpRunning~0)| 0))) (.cse7 (= ~pumpRunning~0 0)) (.cse1 (not (= 1 ~systemActive~0))) (.cse8 (not (= ~methaneLevelCritical~0 0))) (.cse5 (= ~pumpRunning~0 1))) (and (or .cse0 .cse1 (<= ~waterLevel~0 1)) (or .cse1 .cse2 .cse3 .cse4) (or (and .cse4 .cse5) .cse1 .cse6 (and .cse7 .cse4) .cse2) (or .cse1 .cse8 .cse2 .cse4 .cse5) (or .cse0 .cse7 .cse1 .cse6 .cse5) (or .cse9 .cse1 .cse3 (not (<= |old(~waterLevel~0)| 2))) (or .cse9 .cse7 .cse1 (not (< |old(~waterLevel~0)| 2)) .cse8 .cse5))) [2021-11-23 03:54:42,679 INFO L858 garLoopResultBuilder]: For program point L628-1(lines 628 634) no Hoare annotation was computed. [2021-11-23 03:54:42,679 INFO L854 garLoopResultBuilder]: At program point timeShiftENTRY(lines 617 640) the Hoare annotation is: (let ((.cse1 (not (<= |old(~waterLevel~0)| 2))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not (= |old(~pumpRunning~0)| 1))) (.cse3 (= ~pumpRunning~0 1))) (and (or .cse0 (= |old(~waterLevel~0)| ~waterLevel~0) .cse1) (or .cse0 .cse2 (not (= |old(~waterLevel~0)| 2)) .cse3) (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 .cse1) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse2 .cse3))) [2021-11-23 03:54:42,679 INFO L858 garLoopResultBuilder]: For program point L621-1(lines 620 639) no Hoare annotation was computed. [2021-11-23 03:54:42,680 INFO L854 garLoopResultBuilder]: At program point L683(lines 683 691) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 0))) (let ((.cse3 (not .cse1)) (.cse0 (not (= 1 ~systemActive~0))) (.cse4 (not (<= |old(~waterLevel~0)| 2)))) (and (or (not (<= |old(~waterLevel~0)| 1)) .cse0 (and (let ((.cse2 (= |old(~waterLevel~0)| ~waterLevel~0))) (or (and .cse1 .cse2) (and .cse3 (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (< 0 |old(~waterLevel~0)|)) (and (<= |old(~waterLevel~0)| 0) .cse2))))) (or .cse3 (< |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1| 2)))) (or (and .cse3 (= ~waterLevel~0 1)) .cse0 (not (= |old(~waterLevel~0)| 2))) (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse4 (= ~pumpRunning~0 1)) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse4)))) [2021-11-23 03:54:42,680 INFO L858 garLoopResultBuilder]: For program point timeShiftEXIT(lines 617 640) no Hoare annotation was computed. [2021-11-23 03:54:42,680 INFO L858 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 605) no Hoare annotation was computed. [2021-11-23 03:54:42,680 INFO L854 garLoopResultBuilder]: At program point L679(lines 679 696) the Hoare annotation is: (let ((.cse0 (= ~pumpRunning~0 0)) (.cse2 (not (= 1 ~systemActive~0))) (.cse3 (not (<= |old(~waterLevel~0)| 2)))) (and (let ((.cse1 (= |old(~waterLevel~0)| ~waterLevel~0))) (or (and .cse0 .cse1) .cse2 (and (not .cse0) (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (< 0 |old(~waterLevel~0)|)) (and (<= |old(~waterLevel~0)| 0) .cse1))) .cse3)) (or .cse2 (not (= |old(~pumpRunning~0)| 1)) .cse3 (= ~pumpRunning~0 1)) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse2 .cse3))) [2021-11-23 03:54:42,680 INFO L861 garLoopResultBuilder]: At program point isMethaneLevelCriticalENTRY(lines 462 470) the Hoare annotation is: true [2021-11-23 03:54:42,681 INFO L858 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 462 470) no Hoare annotation was computed. [2021-11-23 03:54:42,681 INFO L854 garLoopResultBuilder]: At program point L886(lines 839 887) the Hoare annotation is: false [2021-11-23 03:54:42,681 INFO L854 garLoopResultBuilder]: At program point L977(lines 977 984) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= ~methaneLevelCritical~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1) (= |ULTIMATE.start_main_~tmp~10#1| 1)) [2021-11-23 03:54:42,681 INFO L861 garLoopResultBuilder]: At program point L977-2(lines 977 984) the Hoare annotation is: true [2021-11-23 03:54:42,681 INFO L858 garLoopResultBuilder]: For program point L841(lines 840 885) no Hoare annotation was computed. [2021-11-23 03:54:42,682 INFO L854 garLoopResultBuilder]: At program point L862(line 862) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (<= ~waterLevel~0 2))) (or (and (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 1)) .cse0 .cse1 .cse2 .cse3) (and (= ~methaneLevelCritical~0 0) .cse0 .cse1 .cse2 .cse3))) [2021-11-23 03:54:42,682 INFO L861 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2021-11-23 03:54:42,682 INFO L854 garLoopResultBuilder]: At program point L883(lines 840 885) the Hoare annotation is: (let ((.cse2 (= ~methaneLevelCritical~0 0)) (.cse0 (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0)) (.cse1 (= 1 ~systemActive~0)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (<= ~waterLevel~0 2)) (.cse5 (not (= 0 ~systemActive~0)))) (or (and (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 1)) .cse0 .cse1 (not .cse2) .cse3 .cse4 .cse5) (and .cse2 (<= ~waterLevel~0 1) .cse0 .cse1 .cse3 .cse5) (and .cse2 .cse0 .cse1 .cse3 .cse4 .cse5 (= ~pumpRunning~0 1)))) [2021-11-23 03:54:42,682 INFO L858 garLoopResultBuilder]: For program point L850(lines 850 856) no Hoare annotation was computed. [2021-11-23 03:54:42,682 INFO L858 garLoopResultBuilder]: For program point L850-1(lines 850 856) no Hoare annotation was computed. [2021-11-23 03:54:42,682 INFO L858 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2021-11-23 03:54:42,682 INFO L854 garLoopResultBuilder]: At program point L876-2(lines 870 881) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (<= ~waterLevel~0 2)) (.cse4 (not (= 0 ~systemActive~0)))) (or (and (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 1)) .cse0 .cse1 .cse2 .cse3 .cse4) (and (= ~methaneLevelCritical~0 0) .cse0 .cse1 .cse2 .cse3 .cse4))) [2021-11-23 03:54:42,683 INFO L858 garLoopResultBuilder]: For program point L860(lines 860 866) no Hoare annotation was computed. [2021-11-23 03:54:42,683 INFO L858 garLoopResultBuilder]: For program point L860-1(lines 860 866) no Hoare annotation was computed. [2021-11-23 03:54:42,683 INFO L861 garLoopResultBuilder]: At program point L889(lines 830 893) the Hoare annotation is: true [2021-11-23 03:54:42,683 INFO L854 garLoopResultBuilder]: At program point L852(line 852) the Hoare annotation is: (let ((.cse1 (<= ~waterLevel~0 1)) (.cse0 (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 1))) (.cse5 (not (= 0 ~systemActive~0))) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0)) (.cse3 (= 1 ~systemActive~0)) (.cse4 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse7 (<= ~waterLevel~0 2))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (and .cse6 .cse1 .cse2 .cse3 .cse4 .cse5) (and (= 2 ~waterLevel~0) .cse0 .cse2 .cse3 (not .cse6) .cse4 .cse5) (and .cse6 .cse2 .cse4 .cse7 (= |ULTIMATE.start_main_~tmp~10#1| 1) .cse5 (= ~pumpRunning~0 1)) (and (= ~pumpRunning~0 0) .cse6 .cse2 .cse3 .cse4 .cse7))) [2021-11-23 03:54:42,683 INFO L854 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 649 673) the Hoare annotation is: (let ((.cse2 (= |old(~pumpRunning~0)| 0)) (.cse1 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) (not (<= ~waterLevel~0 1)) (= ~pumpRunning~0 1)) (or (not (= ~waterLevel~0 1)) (not .cse1) .cse0 .cse2) (or (not .cse2) .cse1 .cse0 (not (<= ~waterLevel~0 2))))) [2021-11-23 03:54:42,684 INFO L854 garLoopResultBuilder]: At program point L663(line 663) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (= |old(~pumpRunning~0)| 0)) (.cse2 (<= ~waterLevel~0 1))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1) (or .cse0 (not (= |old(~pumpRunning~0)| 1)) (not .cse2)) (or .cse0 (and (not .cse1) (not (<= ~waterLevel~0 0))) (not (<= ~waterLevel~0 2)) (and (= ~pumpRunning~0 0) .cse2)))) [2021-11-23 03:54:42,684 INFO L858 garLoopResultBuilder]: For program point L657(lines 657 665) no Hoare annotation was computed. [2021-11-23 03:54:42,684 INFO L854 garLoopResultBuilder]: At program point L653(lines 653 670) the Hoare annotation is: (let ((.cse2 (= |old(~pumpRunning~0)| 0)) (.cse1 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) (not (<= ~waterLevel~0 1)) (= ~pumpRunning~0 1)) (or (not (= ~waterLevel~0 1)) (not .cse1) .cse0 .cse2) (or (not .cse2) .cse1 .cse0 (not (<= ~waterLevel~0 2))))) [2021-11-23 03:54:42,684 INFO L854 garLoopResultBuilder]: At program point L668(line 668) the Hoare annotation is: (let ((.cse1 (not (<= ~waterLevel~0 1))) (.cse2 (not (= ~pumpRunning~0 0))) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse1 (= ~pumpRunning~0 1)) (or .cse2 .cse0 (< |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1| 2) .cse1) (or (not (= ~waterLevel~0 1)) .cse2 .cse0) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (<= ~waterLevel~0 2))))) [2021-11-23 03:54:42,684 INFO L858 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 649 673) no Hoare annotation was computed. [2021-11-23 03:54:42,684 INFO L858 garLoopResultBuilder]: For program point L668-1(lines 649 673) no Hoare annotation was computed. [2021-11-23 03:54:42,685 INFO L854 garLoopResultBuilder]: At program point L739(line 739) the Hoare annotation is: (let ((.cse1 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not .cse1))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1) (or .cse0 (not (= |old(~pumpRunning~0)| 1)) (not (<= ~waterLevel~0 1))) (or .cse2 .cse0 (not (= 2 ~waterLevel~0)) (= |processEnvironment__wrappee__highWaterSensor_~tmp~4#1| 1)) (or (= ~pumpRunning~0 0) .cse0 (and .cse2 (not (<= ~waterLevel~0 0))) (not (<= ~waterLevel~0 2)))))) [2021-11-23 03:54:42,685 INFO L854 garLoopResultBuilder]: At program point L739-1(line 739) the Hoare annotation is: (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse3 (= ~pumpRunning~0 0)) (.cse4 (= |processEnvironment__wrappee__highWaterSensor_isMethaneAlarm_#t~ret39#1| ~methaneLevelCritical~0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not (<= ~waterLevel~0 1)))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1) (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse2) (or (not .cse1) .cse0 (and .cse3 .cse4 (= |processEnvironment__wrappee__highWaterSensor_~tmp~4#1| 1)) (not (= 2 ~waterLevel~0))) (or (and .cse3 .cse4) .cse0 .cse2))) [2021-11-23 03:54:42,685 INFO L858 garLoopResultBuilder]: For program point waterRiseEXIT(lines 438 449) no Hoare annotation was computed. [2021-11-23 03:54:42,685 INFO L854 garLoopResultBuilder]: At program point waterRiseENTRY(lines 438 449) the Hoare annotation is: (let ((.cse1 (not (= |old(~waterLevel~0)| 2))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or (= ~methaneLevelCritical~0 0) .cse0 .cse1 .cse2) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse2) (or (not (= ~pumpRunning~0 0)) .cse0 .cse1 .cse2) (or .cse0 (not (= ~pumpRunning~0 1)) .cse2 (not (<= |old(~waterLevel~0)| 2))))) [2021-11-23 03:54:42,689 INFO L732 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2021-11-23 03:54:42,690 INFO L179 ceAbstractionStarter]: Computing trace abstraction results [2021-11-23 03:54:42,725 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 23.11 03:54:42 BoogieIcfgContainer [2021-11-23 03:54:42,725 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2021-11-23 03:54:42,726 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2021-11-23 03:54:42,726 INFO L271 PluginConnector]: Initializing Witness Printer... [2021-11-23 03:54:42,726 INFO L275 PluginConnector]: Witness Printer initialized [2021-11-23 03:54:42,726 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 03:52:15" (3/4) ... [2021-11-23 03:54:42,729 INFO L137 WitnessPrinter]: Generating witness for correct program [2021-11-23 03:54:42,739 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2021-11-23 03:54:42,739 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2021-11-23 03:54:42,740 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2021-11-23 03:54:42,740 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2021-11-23 03:54:42,740 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2021-11-23 03:54:42,740 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2021-11-23 03:54:42,740 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2021-11-23 03:54:42,750 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 79 nodes and edges [2021-11-23 03:54:42,751 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 26 nodes and edges [2021-11-23 03:54:42,751 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 13 nodes and edges [2021-11-23 03:54:42,752 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2021-11-23 03:54:42,753 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 2 nodes and edges [2021-11-23 03:54:42,754 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2021-11-23 03:54:42,754 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2021-11-23 03:54:42,779 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(methaneLevelCritical) == 0) || methaneLevelCritical == 1) && tmp == systemActive) && 1 == systemActive) && !(methaneLevelCritical == 0)) && splverifierCounter == 0) && waterLevel <= 2) && !(0 == systemActive)) || (((((methaneLevelCritical == 0 && waterLevel <= 1) && tmp == systemActive) && 1 == systemActive) && splverifierCounter == 0) && !(0 == systemActive))) || ((((((methaneLevelCritical == 0 && tmp == systemActive) && 1 == systemActive) && splverifierCounter == 0) && waterLevel <= 2) && !(0 == systemActive)) && pumpRunning == 1) [2021-11-23 03:54:42,780 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(1 == systemActive) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) || pumpRunning == 1)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2))) && (((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || pumpRunning == 1) [2021-11-23 03:54:42,781 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((pumpRunning == 0 && \old(waterLevel) == waterLevel) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || (\old(waterLevel) <= 0 && \old(waterLevel) == waterLevel)))) || !(\old(waterLevel) <= 2)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) [2021-11-23 03:54:42,781 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || waterLevel <= 1) && (((!(1 == systemActive) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) || waterLevel == 1)) && (((((waterLevel == 1 && pumpRunning == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (pumpRunning == 0 && waterLevel == 1)) || !(\old(waterLevel) == 2))) && ((((!(1 == systemActive) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2)) || waterLevel == 1) || pumpRunning == 1)) && ((((!(\old(waterLevel) <= 1) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || pumpRunning == 1)) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2))) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) < 2)) || !(methaneLevelCritical == 0)) || pumpRunning == 1) [2021-11-23 03:54:42,781 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(waterLevel <= 1)) || pumpRunning == 1) && (((!(waterLevel == 1) || !(pumpRunning == 0)) || !(1 == systemActive)) || \old(pumpRunning) == 0)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel <= 2)) [2021-11-23 03:54:42,782 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || ((methaneLevelCritical == 0 && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) <= 2))) && ((methaneLevelCritical == tmp || !(1 == systemActive)) || !(\old(waterLevel) == 2))) && ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || (waterLevel <= 1 && pumpRunning == 1)) || !(\old(waterLevel) <= 2)) || (pumpRunning == 0 && waterLevel <= 1))) && ((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || (methaneLevelCritical == tmp && waterLevel <= 1))) && ((((((methaneLevelCritical == 0 && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) <= 2)) || (methaneLevelCritical == tmp && waterLevel <= 1))) && (((!(\old(waterLevel) <= 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || \old(waterLevel) == waterLevel)) && (((!(1 == systemActive) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) || waterLevel == 1) [2021-11-23 03:54:42,782 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) && ((((!(1 == systemActive) || (((methaneLevelCritical == tmp && methaneLevelCritical == 0) && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || (waterLevel <= 1 && tmp___0 <= 1)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) <= 2))) && ((methaneLevelCritical == tmp || !(1 == systemActive)) || !(\old(waterLevel) == 2))) && (((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || tmp___0 <= 1)) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || (((methaneLevelCritical == tmp && methaneLevelCritical == 0) && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) <= 2))) && ((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || (methaneLevelCritical == tmp && waterLevel <= 1))) && (((!(\old(waterLevel) <= 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || \old(waterLevel) == waterLevel)) && (((!(1 == systemActive) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) || waterLevel == 1)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) || waterLevel == 1)) && ((((pumpRunning == 0 || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) [2021-11-23 03:54:42,783 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(waterLevel == 1) || !(1 == systemActive)) || \old(pumpRunning) == 0) && ((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(waterLevel <= 1))) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || ((pumpRunning == 0 && aux-isMethaneLevelCritical()-aux == methaneLevelCritical) && tmp == 1)) || !(2 == waterLevel))) && (((pumpRunning == 0 && aux-isMethaneLevelCritical()-aux == methaneLevelCritical) || !(1 == systemActive)) || !(waterLevel <= 1)) [2021-11-23 03:54:42,783 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((!(1 == systemActive) || !(\old(waterLevel) == 2)) || waterLevel == 1) || ((((methaneLevelCritical == tmp && 2 == waterLevel) && 1 == systemActive) && \old(waterLevel) == waterLevel) && pumpRunning == 1)) && ((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || ((((methaneLevelCritical == tmp && methaneLevelCritical == 0) && waterLevel <= 1) && 1 == systemActive) && tmp___0 <= 1))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 2)) || (\old(waterLevel) == waterLevel && pumpRunning == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || tmp___0 == 1)) && ((methaneLevelCritical == 0 || !(1 == systemActive)) || !(\old(waterLevel) <= 2))) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) == 2)) || ((((methaneLevelCritical == tmp && 2 == waterLevel) && 1 == systemActive) && \old(waterLevel) == waterLevel) && pumpRunning == 1))) && ((((pumpRunning == 0 || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (waterLevel <= 1 && pumpRunning == 1)) || !(\old(waterLevel) <= 2))) && (((!(1 == systemActive) || ((((methaneLevelCritical == tmp && methaneLevelCritical == 0) && waterLevel <= 1) && 1 == systemActive) && tmp___0 <= 1)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) [2021-11-23 03:54:42,784 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || (\old(waterLevel) <= 0 && \old(waterLevel) == waterLevel)))) && (!(pumpRunning == 0) || tmp___0 < 2))) && (((!(pumpRunning == 0) && waterLevel == 1) || !(1 == systemActive)) || !(\old(waterLevel) == 2))) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1)) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) [2021-11-23 03:54:42,785 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !(1 == systemActive) || !(\old(waterLevel) <= 2) [2021-11-23 03:54:42,815 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/witness.graphml [2021-11-23 03:54:42,816 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2021-11-23 03:54:42,816 INFO L158 Benchmark]: Toolchain (without parser) took 149182.29ms. Allocated memory was 83.9MB in the beginning and 815.8MB in the end (delta: 731.9MB). Free memory was 49.2MB in the beginning and 443.2MB in the end (delta: -394.0MB). Peak memory consumption was 337.9MB. Max. memory is 16.1GB. [2021-11-23 03:54:42,817 INFO L158 Benchmark]: CDTParser took 0.27ms. Allocated memory is still 83.9MB. Free memory was 62.9MB in the beginning and 62.9MB in the end (delta: 28.0kB). There was no memory consumed. Max. memory is 16.1GB. [2021-11-23 03:54:42,817 INFO L158 Benchmark]: CACSL2BoogieTranslator took 610.38ms. Allocated memory was 83.9MB in the beginning and 100.7MB in the end (delta: 16.8MB). Free memory was 49.0MB in the beginning and 69.0MB in the end (delta: -20.0MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2021-11-23 03:54:42,818 INFO L158 Benchmark]: Boogie Procedure Inliner took 84.52ms. Allocated memory is still 100.7MB. Free memory was 69.0MB in the beginning and 66.1MB in the end (delta: 2.9MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2021-11-23 03:54:42,818 INFO L158 Benchmark]: Boogie Preprocessor took 47.97ms. Allocated memory is still 100.7MB. Free memory was 66.1MB in the beginning and 64.7MB in the end (delta: 1.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2021-11-23 03:54:42,818 INFO L158 Benchmark]: RCFGBuilder took 672.81ms. Allocated memory is still 100.7MB. Free memory was 64.3MB in the beginning and 41.8MB in the end (delta: 22.5MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. [2021-11-23 03:54:42,819 INFO L158 Benchmark]: TraceAbstraction took 147668.51ms. Allocated memory was 100.7MB in the beginning and 815.8MB in the end (delta: 715.1MB). Free memory was 41.3MB in the beginning and 449.5MB in the end (delta: -408.1MB). Peak memory consumption was 481.1MB. Max. memory is 16.1GB. [2021-11-23 03:54:42,819 INFO L158 Benchmark]: Witness Printer took 90.25ms. Allocated memory is still 815.8MB. Free memory was 449.5MB in the beginning and 443.2MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2021-11-23 03:54:42,821 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.27ms. Allocated memory is still 83.9MB. Free memory was 62.9MB in the beginning and 62.9MB in the end (delta: 28.0kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 610.38ms. Allocated memory was 83.9MB in the beginning and 100.7MB in the end (delta: 16.8MB). Free memory was 49.0MB in the beginning and 69.0MB in the end (delta: -20.0MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 84.52ms. Allocated memory is still 100.7MB. Free memory was 69.0MB in the beginning and 66.1MB in the end (delta: 2.9MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 47.97ms. Allocated memory is still 100.7MB. Free memory was 66.1MB in the beginning and 64.7MB in the end (delta: 1.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 672.81ms. Allocated memory is still 100.7MB. Free memory was 64.3MB in the beginning and 41.8MB in the end (delta: 22.5MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. * TraceAbstraction took 147668.51ms. Allocated memory was 100.7MB in the beginning and 815.8MB in the end (delta: 715.1MB). Free memory was 41.3MB in the beginning and 449.5MB in the end (delta: -408.1MB). Peak memory consumption was 481.1MB. Max. memory is 16.1GB. * Witness Printer took 90.25ms. Allocated memory is still 815.8MB. Free memory was 449.5MB in the beginning and 443.2MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 605]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 58 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 147.5s, OverallIterations: 10, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 11.2s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 18.5s, InitialAbstractionConstructionTime: 0.0s, PartialOrderReductionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3067 SdHoareTripleChecker+Valid, 4.7s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 3056 mSDsluCounter, 3205 SdHoareTripleChecker+Invalid, 3.8s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3092 mSDsCounter, 2402 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 6587 IncrementalHoareTripleChecker+Invalid, 8989 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 2402 mSolverCounterUnsat, 739 mSDtfsCounter, 6587 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 794 GetRequests, 428 SyntacticMatches, 14 SemanticMatches, 352 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12997 ImplicationChecksByTransitivity, 84.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=2823occurred in iteration=9, InterpolantAutomatonStates: 233, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.6s AutomataMinimizationTime, 10 MinimizatonAttempts, 485 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 35 LocationsWithAnnotation, 4979 PreInvPairs, 6975 NumberOfFragments, 1879 HoareAnnotationTreeSize, 4979 FomulaSimplifications, 73023 FormulaSimplificationTreeSizeReduction, 3.6s HoareSimplificationTime, 35 FomulaSimplificationsInter, 158247 FormulaSimplificationTreeSizeReductionInter, 14.7s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 3.0s InterpolantComputationTime, 501 NumberOfCodeBlocks, 501 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 645 ConstructedInterpolants, 0 QuantifiedInterpolants, 1960 SizeOfPredicates, 43 NumberOfNonLiveVariables, 1247 ConjunctsInSsa, 94 ConjunctsInUnsatCore, 16 InterpolantComputations, 7 PerfectInterpolantSequences, 122/185 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 683]: Loop Invariant Derived loop invariant: ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || (\old(waterLevel) <= 0 && \old(waterLevel) == waterLevel)))) && (!(pumpRunning == 0) || tmp___0 < 2))) && (((!(pumpRunning == 0) && waterLevel == 1) || !(1 == systemActive)) || !(\old(waterLevel) == 2))) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1)) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: 977]: Loop Invariant Derived loop invariant: (((pumpRunning == 0 && methaneLevelCritical == 0) && 1 == systemActive) && waterLevel == 1) && tmp == 1 - InvariantResult [Line: 582]: Loop Invariant Derived loop invariant: (((((((((!(1 == systemActive) || !(\old(waterLevel) == 2)) || waterLevel == 1) || ((((methaneLevelCritical == tmp && 2 == waterLevel) && 1 == systemActive) && \old(waterLevel) == waterLevel) && pumpRunning == 1)) && ((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || ((((methaneLevelCritical == tmp && methaneLevelCritical == 0) && waterLevel <= 1) && 1 == systemActive) && tmp___0 <= 1))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 2)) || (\old(waterLevel) == waterLevel && pumpRunning == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || tmp___0 == 1)) && ((methaneLevelCritical == 0 || !(1 == systemActive)) || !(\old(waterLevel) <= 2))) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) == 2)) || ((((methaneLevelCritical == tmp && 2 == waterLevel) && 1 == systemActive) && \old(waterLevel) == waterLevel) && pumpRunning == 1))) && ((((pumpRunning == 0 || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (waterLevel <= 1 && pumpRunning == 1)) || !(\old(waterLevel) <= 2))) && (((!(1 == systemActive) || ((((methaneLevelCritical == tmp && methaneLevelCritical == 0) && waterLevel <= 1) && 1 == systemActive) && tmp___0 <= 1)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 977]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 567]: Loop Invariant Derived loop invariant: (((((((((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) && ((((!(1 == systemActive) || (((methaneLevelCritical == tmp && methaneLevelCritical == 0) && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || (waterLevel <= 1 && tmp___0 <= 1)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) <= 2))) && ((methaneLevelCritical == tmp || !(1 == systemActive)) || !(\old(waterLevel) == 2))) && (((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || tmp___0 <= 1)) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || (((methaneLevelCritical == tmp && methaneLevelCritical == 0) && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) <= 2))) && ((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || (methaneLevelCritical == tmp && waterLevel <= 1))) && (((!(\old(waterLevel) <= 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || \old(waterLevel) == waterLevel)) && (((!(1 == systemActive) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) || waterLevel == 1)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) || waterLevel == 1)) && ((((pumpRunning == 0 || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) - InvariantResult [Line: 906]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 840]: Loop Invariant Derived loop invariant: ((((((((!(\old(methaneLevelCritical) == 0) || methaneLevelCritical == 1) && tmp == systemActive) && 1 == systemActive) && !(methaneLevelCritical == 0)) && splverifierCounter == 0) && waterLevel <= 2) && !(0 == systemActive)) || (((((methaneLevelCritical == 0 && waterLevel <= 1) && tmp == systemActive) && 1 == systemActive) && splverifierCounter == 0) && !(0 == systemActive))) || ((((((methaneLevelCritical == 0 && tmp == systemActive) && 1 == systemActive) && splverifierCounter == 0) && waterLevel <= 2) && !(0 == systemActive)) && pumpRunning == 1) - InvariantResult [Line: 896]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 617]: Loop Invariant Derived loop invariant: ((((!(1 == systemActive) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) || pumpRunning == 1)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2))) && (((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || pumpRunning == 1) - InvariantResult [Line: 576]: Loop Invariant Derived loop invariant: (((((((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || ((methaneLevelCritical == 0 && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) <= 2))) && ((methaneLevelCritical == tmp || !(1 == systemActive)) || !(\old(waterLevel) == 2))) && ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || (waterLevel <= 1 && pumpRunning == 1)) || !(\old(waterLevel) <= 2)) || (pumpRunning == 0 && waterLevel <= 1))) && ((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || (methaneLevelCritical == tmp && waterLevel <= 1))) && ((((((methaneLevelCritical == 0 && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) <= 2)) || (methaneLevelCritical == tmp && waterLevel <= 1))) && (((!(\old(waterLevel) <= 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || \old(waterLevel) == waterLevel)) && (((!(1 == systemActive) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) || waterLevel == 1) - InvariantResult [Line: 830]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 739]: Loop Invariant Derived loop invariant: ((((!(waterLevel == 1) || !(1 == systemActive)) || \old(pumpRunning) == 0) && ((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(waterLevel <= 1))) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || ((pumpRunning == 0 && aux-isMethaneLevelCritical()-aux == methaneLevelCritical) && tmp == 1)) || !(2 == waterLevel))) && (((pumpRunning == 0 && aux-isMethaneLevelCritical()-aux == methaneLevelCritical) || !(1 == systemActive)) || !(waterLevel <= 1)) - InvariantResult [Line: 679]: Loop Invariant Derived loop invariant: (((((pumpRunning == 0 && \old(waterLevel) == waterLevel) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || (\old(waterLevel) <= 0 && \old(waterLevel) == waterLevel)))) || !(\old(waterLevel) <= 2)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: 605]: Loop Invariant Derived loop invariant: !(1 == systemActive) || !(\old(waterLevel) <= 2) - InvariantResult [Line: 839]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 675]: Loop Invariant Derived loop invariant: (((((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || waterLevel <= 1) && (((!(1 == systemActive) || !(\old(waterLevel) == 2)) || \old(waterLevel) == waterLevel) || waterLevel == 1)) && (((((waterLevel == 1 && pumpRunning == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (pumpRunning == 0 && waterLevel == 1)) || !(\old(waterLevel) == 2))) && ((((!(1 == systemActive) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2)) || waterLevel == 1) || pumpRunning == 1)) && ((((!(\old(waterLevel) <= 1) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || pumpRunning == 1)) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2))) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) < 2)) || !(methaneLevelCritical == 0)) || pumpRunning == 1) - InvariantResult [Line: 653]: Loop Invariant Derived loop invariant: ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(waterLevel <= 1)) || pumpRunning == 1) && (((!(waterLevel == 1) || !(pumpRunning == 0)) || !(1 == systemActive)) || \old(pumpRunning) == 0)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel <= 2)) RESULT: Ultimate proved your program to be correct! [2021-11-23 03:54:42,881 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e7bf93ac-4c06-4f70-97fe-8f9b5d184e15/bin/utaipan-EQgc7hIp5V/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE