./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec2_product38.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version dbf71c69 Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec2_product38.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash ca9ad45e9cd0fa7cfc478092837003ff1c91f26680d4fb1c37c440560090c9e6 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-dbf71c6-m [2022-10-17 17:21:35,444 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-10-17 17:21:35,447 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-10-17 17:21:35,498 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-10-17 17:21:35,499 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-10-17 17:21:35,503 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-10-17 17:21:35,506 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-10-17 17:21:35,511 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-10-17 17:21:35,514 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-10-17 17:21:35,519 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-10-17 17:21:35,520 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-10-17 17:21:35,522 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-10-17 17:21:35,523 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-10-17 17:21:35,525 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-10-17 17:21:35,527 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-10-17 17:21:35,529 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-10-17 17:21:35,531 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-10-17 17:21:35,532 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-10-17 17:21:35,534 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-10-17 17:21:35,541 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-10-17 17:21:35,542 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-10-17 17:21:35,544 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-10-17 17:21:35,547 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-10-17 17:21:35,548 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-10-17 17:21:35,558 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-10-17 17:21:35,558 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-10-17 17:21:35,559 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-10-17 17:21:35,560 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-10-17 17:21:35,561 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-10-17 17:21:35,562 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-10-17 17:21:35,563 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-10-17 17:21:35,564 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-10-17 17:21:35,565 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-10-17 17:21:35,568 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-10-17 17:21:35,569 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-10-17 17:21:35,569 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-10-17 17:21:35,569 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-10-17 17:21:35,570 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-10-17 17:21:35,570 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-10-17 17:21:35,571 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-10-17 17:21:35,571 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-10-17 17:21:35,573 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-10-17 17:21:35,598 INFO L113 SettingsManager]: Loading preferences was successful [2022-10-17 17:21:35,598 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-10-17 17:21:35,598 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-10-17 17:21:35,598 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-10-17 17:21:35,599 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-10-17 17:21:35,599 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-10-17 17:21:35,600 INFO L138 SettingsManager]: * User list type=DISABLED [2022-10-17 17:21:35,600 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-10-17 17:21:35,600 INFO L138 SettingsManager]: * Explicit value domain=true [2022-10-17 17:21:35,600 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-10-17 17:21:35,601 INFO L138 SettingsManager]: * Octagon Domain=false [2022-10-17 17:21:35,601 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-10-17 17:21:35,601 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-10-17 17:21:35,601 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-10-17 17:21:35,602 INFO L138 SettingsManager]: * Interval Domain=false [2022-10-17 17:21:35,602 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-10-17 17:21:35,602 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-10-17 17:21:35,602 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-10-17 17:21:35,603 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-10-17 17:21:35,603 INFO L138 SettingsManager]: * sizeof long=4 [2022-10-17 17:21:35,603 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-10-17 17:21:35,604 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-10-17 17:21:35,604 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-10-17 17:21:35,604 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-10-17 17:21:35,604 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-10-17 17:21:35,604 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-10-17 17:21:35,605 INFO L138 SettingsManager]: * sizeof long double=12 [2022-10-17 17:21:35,605 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-10-17 17:21:35,605 INFO L138 SettingsManager]: * Use constant arrays=true [2022-10-17 17:21:35,605 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-10-17 17:21:35,605 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-10-17 17:21:35,606 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-10-17 17:21:35,606 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-10-17 17:21:35,606 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-10-17 17:21:35,606 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-10-17 17:21:35,607 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-10-17 17:21:35,607 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-10-17 17:21:35,607 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-10-17 17:21:35,607 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-10-17 17:21:35,607 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-10-17 17:21:35,607 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-10-17 17:21:35,608 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> ca9ad45e9cd0fa7cfc478092837003ff1c91f26680d4fb1c37c440560090c9e6 [2022-10-17 17:21:35,905 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-10-17 17:21:35,938 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-10-17 17:21:35,940 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-10-17 17:21:35,942 INFO L271 PluginConnector]: Initializing CDTParser... [2022-10-17 17:21:35,942 INFO L275 PluginConnector]: CDTParser initialized [2022-10-17 17:21:35,944 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/../../sv-benchmarks/c/product-lines/minepump_spec2_product38.cil.c [2022-10-17 17:21:36,044 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/data/58cad4568/c558b145190c4ab497d5ae98cace5ab5/FLAG169243ff7 [2022-10-17 17:21:36,561 INFO L306 CDTParser]: Found 1 translation units. [2022-10-17 17:21:36,561 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/sv-benchmarks/c/product-lines/minepump_spec2_product38.cil.c [2022-10-17 17:21:36,577 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/data/58cad4568/c558b145190c4ab497d5ae98cace5ab5/FLAG169243ff7 [2022-10-17 17:21:36,899 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/data/58cad4568/c558b145190c4ab497d5ae98cace5ab5 [2022-10-17 17:21:36,901 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-10-17 17:21:36,903 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-10-17 17:21:36,905 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-10-17 17:21:36,905 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-10-17 17:21:36,908 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-10-17 17:21:36,909 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 17.10 05:21:36" (1/1) ... [2022-10-17 17:21:36,910 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@586334be and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:36, skipping insertion in model container [2022-10-17 17:21:36,911 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 17.10 05:21:36" (1/1) ... [2022-10-17 17:21:36,923 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-10-17 17:21:36,964 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-10-17 17:21:37,168 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/sv-benchmarks/c/product-lines/minepump_spec2_product38.cil.c[1605,1618] [2022-10-17 17:21:37,283 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-10-17 17:21:37,293 INFO L203 MainTranslator]: Completed pre-run [2022-10-17 17:21:37,307 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/sv-benchmarks/c/product-lines/minepump_spec2_product38.cil.c[1605,1618] [2022-10-17 17:21:37,367 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-10-17 17:21:37,386 INFO L208 MainTranslator]: Completed translation [2022-10-17 17:21:37,386 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37 WrapperNode [2022-10-17 17:21:37,386 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-10-17 17:21:37,388 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-10-17 17:21:37,388 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-10-17 17:21:37,388 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-10-17 17:21:37,401 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,428 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,476 INFO L138 Inliner]: procedures = 55, calls = 155, calls flagged for inlining = 23, calls inlined = 20, statements flattened = 250 [2022-10-17 17:21:37,476 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-10-17 17:21:37,477 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-10-17 17:21:37,477 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-10-17 17:21:37,478 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-10-17 17:21:37,488 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,488 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,503 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,503 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,509 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,530 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,531 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,533 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,536 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-10-17 17:21:37,536 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-10-17 17:21:37,537 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-10-17 17:21:37,537 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-10-17 17:21:37,550 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (1/1) ... [2022-10-17 17:21:37,562 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-10-17 17:21:37,575 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 [2022-10-17 17:21:37,588 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-10-17 17:21:37,606 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-10-17 17:21:37,643 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-10-17 17:21:37,643 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-10-17 17:21:37,643 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-10-17 17:21:37,643 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-10-17 17:21:37,643 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-10-17 17:21:37,643 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-10-17 17:21:37,644 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-10-17 17:21:37,644 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2022-10-17 17:21:37,644 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2022-10-17 17:21:37,644 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-10-17 17:21:37,644 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-10-17 17:21:37,644 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-10-17 17:21:37,644 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-10-17 17:21:37,644 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-10-17 17:21:37,644 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-10-17 17:21:37,644 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-10-17 17:21:37,644 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-10-17 17:21:37,644 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-10-17 17:21:37,723 INFO L235 CfgBuilder]: Building ICFG [2022-10-17 17:21:37,725 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-10-17 17:21:38,189 INFO L276 CfgBuilder]: Performing block encoding [2022-10-17 17:21:38,381 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-10-17 17:21:38,381 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-10-17 17:21:38,384 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 17.10 05:21:38 BoogieIcfgContainer [2022-10-17 17:21:38,384 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-10-17 17:21:38,388 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-10-17 17:21:38,388 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-10-17 17:21:38,392 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-10-17 17:21:38,392 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 17.10 05:21:36" (1/3) ... [2022-10-17 17:21:38,393 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@779b8be4 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 17.10 05:21:38, skipping insertion in model container [2022-10-17 17:21:38,393 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 17.10 05:21:37" (2/3) ... [2022-10-17 17:21:38,394 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@779b8be4 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 17.10 05:21:38, skipping insertion in model container [2022-10-17 17:21:38,394 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 17.10 05:21:38" (3/3) ... [2022-10-17 17:21:38,397 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product38.cil.c [2022-10-17 17:21:38,419 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-10-17 17:21:38,420 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-10-17 17:21:38,487 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-10-17 17:21:38,496 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@5749e9cc, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-10-17 17:21:38,497 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-10-17 17:21:38,504 INFO L276 IsEmpty]: Start isEmpty. Operand has 58 states, 37 states have (on average 1.4324324324324325) internal successors, (53), 45 states have internal predecessors, (53), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) [2022-10-17 17:21:38,515 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2022-10-17 17:21:38,515 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:38,516 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:38,517 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:38,523 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:38,523 INFO L85 PathProgramCache]: Analyzing trace with hash -1323498237, now seen corresponding path program 1 times [2022-10-17 17:21:38,534 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:38,535 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [732505445] [2022-10-17 17:21:38,536 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:38,536 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:38,661 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:38,782 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-10-17 17:21:38,782 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:38,784 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [732505445] [2022-10-17 17:21:38,785 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [732505445] provided 1 perfect and 0 imperfect interpolant sequences [2022-10-17 17:21:38,785 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-10-17 17:21:38,785 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-10-17 17:21:38,787 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1125176597] [2022-10-17 17:21:38,788 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-10-17 17:21:38,794 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-10-17 17:21:38,796 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:38,833 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-10-17 17:21:38,835 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-10-17 17:21:38,837 INFO L87 Difference]: Start difference. First operand has 58 states, 37 states have (on average 1.4324324324324325) internal successors, (53), 45 states have internal predecessors, (53), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-10-17 17:21:38,957 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:38,958 INFO L93 Difference]: Finished difference Result 114 states and 155 transitions. [2022-10-17 17:21:38,959 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-10-17 17:21:38,960 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2022-10-17 17:21:38,961 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:38,971 INFO L225 Difference]: With dead ends: 114 [2022-10-17 17:21:38,971 INFO L226 Difference]: Without dead ends: 53 [2022-10-17 17:21:38,975 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-10-17 17:21:38,979 INFO L413 NwaCegarLoop]: 57 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 57 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:38,980 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 57 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-10-17 17:21:38,998 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 53 states. [2022-10-17 17:21:39,019 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 53 to 53. [2022-10-17 17:21:39,020 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 53 states, 34 states have (on average 1.3235294117647058) internal successors, (45), 41 states have internal predecessors, (45), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2022-10-17 17:21:39,023 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 53 states to 53 states and 68 transitions. [2022-10-17 17:21:39,024 INFO L78 Accepts]: Start accepts. Automaton has 53 states and 68 transitions. Word has length 17 [2022-10-17 17:21:39,025 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:39,025 INFO L495 AbstractCegarLoop]: Abstraction has 53 states and 68 transitions. [2022-10-17 17:21:39,025 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-10-17 17:21:39,025 INFO L276 IsEmpty]: Start isEmpty. Operand 53 states and 68 transitions. [2022-10-17 17:21:39,027 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2022-10-17 17:21:39,027 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:39,028 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:39,028 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-10-17 17:21:39,028 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:39,029 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:39,029 INFO L85 PathProgramCache]: Analyzing trace with hash -166525126, now seen corresponding path program 1 times [2022-10-17 17:21:39,029 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:39,030 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [645396094] [2022-10-17 17:21:39,030 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:39,030 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:39,056 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:39,219 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-10-17 17:21:39,219 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:39,220 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [645396094] [2022-10-17 17:21:39,220 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [645396094] provided 1 perfect and 0 imperfect interpolant sequences [2022-10-17 17:21:39,220 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-10-17 17:21:39,221 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-10-17 17:21:39,221 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1182141357] [2022-10-17 17:21:39,221 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-10-17 17:21:39,223 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-10-17 17:21:39,223 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:39,224 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-10-17 17:21:39,225 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-10-17 17:21:39,226 INFO L87 Difference]: Start difference. First operand 53 states and 68 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-10-17 17:21:39,294 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:39,294 INFO L93 Difference]: Finished difference Result 83 states and 107 transitions. [2022-10-17 17:21:39,295 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-10-17 17:21:39,295 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2022-10-17 17:21:39,296 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:39,299 INFO L225 Difference]: With dead ends: 83 [2022-10-17 17:21:39,300 INFO L226 Difference]: Without dead ends: 45 [2022-10-17 17:21:39,306 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-10-17 17:21:39,309 INFO L413 NwaCegarLoop]: 43 mSDtfsCounter, 7 mSDsluCounter, 45 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 77 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:39,314 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 77 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-10-17 17:21:39,315 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 45 states. [2022-10-17 17:21:39,321 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 45 to 45. [2022-10-17 17:21:39,322 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 45 states, 29 states have (on average 1.3448275862068966) internal successors, (39), 36 states have internal predecessors, (39), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-10-17 17:21:39,323 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 45 states to 45 states and 57 transitions. [2022-10-17 17:21:39,323 INFO L78 Accepts]: Start accepts. Automaton has 45 states and 57 transitions. Word has length 18 [2022-10-17 17:21:39,324 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:39,324 INFO L495 AbstractCegarLoop]: Abstraction has 45 states and 57 transitions. [2022-10-17 17:21:39,324 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-10-17 17:21:39,324 INFO L276 IsEmpty]: Start isEmpty. Operand 45 states and 57 transitions. [2022-10-17 17:21:39,325 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2022-10-17 17:21:39,325 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:39,327 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:39,328 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-10-17 17:21:39,328 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:39,329 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:39,329 INFO L85 PathProgramCache]: Analyzing trace with hash -914581479, now seen corresponding path program 1 times [2022-10-17 17:21:39,330 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:39,330 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [52873695] [2022-10-17 17:21:39,330 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:39,331 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:39,380 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:39,498 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-10-17 17:21:39,499 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:39,499 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [52873695] [2022-10-17 17:21:39,499 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [52873695] provided 1 perfect and 0 imperfect interpolant sequences [2022-10-17 17:21:39,500 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-10-17 17:21:39,500 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-10-17 17:21:39,500 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [56226507] [2022-10-17 17:21:39,500 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-10-17 17:21:39,501 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-10-17 17:21:39,501 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:39,501 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-10-17 17:21:39,502 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-10-17 17:21:39,502 INFO L87 Difference]: Start difference. First operand 45 states and 57 transitions. Second operand has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-10-17 17:21:39,582 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:39,582 INFO L93 Difference]: Finished difference Result 88 states and 114 transitions. [2022-10-17 17:21:39,583 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-10-17 17:21:39,583 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2022-10-17 17:21:39,583 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:39,586 INFO L225 Difference]: With dead ends: 88 [2022-10-17 17:21:39,586 INFO L226 Difference]: Without dead ends: 86 [2022-10-17 17:21:39,586 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-10-17 17:21:39,588 INFO L413 NwaCegarLoop]: 51 mSDtfsCounter, 37 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 29 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 37 SdHoareTripleChecker+Valid, 91 SdHoareTripleChecker+Invalid, 34 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 29 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:39,588 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [37 Valid, 91 Invalid, 34 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 29 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-10-17 17:21:39,594 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 86 states. [2022-10-17 17:21:39,622 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 86 to 86. [2022-10-17 17:21:39,626 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 86 states, 55 states have (on average 1.3454545454545455) internal successors, (74), 68 states have internal predecessors, (74), 18 states have call successors, (18), 12 states have call predecessors, (18), 12 states have return successors, (20), 14 states have call predecessors, (20), 18 states have call successors, (20) [2022-10-17 17:21:39,632 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 86 states to 86 states and 112 transitions. [2022-10-17 17:21:39,633 INFO L78 Accepts]: Start accepts. Automaton has 86 states and 112 transitions. Word has length 20 [2022-10-17 17:21:39,634 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:39,634 INFO L495 AbstractCegarLoop]: Abstraction has 86 states and 112 transitions. [2022-10-17 17:21:39,634 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-10-17 17:21:39,635 INFO L276 IsEmpty]: Start isEmpty. Operand 86 states and 112 transitions. [2022-10-17 17:21:39,639 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2022-10-17 17:21:39,642 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:39,642 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:39,642 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-10-17 17:21:39,642 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:39,643 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:39,644 INFO L85 PathProgramCache]: Analyzing trace with hash -1907760329, now seen corresponding path program 1 times [2022-10-17 17:21:39,644 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:39,645 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [851655281] [2022-10-17 17:21:39,645 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:39,647 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:39,701 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:39,994 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 2 proven. 13 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-10-17 17:21:39,994 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:39,994 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [851655281] [2022-10-17 17:21:39,995 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [851655281] provided 0 perfect and 1 imperfect interpolant sequences [2022-10-17 17:21:39,995 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1138906723] [2022-10-17 17:21:39,995 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:39,995 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-10-17 17:21:39,995 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 [2022-10-17 17:21:39,997 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-10-17 17:21:40,010 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-10-17 17:21:40,099 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:40,102 INFO L263 TraceCheckSpWp]: Trace formula consists of 366 conjuncts, 12 conjunts are in the unsatisfiable core [2022-10-17 17:21:40,109 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-10-17 17:21:40,260 INFO L134 CoverageAnalysis]: Checked inductivity of 17 backedges. 9 proven. 0 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-10-17 17:21:40,261 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-10-17 17:21:40,261 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1138906723] provided 1 perfect and 0 imperfect interpolant sequences [2022-10-17 17:21:40,262 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-10-17 17:21:40,262 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [6] total 7 [2022-10-17 17:21:40,262 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1383960140] [2022-10-17 17:21:40,263 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-10-17 17:21:40,265 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-10-17 17:21:40,267 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:40,267 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-10-17 17:21:40,268 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=29, Unknown=0, NotChecked=0, Total=42 [2022-10-17 17:21:40,268 INFO L87 Difference]: Start difference. First operand 86 states and 112 transitions. Second operand has 4 states, 4 states have (on average 6.75) internal successors, (27), 3 states have internal predecessors, (27), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2022-10-17 17:21:40,372 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:40,372 INFO L93 Difference]: Finished difference Result 170 states and 226 transitions. [2022-10-17 17:21:40,373 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-10-17 17:21:40,373 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 6.75) internal successors, (27), 3 states have internal predecessors, (27), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) Word has length 39 [2022-10-17 17:21:40,374 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:40,381 INFO L225 Difference]: With dead ends: 170 [2022-10-17 17:21:40,382 INFO L226 Difference]: Without dead ends: 86 [2022-10-17 17:21:40,386 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 46 GetRequests, 41 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=13, Invalid=29, Unknown=0, NotChecked=0, Total=42 [2022-10-17 17:21:40,392 INFO L413 NwaCegarLoop]: 38 mSDtfsCounter, 47 mSDsluCounter, 27 mSDsCounter, 0 mSdLazyCounter, 44 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 50 SdHoareTripleChecker+Valid, 55 SdHoareTripleChecker+Invalid, 48 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 44 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:40,394 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [50 Valid, 55 Invalid, 48 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 44 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-10-17 17:21:40,396 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 86 states. [2022-10-17 17:21:40,429 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 86 to 86. [2022-10-17 17:21:40,432 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 86 states, 55 states have (on average 1.309090909090909) internal successors, (72), 68 states have internal predecessors, (72), 18 states have call successors, (18), 12 states have call predecessors, (18), 12 states have return successors, (20), 14 states have call predecessors, (20), 18 states have call successors, (20) [2022-10-17 17:21:40,437 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 86 states to 86 states and 110 transitions. [2022-10-17 17:21:40,437 INFO L78 Accepts]: Start accepts. Automaton has 86 states and 110 transitions. Word has length 39 [2022-10-17 17:21:40,438 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:40,438 INFO L495 AbstractCegarLoop]: Abstraction has 86 states and 110 transitions. [2022-10-17 17:21:40,438 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 6.75) internal successors, (27), 3 states have internal predecessors, (27), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 2 states have call successors, (2) [2022-10-17 17:21:40,438 INFO L276 IsEmpty]: Start isEmpty. Operand 86 states and 110 transitions. [2022-10-17 17:21:40,443 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2022-10-17 17:21:40,445 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:40,445 INFO L195 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:40,490 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-10-17 17:21:40,662 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-10-17 17:21:40,662 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:40,662 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:40,663 INFO L85 PathProgramCache]: Analyzing trace with hash -2088862183, now seen corresponding path program 1 times [2022-10-17 17:21:40,663 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:40,663 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [538400290] [2022-10-17 17:21:40,663 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:40,663 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:40,682 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:40,770 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2022-10-17 17:21:40,770 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:40,770 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [538400290] [2022-10-17 17:21:40,771 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [538400290] provided 1 perfect and 0 imperfect interpolant sequences [2022-10-17 17:21:40,771 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-10-17 17:21:40,773 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-10-17 17:21:40,773 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1728075156] [2022-10-17 17:21:40,773 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-10-17 17:21:40,773 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-10-17 17:21:40,774 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:40,774 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-10-17 17:21:40,774 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-10-17 17:21:40,774 INFO L87 Difference]: Start difference. First operand 86 states and 110 transitions. Second operand has 4 states, 4 states have (on average 9.75) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2022-10-17 17:21:40,871 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:40,872 INFO L93 Difference]: Finished difference Result 220 states and 293 transitions. [2022-10-17 17:21:40,872 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-10-17 17:21:40,873 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 9.75) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) Word has length 53 [2022-10-17 17:21:40,873 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:40,878 INFO L225 Difference]: With dead ends: 220 [2022-10-17 17:21:40,878 INFO L226 Difference]: Without dead ends: 136 [2022-10-17 17:21:40,880 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-10-17 17:21:40,881 INFO L413 NwaCegarLoop]: 57 mSDtfsCounter, 38 mSDsluCounter, 112 mSDsCounter, 0 mSdLazyCounter, 54 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 38 SdHoareTripleChecker+Valid, 148 SdHoareTripleChecker+Invalid, 60 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 54 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:40,881 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [38 Valid, 148 Invalid, 60 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 54 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-10-17 17:21:40,882 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 136 states. [2022-10-17 17:21:40,920 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 136 to 124. [2022-10-17 17:21:40,920 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 124 states, 81 states have (on average 1.2469135802469136) internal successors, (101), 92 states have internal predecessors, (101), 22 states have call successors, (22), 20 states have call predecessors, (22), 20 states have return successors, (32), 21 states have call predecessors, (32), 22 states have call successors, (32) [2022-10-17 17:21:40,924 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 124 states to 124 states and 155 transitions. [2022-10-17 17:21:40,924 INFO L78 Accepts]: Start accepts. Automaton has 124 states and 155 transitions. Word has length 53 [2022-10-17 17:21:40,924 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:40,925 INFO L495 AbstractCegarLoop]: Abstraction has 124 states and 155 transitions. [2022-10-17 17:21:40,925 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 9.75) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2022-10-17 17:21:40,925 INFO L276 IsEmpty]: Start isEmpty. Operand 124 states and 155 transitions. [2022-10-17 17:21:40,929 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2022-10-17 17:21:40,929 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:40,929 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:40,929 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-10-17 17:21:40,930 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:40,931 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:40,931 INFO L85 PathProgramCache]: Analyzing trace with hash -691239881, now seen corresponding path program 1 times [2022-10-17 17:21:40,931 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:40,931 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1773434616] [2022-10-17 17:21:40,931 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:40,931 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:40,966 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:41,141 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 18 proven. 0 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2022-10-17 17:21:41,142 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:41,142 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1773434616] [2022-10-17 17:21:41,142 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1773434616] provided 1 perfect and 0 imperfect interpolant sequences [2022-10-17 17:21:41,142 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-10-17 17:21:41,143 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-10-17 17:21:41,143 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1301972088] [2022-10-17 17:21:41,143 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-10-17 17:21:41,145 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-10-17 17:21:41,145 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:41,145 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-10-17 17:21:41,145 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-10-17 17:21:41,146 INFO L87 Difference]: Start difference. First operand 124 states and 155 transitions. Second operand has 4 states, 4 states have (on average 9.75) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2022-10-17 17:21:41,290 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:41,290 INFO L93 Difference]: Finished difference Result 239 states and 310 transitions. [2022-10-17 17:21:41,290 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-10-17 17:21:41,291 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 9.75) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) Word has length 55 [2022-10-17 17:21:41,291 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:41,292 INFO L225 Difference]: With dead ends: 239 [2022-10-17 17:21:41,292 INFO L226 Difference]: Without dead ends: 117 [2022-10-17 17:21:41,293 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-10-17 17:21:41,294 INFO L413 NwaCegarLoop]: 56 mSDtfsCounter, 39 mSDsluCounter, 81 mSDsCounter, 0 mSdLazyCounter, 81 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 39 SdHoareTripleChecker+Valid, 117 SdHoareTripleChecker+Invalid, 84 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 81 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:41,294 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [39 Valid, 117 Invalid, 84 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 81 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-10-17 17:21:41,295 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 117 states. [2022-10-17 17:21:41,310 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 117 to 115. [2022-10-17 17:21:41,310 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 115 states, 76 states have (on average 1.1710526315789473) internal successors, (89), 85 states have internal predecessors, (89), 20 states have call successors, (20), 18 states have call predecessors, (20), 18 states have return successors, (27), 20 states have call predecessors, (27), 20 states have call successors, (27) [2022-10-17 17:21:41,311 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 115 states to 115 states and 136 transitions. [2022-10-17 17:21:41,312 INFO L78 Accepts]: Start accepts. Automaton has 115 states and 136 transitions. Word has length 55 [2022-10-17 17:21:41,312 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:41,312 INFO L495 AbstractCegarLoop]: Abstraction has 115 states and 136 transitions. [2022-10-17 17:21:41,312 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 9.75) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2022-10-17 17:21:41,313 INFO L276 IsEmpty]: Start isEmpty. Operand 115 states and 136 transitions. [2022-10-17 17:21:41,313 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2022-10-17 17:21:41,314 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:41,314 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:41,314 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-10-17 17:21:41,314 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:41,315 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:41,315 INFO L85 PathProgramCache]: Analyzing trace with hash -755845242, now seen corresponding path program 1 times [2022-10-17 17:21:41,315 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:41,315 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1117456090] [2022-10-17 17:21:41,315 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:41,315 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:41,335 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:41,630 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 17 proven. 2 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-10-17 17:21:41,631 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:41,631 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1117456090] [2022-10-17 17:21:41,631 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1117456090] provided 0 perfect and 1 imperfect interpolant sequences [2022-10-17 17:21:41,631 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1522462117] [2022-10-17 17:21:41,631 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:41,631 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-10-17 17:21:41,632 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 [2022-10-17 17:21:41,634 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-10-17 17:21:41,653 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-10-17 17:21:41,745 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:41,747 INFO L263 TraceCheckSpWp]: Trace formula consists of 431 conjuncts, 17 conjunts are in the unsatisfiable core [2022-10-17 17:21:41,751 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-10-17 17:21:42,081 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 25 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-10-17 17:21:42,081 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-10-17 17:21:42,081 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1522462117] provided 1 perfect and 0 imperfect interpolant sequences [2022-10-17 17:21:42,082 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-10-17 17:21:42,082 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [9] total 14 [2022-10-17 17:21:42,082 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1075690798] [2022-10-17 17:21:42,082 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-10-17 17:21:42,084 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-10-17 17:21:42,084 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:42,085 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-10-17 17:21:42,085 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=49, Invalid=133, Unknown=0, NotChecked=0, Total=182 [2022-10-17 17:21:42,086 INFO L87 Difference]: Start difference. First operand 115 states and 136 transitions. Second operand has 8 states, 8 states have (on average 5.75) internal successors, (46), 8 states have internal predecessors, (46), 4 states have call successors, (8), 4 states have call predecessors, (8), 3 states have return successors, (7), 2 states have call predecessors, (7), 4 states have call successors, (7) [2022-10-17 17:21:42,520 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:42,520 INFO L93 Difference]: Finished difference Result 300 states and 359 transitions. [2022-10-17 17:21:42,521 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-10-17 17:21:42,521 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.75) internal successors, (46), 8 states have internal predecessors, (46), 4 states have call successors, (8), 4 states have call predecessors, (8), 3 states have return successors, (7), 2 states have call predecessors, (7), 4 states have call successors, (7) Word has length 62 [2022-10-17 17:21:42,521 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:42,523 INFO L225 Difference]: With dead ends: 300 [2022-10-17 17:21:42,523 INFO L226 Difference]: Without dead ends: 187 [2022-10-17 17:21:42,524 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 76 GetRequests, 59 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 53 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=93, Invalid=249, Unknown=0, NotChecked=0, Total=342 [2022-10-17 17:21:42,525 INFO L413 NwaCegarLoop]: 50 mSDtfsCounter, 124 mSDsluCounter, 136 mSDsCounter, 0 mSdLazyCounter, 237 mSolverCounterSat, 58 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 130 SdHoareTripleChecker+Valid, 154 SdHoareTripleChecker+Invalid, 295 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 58 IncrementalHoareTripleChecker+Valid, 237 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:42,525 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [130 Valid, 154 Invalid, 295 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [58 Valid, 237 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-10-17 17:21:42,526 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 187 states. [2022-10-17 17:21:42,555 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 187 to 157. [2022-10-17 17:21:42,556 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 157 states, 106 states have (on average 1.1603773584905661) internal successors, (123), 116 states have internal predecessors, (123), 25 states have call successors, (25), 23 states have call predecessors, (25), 25 states have return successors, (32), 25 states have call predecessors, (32), 25 states have call successors, (32) [2022-10-17 17:21:42,558 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 157 states to 157 states and 180 transitions. [2022-10-17 17:21:42,558 INFO L78 Accepts]: Start accepts. Automaton has 157 states and 180 transitions. Word has length 62 [2022-10-17 17:21:42,559 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:42,559 INFO L495 AbstractCegarLoop]: Abstraction has 157 states and 180 transitions. [2022-10-17 17:21:42,559 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 5.75) internal successors, (46), 8 states have internal predecessors, (46), 4 states have call successors, (8), 4 states have call predecessors, (8), 3 states have return successors, (7), 2 states have call predecessors, (7), 4 states have call successors, (7) [2022-10-17 17:21:42,559 INFO L276 IsEmpty]: Start isEmpty. Operand 157 states and 180 transitions. [2022-10-17 17:21:42,562 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 66 [2022-10-17 17:21:42,562 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:42,562 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:42,599 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-10-17 17:21:42,790 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2022-10-17 17:21:42,790 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:42,790 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:42,790 INFO L85 PathProgramCache]: Analyzing trace with hash 213876582, now seen corresponding path program 1 times [2022-10-17 17:21:42,791 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:42,791 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1632609681] [2022-10-17 17:21:42,791 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:42,791 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:42,851 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:43,096 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 17 proven. 2 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-10-17 17:21:43,096 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:43,096 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1632609681] [2022-10-17 17:21:43,096 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1632609681] provided 0 perfect and 1 imperfect interpolant sequences [2022-10-17 17:21:43,096 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [495787412] [2022-10-17 17:21:43,097 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:43,097 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-10-17 17:21:43,097 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 [2022-10-17 17:21:43,098 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-10-17 17:21:43,114 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-10-17 17:21:43,199 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:43,201 INFO L263 TraceCheckSpWp]: Trace formula consists of 437 conjuncts, 11 conjunts are in the unsatisfiable core [2022-10-17 17:21:43,205 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-10-17 17:21:43,448 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 4 proven. 2 refuted. 0 times theorem prover too weak. 21 trivial. 0 not checked. [2022-10-17 17:21:43,448 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-10-17 17:21:43,635 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 12 proven. 0 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2022-10-17 17:21:43,635 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [495787412] provided 1 perfect and 1 imperfect interpolant sequences [2022-10-17 17:21:43,636 INFO L184 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2022-10-17 17:21:43,636 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [7, 5] total 11 [2022-10-17 17:21:43,636 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1231199989] [2022-10-17 17:21:43,636 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-10-17 17:21:43,637 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-10-17 17:21:43,637 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:43,637 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-10-17 17:21:43,637 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=85, Unknown=0, NotChecked=0, Total=110 [2022-10-17 17:21:43,638 INFO L87 Difference]: Start difference. First operand 157 states and 180 transitions. Second operand has 6 states, 5 states have (on average 8.0) internal successors, (40), 5 states have internal predecessors, (40), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2022-10-17 17:21:43,821 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:43,821 INFO L93 Difference]: Finished difference Result 423 states and 491 transitions. [2022-10-17 17:21:43,822 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-10-17 17:21:43,822 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 8.0) internal successors, (40), 5 states have internal predecessors, (40), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 65 [2022-10-17 17:21:43,822 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:43,824 INFO L225 Difference]: With dead ends: 423 [2022-10-17 17:21:43,824 INFO L226 Difference]: Without dead ends: 268 [2022-10-17 17:21:43,825 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 139 GetRequests, 125 SyntacticMatches, 3 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 11 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=35, Invalid=121, Unknown=0, NotChecked=0, Total=156 [2022-10-17 17:21:43,826 INFO L413 NwaCegarLoop]: 49 mSDtfsCounter, 28 mSDsluCounter, 207 mSDsCounter, 0 mSdLazyCounter, 100 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 29 SdHoareTripleChecker+Valid, 212 SdHoareTripleChecker+Invalid, 103 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 100 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:43,826 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [29 Valid, 212 Invalid, 103 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 100 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-10-17 17:21:43,827 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 268 states. [2022-10-17 17:21:43,861 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 268 to 255. [2022-10-17 17:21:43,862 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 255 states, 174 states have (on average 1.1436781609195403) internal successors, (199), 187 states have internal predecessors, (199), 40 states have call successors, (40), 37 states have call predecessors, (40), 40 states have return successors, (50), 40 states have call predecessors, (50), 40 states have call successors, (50) [2022-10-17 17:21:43,864 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 255 states to 255 states and 289 transitions. [2022-10-17 17:21:43,864 INFO L78 Accepts]: Start accepts. Automaton has 255 states and 289 transitions. Word has length 65 [2022-10-17 17:21:43,865 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:43,865 INFO L495 AbstractCegarLoop]: Abstraction has 255 states and 289 transitions. [2022-10-17 17:21:43,865 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 8.0) internal successors, (40), 5 states have internal predecessors, (40), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2022-10-17 17:21:43,865 INFO L276 IsEmpty]: Start isEmpty. Operand 255 states and 289 transitions. [2022-10-17 17:21:43,867 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2022-10-17 17:21:43,867 INFO L187 NwaCegarLoop]: Found error trace [2022-10-17 17:21:43,867 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:21:43,905 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2022-10-17 17:21:44,080 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-10-17 17:21:44,080 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-10-17 17:21:44,080 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-10-17 17:21:44,081 INFO L85 PathProgramCache]: Analyzing trace with hash -304665198, now seen corresponding path program 1 times [2022-10-17 17:21:44,081 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-10-17 17:21:44,081 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [378752628] [2022-10-17 17:21:44,081 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:44,081 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-10-17 17:21:44,103 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:44,393 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 15 proven. 4 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-10-17 17:21:44,393 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-10-17 17:21:44,393 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [378752628] [2022-10-17 17:21:44,393 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [378752628] provided 0 perfect and 1 imperfect interpolant sequences [2022-10-17 17:21:44,393 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1569224318] [2022-10-17 17:21:44,394 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-10-17 17:21:44,394 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-10-17 17:21:44,394 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 [2022-10-17 17:21:44,398 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-10-17 17:21:44,417 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-10-17 17:21:44,532 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-10-17 17:21:44,535 INFO L263 TraceCheckSpWp]: Trace formula consists of 443 conjuncts, 32 conjunts are in the unsatisfiable core [2022-10-17 17:21:44,539 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-10-17 17:21:44,725 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 16 proven. 5 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-10-17 17:21:44,726 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-10-17 17:21:44,970 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 11 proven. 6 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2022-10-17 17:21:44,974 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1569224318] provided 0 perfect and 2 imperfect interpolant sequences [2022-10-17 17:21:44,974 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [178753893] [2022-10-17 17:21:44,996 INFO L159 IcfgInterpreter]: Started Sifa with 44 locations of interest [2022-10-17 17:21:44,997 INFO L166 IcfgInterpreter]: Building call graph [2022-10-17 17:21:45,000 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-10-17 17:21:45,006 INFO L176 IcfgInterpreter]: Starting interpretation [2022-10-17 17:21:45,006 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-10-17 17:21:52,266 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 49 for LOIs [2022-10-17 17:21:52,275 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 54 for LOIs [2022-10-17 17:21:52,706 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 41 for LOIs [2022-10-17 17:21:52,814 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 40 for LOIs [2022-10-17 17:21:52,820 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 43 for LOIs [2022-10-17 17:21:52,829 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 42 for LOIs [2022-10-17 17:21:52,838 INFO L180 IcfgInterpreter]: Interpretation finished [2022-10-17 17:21:58,851 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '5237#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp~0#1| 2147483647) (= ~head~0.offset 0) (<= |timeShift_isPumpRunning_#res#1| 2147483647) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1|) (= 1 ~systemActive~0) (= |timeShift___utac_acc__Specification2_spec__2_~tmp~0#1| ~methaneLevelCritical~0) (<= 0 ~methAndRunningLastTime~0) (<= 0 |old(~methAndRunningLastTime~0)|) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (<= 0 ~methaneLevelCritical~0) (= ~head~0.base 0) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp~0#1| 0)) (= |#NULL.offset| 0) (<= 0 (+ |timeShift_isPumpRunning_#res#1| 2147483648)) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 0)) (not (= ~methAndRunningLastTime~0 0)) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-10-17 17:21:58,851 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-10-17 17:21:58,851 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-10-17 17:21:58,851 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 9, 10] total 24 [2022-10-17 17:21:58,851 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1137327400] [2022-10-17 17:21:58,851 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-10-17 17:21:58,852 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 24 states [2022-10-17 17:21:58,852 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-10-17 17:21:58,853 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2022-10-17 17:21:58,854 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=242, Invalid=2620, Unknown=0, NotChecked=0, Total=2862 [2022-10-17 17:21:58,855 INFO L87 Difference]: Start difference. First operand 255 states and 289 transitions. Second operand has 24 states, 19 states have (on average 5.526315789473684) internal successors, (105), 18 states have internal predecessors, (105), 7 states have call successors, (24), 8 states have call predecessors, (24), 11 states have return successors, (23), 11 states have call predecessors, (23), 7 states have call successors, (23) [2022-10-17 17:21:59,771 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-10-17 17:21:59,772 INFO L93 Difference]: Finished difference Result 507 states and 592 transitions. [2022-10-17 17:21:59,772 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2022-10-17 17:21:59,773 INFO L78 Accepts]: Start accepts. Automaton has has 24 states, 19 states have (on average 5.526315789473684) internal successors, (105), 18 states have internal predecessors, (105), 7 states have call successors, (24), 8 states have call predecessors, (24), 11 states have return successors, (23), 11 states have call predecessors, (23), 7 states have call successors, (23) Word has length 68 [2022-10-17 17:21:59,773 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-10-17 17:21:59,773 INFO L225 Difference]: With dead ends: 507 [2022-10-17 17:21:59,774 INFO L226 Difference]: Without dead ends: 0 [2022-10-17 17:21:59,777 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 234 GetRequests, 158 SyntacticMatches, 9 SemanticMatches, 67 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1683 ImplicationChecksByTransitivity, 6.5s TimeCoverageRelationStatistics Valid=415, Invalid=4277, Unknown=0, NotChecked=0, Total=4692 [2022-10-17 17:21:59,780 INFO L413 NwaCegarLoop]: 60 mSDtfsCounter, 200 mSDsluCounter, 189 mSDsCounter, 0 mSdLazyCounter, 964 mSolverCounterSat, 108 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 205 SdHoareTripleChecker+Valid, 204 SdHoareTripleChecker+Invalid, 1072 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 108 IncrementalHoareTripleChecker+Valid, 964 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2022-10-17 17:21:59,780 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [205 Valid, 204 Invalid, 1072 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [108 Valid, 964 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2022-10-17 17:21:59,781 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-10-17 17:21:59,781 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-10-17 17:21:59,781 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-10-17 17:21:59,782 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-10-17 17:21:59,782 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 68 [2022-10-17 17:21:59,782 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-10-17 17:21:59,782 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-10-17 17:21:59,783 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 24 states, 19 states have (on average 5.526315789473684) internal successors, (105), 18 states have internal predecessors, (105), 7 states have call successors, (24), 8 states have call predecessors, (24), 11 states have return successors, (23), 11 states have call predecessors, (23), 7 states have call successors, (23) [2022-10-17 17:21:59,783 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-10-17 17:21:59,783 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-10-17 17:21:59,786 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-10-17 17:21:59,823 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-10-17 17:22:00,002 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-10-17 17:22:00,003 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-10-17 17:22:03,973 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 173 179) no Hoare annotation was computed. [2022-10-17 17:22:03,973 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 173 179) the Hoare annotation is: true [2022-10-17 17:22:03,974 INFO L895 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 526 537) the Hoare annotation is: (let ((.cse1 (not (= ~methAndRunningLastTime~0 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (= ~methaneLevelCritical~0 1)) (.cse3 (not (= |old(~methaneLevelCritical~0)| 1)))) (and (or (not (= |old(~methaneLevelCritical~0)| 0)) .cse0 (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0) .cse1) (or .cse0 .cse2 .cse3 .cse1) (or (= ~pumpRunning~0 0) .cse0 .cse2 .cse3))) [2022-10-17 17:22:03,974 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 526 537) no Hoare annotation was computed. [2022-10-17 17:22:03,974 INFO L899 garLoopResultBuilder]: For program point L417(lines 417 421) no Hoare annotation was computed. [2022-10-17 17:22:03,974 INFO L902 garLoopResultBuilder]: At program point L417-1(lines 417 421) the Hoare annotation is: true [2022-10-17 17:22:03,974 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 403 432) no Hoare annotation was computed. [2022-10-17 17:22:03,975 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 403 432) the Hoare annotation is: true [2022-10-17 17:22:03,975 INFO L902 garLoopResultBuilder]: At program point L413-2(lines 413 427) the Hoare annotation is: true [2022-10-17 17:22:03,975 INFO L902 garLoopResultBuilder]: At program point L409(line 409) the Hoare annotation is: true [2022-10-17 17:22:03,975 INFO L899 garLoopResultBuilder]: For program point L409-1(line 409) no Hoare annotation was computed. [2022-10-17 17:22:03,975 INFO L902 garLoopResultBuilder]: At program point L428(lines 403 432) the Hoare annotation is: true [2022-10-17 17:22:03,975 INFO L899 garLoopResultBuilder]: For program point L424(line 424) no Hoare annotation was computed. [2022-10-17 17:22:03,976 INFO L895 garLoopResultBuilder]: At program point L221(line 221) the Hoare annotation is: (let ((.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse3 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (= |old(~pumpRunning~0)| 0)) (.cse4 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 .cse1 .cse2 (and (or (<= (+ ~waterLevel~0 1) |old(~waterLevel~0)|) (and (not (< 0 ~waterLevel~0)) (<= ~waterLevel~0 |old(~waterLevel~0)|))) (not (= ~pumpRunning~0 0)))) (or .cse3 .cse0 .cse4) (or (not .cse1) .cse3 .cse0 .cse2) (or .cse3 (= ~methAndRunningLastTime~0 0) .cse0 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0))) (or .cse0 .cse1 .cse4))) [2022-10-17 17:22:03,976 INFO L895 garLoopResultBuilder]: At program point L226(line 226) the Hoare annotation is: (let ((.cse2 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse3 (and (= ~pumpRunning~0 0) (= ~methAndRunningLastTime~0 0) (<= ~waterLevel~0 |old(~waterLevel~0)|))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (= |old(~pumpRunning~0)| 0)) (.cse4 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 .cse1 (not (= ~methaneLevelCritical~0 0))) (or .cse2 .cse0 .cse3 .cse4) (or .cse2 .cse0 (not (<= ~methaneLevelCritical~0 0)) .cse3 (not (<= 0 ~methaneLevelCritical~0))) (or .cse0 .cse1 .cse4))) [2022-10-17 17:22:03,977 INFO L895 garLoopResultBuilder]: At program point L226-1(lines 207 231) the Hoare annotation is: (let ((.cse7 (= ~pumpRunning~0 0))) (let ((.cse1 (= ~methAndRunningLastTime~0 0)) (.cse12 (not .cse7)) (.cse3 (= |old(~pumpRunning~0)| 0)) (.cse11 (= ~methaneLevelCritical~0 0)) (.cse8 (= 1 ~systemActive~0)) (.cse9 (<= ~waterLevel~0 |old(~waterLevel~0)|))) (let ((.cse4 (and .cse7 (not (= |timeShift_processEnvironment_~tmp~2#1| 0)) .cse11 .cse8 .cse9)) (.cse5 (not (<= ~methaneLevelCritical~0 0))) (.cse6 (not (<= 0 ~methaneLevelCritical~0))) (.cse13 (not .cse3)) (.cse0 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse2 (not .cse8)) (.cse10 (not (= ~methaneLevelCritical~0 1))) (.cse14 (and .cse1 .cse12 (<= 2 ~waterLevel~0) .cse9)) (.cse15 (and .cse7 (<= ~waterLevel~0 1) .cse8 .cse9))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5 .cse6) (or .cse2 .cse3 (and .cse7 (= |timeShift_processEnvironment_~tmp~2#1| 1) .cse8 .cse9) .cse10) (or .cse2 .cse3 (not .cse11) .cse4 (and .cse12 .cse9)) (or .cse13 .cse0 .cse2 .cse5 .cse6 .cse14 .cse15) (or .cse13 .cse0 .cse2 .cse10 .cse14 .cse15))))) [2022-10-17 17:22:03,977 INFO L899 garLoopResultBuilder]: For program point L160-1(lines 160 166) no Hoare annotation was computed. [2022-10-17 17:22:03,977 INFO L899 garLoopResultBuilder]: For program point L82(lines 82 92) no Hoare annotation was computed. [2022-10-17 17:22:03,978 INFO L895 garLoopResultBuilder]: At program point L78(lines 78 95) the Hoare annotation is: (let ((.cse3 (= |old(~pumpRunning~0)| 0)) (.cse7 (= ~pumpRunning~0 0)) (.cse9 (= 1 ~systemActive~0)) (.cse10 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~0#1| ~methaneLevelCritical~0)) (.cse11 (<= ~waterLevel~0 |old(~waterLevel~0)|))) (let ((.cse4 (not (= ~methaneLevelCritical~0 0))) (.cse5 (and .cse7 (not (= |timeShift_processEnvironment_~tmp~2#1| 0)) .cse9 .cse10 .cse11)) (.cse6 (not .cse3)) (.cse0 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse2 (not .cse9)) (.cse14 (not (= ~methaneLevelCritical~0 1))) (.cse1 (= ~methAndRunningLastTime~0 0)) (.cse12 (not .cse7)) (.cse13 (<= 2 ~waterLevel~0)) (.cse8 (<= ~waterLevel~0 1))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse6 .cse0 .cse2 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0)) (and .cse7 .cse8 .cse9 .cse10 .cse11) (and .cse1 .cse12 .cse13 .cse10 .cse11)) (or .cse2 .cse3 (and .cse7 (= |timeShift_processEnvironment_~tmp~2#1| 1) .cse9 .cse11) .cse14) (or .cse2 .cse3 .cse4 .cse5 (and .cse12 .cse10 .cse11)) (or .cse6 .cse0 .cse2 .cse14 (and .cse1 .cse12 .cse13 .cse11) (and .cse7 .cse8 .cse9 .cse11))))) [2022-10-17 17:22:03,978 INFO L895 garLoopResultBuilder]: At program point L78-1(lines 70 98) the Hoare annotation is: (let ((.cse6 (= 1 ~systemActive~0)) (.cse8 (= ~pumpRunning~0 0)) (.cse11 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not .cse11)) (.cse4 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse1 (not .cse8)) (.cse2 (<= 2 ~waterLevel~0)) (.cse9 (<= ~waterLevel~0 1)) (.cse12 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~0#1| ~methaneLevelCritical~0)) (.cse5 (= ~methAndRunningLastTime~0 0)) (.cse3 (<= ~waterLevel~0 |old(~waterLevel~0)|)) (.cse7 (not .cse6)) (.cse10 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 (and .cse1 .cse2 (= ~pumpRunning~0 |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1|) .cse3) .cse4 (and .cse5 .cse1 .cse2 (<= |timeShift___utac_acc__Specification2_spec__2_~tmp~0#1| 0) .cse6 (<= 0 |timeShift___utac_acc__Specification2_spec__2_~tmp~0#1|) .cse3) .cse7 (and .cse8 .cse5 .cse9 .cse6 .cse3) .cse10) (or .cse7 .cse11 (not (= ~methaneLevelCritical~0 0)) (and .cse8 (not (= |timeShift_processEnvironment_~tmp~2#1| 0)) .cse5 .cse6 .cse12 .cse3) (and .cse5 .cse1 .cse6 .cse12 .cse3)) (or .cse0 .cse4 (and .cse5 .cse1 .cse2 .cse6 .cse12 .cse3) .cse7 (and .cse8 .cse5 .cse9 .cse6 .cse12 .cse3) (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0))) (or (and .cse8 .cse5 (= |timeShift_processEnvironment_~tmp~2#1| 1) .cse6 .cse3) .cse7 .cse11 .cse10)))) [2022-10-17 17:22:03,979 INFO L899 garLoopResultBuilder]: For program point L153-1(lines 152 171) no Hoare annotation was computed. [2022-10-17 17:22:03,979 INFO L895 garLoopResultBuilder]: At program point L215(lines 215 223) the Hoare annotation is: (let ((.cse1 (= |old(~pumpRunning~0)| 0))) (let ((.cse3 (or (<= (+ ~waterLevel~0 1) |old(~waterLevel~0)|) (and (not (< 0 ~waterLevel~0)) (<= ~waterLevel~0 |old(~waterLevel~0)|)))) (.cse4 (not (= ~pumpRunning~0 0))) (.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse8 (not .cse1)) (.cse7 (not (= ~methaneLevelCritical~0 1))) (.cse5 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse6 (= ~methAndRunningLastTime~0 0)) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2 (and .cse3 .cse4)) (or .cse5 .cse6 .cse0 .cse1 .cse7) (or .cse0 .cse1 .cse7 (and .cse3 .cse4 (= |timeShift_processEnvironment_~tmp~2#1| 1))) (or .cse8 .cse5 .cse0 .cse2) (or .cse8 .cse5 .cse0 .cse7) (or .cse5 .cse6 .cse0 .cse1 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0)))))) [2022-10-17 17:22:03,979 INFO L895 garLoopResultBuilder]: At program point L54(line 54) the Hoare annotation is: (let ((.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse3 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (= |old(~pumpRunning~0)| 0)) (.cse4 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 .cse1 .cse2) (or .cse3 .cse0 .cse2) (or .cse3 .cse0 .cse4) (or .cse0 .cse1 .cse4))) [2022-10-17 17:22:03,980 INFO L899 garLoopResultBuilder]: For program point L211(lines 211 228) no Hoare annotation was computed. [2022-10-17 17:22:03,980 INFO L899 garLoopResultBuilder]: For program point L83(lines 83 89) no Hoare annotation was computed. [2022-10-17 17:22:03,980 INFO L895 garLoopResultBuilder]: At program point L253(line 253) the Hoare annotation is: (let ((.cse1 (= |old(~pumpRunning~0)| 0))) (let ((.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse7 (not .cse1)) (.cse4 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse5 (= ~methAndRunningLastTime~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse6 (not (= ~methaneLevelCritical~0 1))) (.cse3 (and (or (<= (+ ~waterLevel~0 1) |old(~waterLevel~0)|) (and (not (< 0 ~waterLevel~0)) (<= ~waterLevel~0 |old(~waterLevel~0)|))) (not (= ~pumpRunning~0 0))))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse4 .cse5 .cse0 .cse1 .cse6) (or .cse7 .cse4 .cse0 .cse2) (or .cse7 .cse4 .cse0 .cse6) (or .cse4 .cse5 .cse0 .cse1 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0))) (or .cse0 .cse1 .cse6 .cse3)))) [2022-10-17 17:22:03,981 INFO L895 garLoopResultBuilder]: At program point L253-1(line 253) the Hoare annotation is: (let ((.cse1 (= |old(~pumpRunning~0)| 0))) (let ((.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse8 (not .cse1)) (.cse5 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse6 (= ~methAndRunningLastTime~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse3 (or (<= (+ ~waterLevel~0 1) |old(~waterLevel~0)|) (and (not (< 0 ~waterLevel~0)) (<= ~waterLevel~0 |old(~waterLevel~0)|)))) (.cse4 (not (= ~pumpRunning~0 0))) (.cse7 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 .cse1 .cse2 (and .cse3 .cse4)) (or .cse5 .cse6 .cse0 .cse1 .cse7) (or .cse8 .cse5 .cse0 .cse2) (or .cse8 .cse5 .cse0 .cse7) (or .cse5 .cse6 .cse0 .cse1 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0))) (or .cse0 (and .cse3 (= |timeShift_isMethaneAlarm_#t~ret9#1| 1) .cse4) .cse1 .cse7)))) [2022-10-17 17:22:03,981 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 149 172) the Hoare annotation is: (let ((.cse9 (= ~pumpRunning~0 0))) (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse10 (= ~methAndRunningLastTime~0 0)) (.cse13 (not .cse9)) (.cse12 (= 1 ~systemActive~0)) (.cse11 (<= ~waterLevel~0 |old(~waterLevel~0)|))) (let ((.cse2 (and .cse13 .cse12 .cse11)) (.cse6 (and .cse10 .cse13 .cse11)) (.cse4 (not (= ~methaneLevelCritical~0 0))) (.cse7 (not .cse1)) (.cse5 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (not .cse12)) (.cse8 (and .cse9 .cse10 .cse11)) (.cse3 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse1 .cse4 .cse2) (or .cse5 .cse0 .cse1 (not (<= ~methaneLevelCritical~0 0)) .cse6 (not (<= 0 ~methaneLevelCritical~0))) (or .cse5 .cse0 .cse1 .cse6 .cse3) (or .cse7 .cse5 .cse0 .cse4 .cse8) (or .cse7 .cse5 .cse0 .cse8 .cse3))))) [2022-10-17 17:22:03,982 INFO L895 garLoopResultBuilder]: At program point L76(line 76) the Hoare annotation is: (let ((.cse7 (= ~pumpRunning~0 0))) (let ((.cse1 (= ~methAndRunningLastTime~0 0)) (.cse12 (not .cse7)) (.cse3 (= |old(~pumpRunning~0)| 0)) (.cse11 (= ~methaneLevelCritical~0 0)) (.cse8 (= 1 ~systemActive~0)) (.cse9 (<= ~waterLevel~0 |old(~waterLevel~0)|))) (let ((.cse4 (and .cse7 (not (= |timeShift_processEnvironment_~tmp~2#1| 0)) .cse11 .cse8 .cse9)) (.cse5 (not (<= ~methaneLevelCritical~0 0))) (.cse6 (not (<= 0 ~methaneLevelCritical~0))) (.cse13 (not .cse3)) (.cse0 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse2 (not .cse8)) (.cse10 (not (= ~methaneLevelCritical~0 1))) (.cse14 (and .cse1 .cse12 (<= 2 ~waterLevel~0) .cse9)) (.cse15 (and .cse7 (<= ~waterLevel~0 1) .cse8 .cse9))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5 .cse6) (or .cse2 .cse3 (and .cse7 (= |timeShift_processEnvironment_~tmp~2#1| 1) .cse8 .cse9) .cse10) (or .cse2 .cse3 (not .cse11) .cse4 (and .cse12 .cse9)) (or .cse13 .cse0 .cse2 .cse5 .cse6 .cse14 .cse15) (or .cse13 .cse0 .cse2 .cse10 .cse14 .cse15))))) [2022-10-17 17:22:03,982 INFO L899 garLoopResultBuilder]: For program point L76-1(line 76) no Hoare annotation was computed. [2022-10-17 17:22:03,982 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 149 172) no Hoare annotation was computed. [2022-10-17 17:22:03,982 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 54) no Hoare annotation was computed. [2022-10-17 17:22:03,983 INFO L902 garLoopResultBuilder]: At program point isMethaneLevelCriticalENTRY(lines 538 546) the Hoare annotation is: true [2022-10-17 17:22:03,983 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 538 546) no Hoare annotation was computed. [2022-10-17 17:22:03,983 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-10-17 17:22:03,983 INFO L895 garLoopResultBuilder]: At program point L383-2(lines 375 388) the Hoare annotation is: (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse5 (not (= ~pumpRunning~0 0))) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (= |ULTIMATE.start_main_~tmp~5#1| 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse5 .cse6 .cse1 .cse3 .cse4) (and .cse0 .cse6 .cse1 .cse3 .cse4) (and .cse5 .cse1 .cse2 .cse3 .cse4))) [2022-10-17 17:22:03,983 INFO L899 garLoopResultBuilder]: For program point L346(lines 345 392) no Hoare annotation was computed. [2022-10-17 17:22:03,984 INFO L895 garLoopResultBuilder]: At program point L367(line 367) the Hoare annotation is: (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (= |ULTIMATE.start_main_~tmp~5#1| 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse0 (= ~methaneLevelCritical~0 0) .cse1 .cse3 .cse4) (and (not (= ~pumpRunning~0 0)) .cse1 .cse2 .cse3 .cse4))) [2022-10-17 17:22:03,984 INFO L902 garLoopResultBuilder]: At program point L396(lines 335 400) the Hoare annotation is: true [2022-10-17 17:22:03,984 INFO L899 garLoopResultBuilder]: For program point L355(lines 355 361) no Hoare annotation was computed. [2022-10-17 17:22:03,984 INFO L899 garLoopResultBuilder]: For program point L355-1(lines 355 361) no Hoare annotation was computed. [2022-10-17 17:22:03,984 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-10-17 17:22:03,985 INFO L895 garLoopResultBuilder]: At program point L393(lines 344 394) the Hoare annotation is: false [2022-10-17 17:22:03,985 INFO L899 garLoopResultBuilder]: For program point L365(lines 365 371) no Hoare annotation was computed. [2022-10-17 17:22:03,985 INFO L895 garLoopResultBuilder]: At program point L365-1(lines 365 371) the Hoare annotation is: (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse5 (not (= ~pumpRunning~0 0))) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (= |ULTIMATE.start_main_~tmp~5#1| 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse5 .cse6 .cse1 .cse3 .cse4) (and .cse0 .cse6 .cse1 .cse3 .cse4) (and .cse5 .cse1 .cse2 .cse3 .cse4))) [2022-10-17 17:22:03,985 INFO L895 garLoopResultBuilder]: At program point L390(lines 345 392) the Hoare annotation is: (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (= |ULTIMATE.start_main_~tmp~5#1| 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse0 (= ~methaneLevelCritical~0 0) .cse1 .cse3 .cse4) (and (not (= ~pumpRunning~0 0)) .cse1 .cse2 .cse3 .cse4))) [2022-10-17 17:22:03,986 INFO L895 garLoopResultBuilder]: At program point L485(lines 485 492) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= ~methAndRunningLastTime~0 0) (= ~methaneLevelCritical~0 0) (<= ~waterLevel~0 1) (= 1 ~systemActive~0) (= |ULTIMATE.start_main_~tmp~5#1| 1)) [2022-10-17 17:22:03,986 INFO L895 garLoopResultBuilder]: At program point L357(line 357) the Hoare annotation is: (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (= |ULTIMATE.start_main_~tmp~5#1| 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse0 (= ~methaneLevelCritical~0 0) .cse1 .cse3 .cse4) (and (not (= ~pumpRunning~0 0)) .cse1 .cse2 .cse3 .cse4))) [2022-10-17 17:22:03,986 INFO L902 garLoopResultBuilder]: At program point L485-2(lines 485 492) the Hoare annotation is: true [2022-10-17 17:22:03,986 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 181 205) the Hoare annotation is: (let ((.cse4 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not .cse4)) (.cse3 (not (= ~methAndRunningLastTime~0 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0)) .cse3) (or .cse0 .cse1 .cse2 (not (= ~methaneLevelCritical~0 1)) .cse3) (or (not .cse1) .cse2 .cse4 (not (= ~methaneLevelCritical~0 0)))))) [2022-10-17 17:22:03,987 INFO L895 garLoopResultBuilder]: At program point L195(line 195) the Hoare annotation is: (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse3 (and (= ~pumpRunning~0 0) (<= ~waterLevel~0 1) (= |processEnvironment__wrappee__highWaterSensor_~tmp~1#1| 0))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2) (or (not .cse1) .cse0 (not (= ~methaneLevelCritical~0 1)) .cse3 .cse4) (or .cse0 .cse2 .cse3 .cse4))) [2022-10-17 17:22:03,987 INFO L895 garLoopResultBuilder]: At program point L189(lines 189 197) the Hoare annotation is: (let ((.cse1 (not (= ~methaneLevelCritical~0 0))) (.cse4 (= |old(~pumpRunning~0)| 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (and (= ~pumpRunning~0 0) (let ((.cse5 (< ~waterLevel~0 2))) (or (and .cse5 (= |processEnvironment__wrappee__highWaterSensor_~tmp~1#1| 0)) (and (not .cse5) (= |processEnvironment__wrappee__highWaterSensor_~tmp~1#1| 1)))))) (.cse3 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse4 .cse1) (or (not .cse4) .cse0 .cse2 (not (= ~methaneLevelCritical~0 1)) .cse3))) [2022-10-17 17:22:03,987 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 181 205) no Hoare annotation was computed. [2022-10-17 17:22:03,987 INFO L895 garLoopResultBuilder]: At program point L185(lines 185 202) the Hoare annotation is: (let ((.cse4 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not .cse4)) (.cse3 (not (= ~methAndRunningLastTime~0 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0)) .cse3) (or .cse0 .cse1 .cse2 (not (= ~methaneLevelCritical~0 1)) .cse3) (or (not .cse1) .cse2 .cse4 (not (= ~methaneLevelCritical~0 0)))))) [2022-10-17 17:22:03,988 INFO L895 garLoopResultBuilder]: At program point L200(line 200) the Hoare annotation is: (let ((.cse3 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not .cse3)) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 (not (= ~methaneLevelCritical~0 1)) .cse2) (or (not (= ~pumpRunning~0 0)) .cse1 .cse3 (not (= ~methaneLevelCritical~0 0))) (or .cse0 .cse1 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0)) .cse2)))) [2022-10-17 17:22:03,988 INFO L899 garLoopResultBuilder]: For program point L200-1(lines 181 205) no Hoare annotation was computed. [2022-10-17 17:22:03,988 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 514 525) no Hoare annotation was computed. [2022-10-17 17:22:03,988 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 514 525) the Hoare annotation is: (let ((.cse1 (not (= ~methaneLevelCritical~0 1))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (<= ~waterLevel~0 |old(~waterLevel~0)|)) (.cse3 (not (= ~methAndRunningLastTime~0 0)))) (and (or (= ~pumpRunning~0 0) .cse0 .cse1 .cse2) (or .cse0 .cse1 .cse2 .cse3) (or .cse0 (not (<= ~methaneLevelCritical~0 0)) (not (<= 0 ~methaneLevelCritical~0)) .cse2 .cse3))) [2022-10-17 17:22:03,992 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-10-17 17:22:03,994 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-10-17 17:22:04,070 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 17.10 05:22:04 BoogieIcfgContainer [2022-10-17 17:22:04,072 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-10-17 17:22:04,073 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-10-17 17:22:04,073 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-10-17 17:22:04,073 INFO L275 PluginConnector]: Witness Printer initialized [2022-10-17 17:22:04,074 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 17.10 05:21:38" (3/4) ... [2022-10-17 17:22:04,077 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-10-17 17:22:04,083 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-10-17 17:22:04,083 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-10-17 17:22:04,083 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-10-17 17:22:04,083 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-10-17 17:22:04,084 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2022-10-17 17:22:04,084 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-10-17 17:22:04,084 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-10-17 17:22:04,103 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 70 nodes and edges [2022-10-17 17:22:04,104 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 27 nodes and edges [2022-10-17 17:22:04,105 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 13 nodes and edges [2022-10-17 17:22:04,106 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-10-17 17:22:04,107 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 2 nodes and edges [2022-10-17 17:22:04,107 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-10-17 17:22:04,108 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-10-17 17:22:04,137 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(1 == systemActive) || \old(pumpRunning) == 0) || ((!(pumpRunning == 0) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1)) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((!(pumpRunning == 0) && 1 == systemActive) && waterLevel <= \old(waterLevel)))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical <= 0)) || ((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && waterLevel <= \old(waterLevel))) || !(0 <= methaneLevelCritical))) && ((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || ((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1)) [2022-10-17 17:22:04,140 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || ((((pumpRunning == 0 && !(tmp == 0)) && methaneLevelCritical == 0) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || (((pumpRunning == 0 && tmp == 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1))) && ((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((((pumpRunning == 0 && !(tmp == 0)) && methaneLevelCritical == 0) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || (!(pumpRunning == 0) && waterLevel <= \old(waterLevel)))) && ((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) || (((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && waterLevel <= \old(waterLevel))) || (((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || (((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && waterLevel <= \old(waterLevel))) || (((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) [2022-10-17 17:22:04,140 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) || !(methAndRunningLastTime == 0)) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && (((!(pumpRunning == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) [2022-10-17 17:22:04,141 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((((pumpRunning == 0 && !(tmp == 0)) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) && ((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || ((((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel)))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || (((pumpRunning == 0 && tmp == 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1))) && ((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((((pumpRunning == 0 && !(tmp == 0)) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || ((!(pumpRunning == 0) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel)))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || (((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && waterLevel <= \old(waterLevel))) || (((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) [2022-10-17 17:22:04,142 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((waterLevel + 1 <= \old(waterLevel) || (!(0 < waterLevel) && waterLevel <= \old(waterLevel))) && !(pumpRunning == 0))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical))) && (((!(1 == systemActive) || (((waterLevel + 1 <= \old(waterLevel) || (!(0 < waterLevel) && waterLevel <= \old(waterLevel))) && aux-isMethaneLevelCritical()-aux == 1) && !(pumpRunning == 0))) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1)) [2022-10-17 17:22:04,142 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || (((!(pumpRunning == 0) && 2 <= waterLevel) && pumpRunning == tmp___0) && waterLevel <= \old(waterLevel))) || !(\old(methAndRunningLastTime) == 0)) || ((((((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && tmp <= 0) && 1 == systemActive) && 0 <= tmp) && waterLevel <= \old(waterLevel))) || !(1 == systemActive)) || ((((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1)) && ((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || (((((pumpRunning == 0 && !(tmp == 0)) && methAndRunningLastTime == 0) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || ((((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel)))) && ((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (((((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || !(1 == systemActive)) || (((((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= 1) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical))) && (((((((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1)) [2022-10-17 17:22:04,143 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((waterLevel + 1 <= \old(waterLevel) || (!(0 < waterLevel) && waterLevel <= \old(waterLevel))) && !(pumpRunning == 0))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1)) || (((waterLevel + 1 <= \old(waterLevel) || (!(0 < waterLevel) && waterLevel <= \old(waterLevel))) && !(pumpRunning == 0)) && tmp == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) [2022-10-17 17:22:04,143 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) && ((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && ((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1)) [2022-10-17 17:22:04,144 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(1 == systemActive) || !(methaneLevelCritical == 0)) || (pumpRunning == 0 && ((waterLevel < 2 && tmp == 0) || (!(waterLevel < 2) && tmp == 1)))) || !(methAndRunningLastTime == 0)) && ((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || (pumpRunning == 0 && ((waterLevel < 2 && tmp == 0) || (!(waterLevel < 2) && tmp == 1)))) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0)) [2022-10-17 17:22:04,192 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/witness.graphml [2022-10-17 17:22:04,192 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-10-17 17:22:04,193 INFO L158 Benchmark]: Toolchain (without parser) took 27290.06ms. Allocated memory was 111.1MB in the beginning and 434.1MB in the end (delta: 323.0MB). Free memory was 76.2MB in the beginning and 156.1MB in the end (delta: -79.8MB). Peak memory consumption was 243.8MB. Max. memory is 16.1GB. [2022-10-17 17:22:04,193 INFO L158 Benchmark]: CDTParser took 0.27ms. Allocated memory is still 88.1MB. Free memory was 41.2MB in the beginning and 41.1MB in the end (delta: 68.8kB). There was no memory consumed. Max. memory is 16.1GB. [2022-10-17 17:22:04,194 INFO L158 Benchmark]: CACSL2BoogieTranslator took 482.21ms. Allocated memory is still 111.1MB. Free memory was 76.0MB in the beginning and 73.1MB in the end (delta: 2.9MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2022-10-17 17:22:04,194 INFO L158 Benchmark]: Boogie Procedure Inliner took 88.99ms. Allocated memory is still 111.1MB. Free memory was 73.1MB in the beginning and 70.6MB in the end (delta: 2.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-10-17 17:22:04,195 INFO L158 Benchmark]: Boogie Preprocessor took 58.53ms. Allocated memory is still 111.1MB. Free memory was 70.6MB in the beginning and 68.9MB in the end (delta: 1.8MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-10-17 17:22:04,195 INFO L158 Benchmark]: RCFGBuilder took 847.82ms. Allocated memory was 111.1MB in the beginning and 142.6MB in the end (delta: 31.5MB). Free memory was 68.9MB in the beginning and 105.9MB in the end (delta: -37.0MB). Peak memory consumption was 22.4MB. Max. memory is 16.1GB. [2022-10-17 17:22:04,196 INFO L158 Benchmark]: TraceAbstraction took 25684.18ms. Allocated memory was 142.6MB in the beginning and 434.1MB in the end (delta: 291.5MB). Free memory was 105.2MB in the beginning and 161.3MB in the end (delta: -56.1MB). Peak memory consumption was 251.5MB. Max. memory is 16.1GB. [2022-10-17 17:22:04,197 INFO L158 Benchmark]: Witness Printer took 119.60ms. Allocated memory is still 434.1MB. Free memory was 161.3MB in the beginning and 156.1MB in the end (delta: 5.2MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2022-10-17 17:22:04,200 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.27ms. Allocated memory is still 88.1MB. Free memory was 41.2MB in the beginning and 41.1MB in the end (delta: 68.8kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 482.21ms. Allocated memory is still 111.1MB. Free memory was 76.0MB in the beginning and 73.1MB in the end (delta: 2.9MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 88.99ms. Allocated memory is still 111.1MB. Free memory was 73.1MB in the beginning and 70.6MB in the end (delta: 2.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 58.53ms. Allocated memory is still 111.1MB. Free memory was 70.6MB in the beginning and 68.9MB in the end (delta: 1.8MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 847.82ms. Allocated memory was 111.1MB in the beginning and 142.6MB in the end (delta: 31.5MB). Free memory was 68.9MB in the beginning and 105.9MB in the end (delta: -37.0MB). Peak memory consumption was 22.4MB. Max. memory is 16.1GB. * TraceAbstraction took 25684.18ms. Allocated memory was 142.6MB in the beginning and 434.1MB in the end (delta: 291.5MB). Free memory was 105.2MB in the beginning and 161.3MB in the end (delta: -56.1MB). Peak memory consumption was 251.5MB. Max. memory is 16.1GB. * Witness Printer took 119.60ms. Allocated memory is still 434.1MB. Free memory was 161.3MB in the beginning and 156.1MB in the end (delta: 5.2MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 54]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 58 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 25.5s, OverallIterations: 9, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 2.3s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 4.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 538 SdHoareTripleChecker+Valid, 1.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 520 mSDsluCounter, 1115 SdHoareTripleChecker+Invalid, 1.0s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 849 mSDsCounter, 188 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 1551 IncrementalHoareTripleChecker+Invalid, 1739 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 188 mSolverCounterUnsat, 461 mSDtfsCounter, 1551 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 515 GetRequests, 395 SyntacticMatches, 12 SemanticMatches, 108 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1749 ImplicationChecksByTransitivity, 6.9s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=255occurred in iteration=8, InterpolantAutomatonStates: 62, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.2s AutomataMinimizationTime, 9 MinimizatonAttempts, 57 StatesRemovedByMinimization, 4 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 35 LocationsWithAnnotation, 711 PreInvPairs, 832 NumberOfFragments, 2337 HoareAnnotationTreeSize, 711 FomulaSimplifications, 489 FormulaSimplificationTreeSizeReduction, 0.2s HoareSimplificationTime, 35 FomulaSimplificationsInter, 11037 FormulaSimplificationTreeSizeReductionInter, 3.7s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.5s SatisfiabilityAnalysisTime, 3.1s InterpolantComputationTime, 631 NumberOfCodeBlocks, 631 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 749 ConstructedInterpolants, 0 QuantifiedInterpolants, 2095 SizeOfPredicates, 25 NumberOfNonLiveVariables, 1677 ConjunctsInSsa, 72 ConjunctsInUnsatCore, 15 InterpolantComputations, 8 PerfectInterpolantSequences, 273/307 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 344]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 413]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 54]: Loop Invariant Derived loop invariant: ((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) && ((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && ((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1)) - InvariantResult [Line: 207]: Loop Invariant Derived loop invariant: (((((((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || ((((pumpRunning == 0 && !(tmp == 0)) && methaneLevelCritical == 0) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || (((pumpRunning == 0 && tmp == 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1))) && ((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((((pumpRunning == 0 && !(tmp == 0)) && methaneLevelCritical == 0) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || (!(pumpRunning == 0) && waterLevel <= \old(waterLevel)))) && ((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) || (((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && waterLevel <= \old(waterLevel))) || (((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || (((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && waterLevel <= \old(waterLevel))) || (((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) - InvariantResult [Line: 403]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 485]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 335]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 149]: Loop Invariant Derived loop invariant: (((((((!(1 == systemActive) || \old(pumpRunning) == 0) || ((!(pumpRunning == 0) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1)) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((!(pumpRunning == 0) && 1 == systemActive) && waterLevel <= \old(waterLevel)))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical <= 0)) || ((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && waterLevel <= \old(waterLevel))) || !(0 <= methaneLevelCritical))) && ((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || ((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1)) - InvariantResult [Line: 365]: Loop Invariant Derived loop invariant: ((((((methAndRunningLastTime == 0 && 1 == systemActive) && methaneLevelCritical == 1) && splverifierCounter == 0) && tmp == 1) || ((((!(pumpRunning == 0) && methaneLevelCritical == 0) && 1 == systemActive) && splverifierCounter == 0) && tmp == 1)) || ((((methAndRunningLastTime == 0 && methaneLevelCritical == 0) && 1 == systemActive) && splverifierCounter == 0) && tmp == 1)) || ((((!(pumpRunning == 0) && 1 == systemActive) && methaneLevelCritical == 1) && splverifierCounter == 0) && tmp == 1) - InvariantResult [Line: 345]: Loop Invariant Derived loop invariant: (((((methAndRunningLastTime == 0 && 1 == systemActive) && methaneLevelCritical == 1) && splverifierCounter == 0) && tmp == 1) || ((((methAndRunningLastTime == 0 && methaneLevelCritical == 0) && 1 == systemActive) && splverifierCounter == 0) && tmp == 1)) || ((((!(pumpRunning == 0) && 1 == systemActive) && methaneLevelCritical == 1) && splverifierCounter == 0) && tmp == 1) - InvariantResult [Line: 485]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0 && methAndRunningLastTime == 0) && methaneLevelCritical == 0) && waterLevel <= 1) && 1 == systemActive) && tmp == 1 - InvariantResult [Line: 253]: Loop Invariant Derived loop invariant: (((((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((waterLevel + 1 <= \old(waterLevel) || (!(0 < waterLevel) && waterLevel <= \old(waterLevel))) && !(pumpRunning == 0))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical))) && (((!(1 == systemActive) || (((waterLevel + 1 <= \old(waterLevel) || (!(0 < waterLevel) && waterLevel <= \old(waterLevel))) && aux-isMethaneLevelCritical()-aux == 1) && !(pumpRunning == 0))) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1)) - InvariantResult [Line: 78]: Loop Invariant Derived loop invariant: ((((((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((((pumpRunning == 0 && !(tmp == 0)) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) && ((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || ((((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel)))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || (((pumpRunning == 0 && tmp == 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1))) && ((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((((pumpRunning == 0 && !(tmp == 0)) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || ((!(pumpRunning == 0) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel)))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || (((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && waterLevel <= \old(waterLevel))) || (((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) - InvariantResult [Line: 70]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || (((!(pumpRunning == 0) && 2 <= waterLevel) && pumpRunning == tmp___0) && waterLevel <= \old(waterLevel))) || !(\old(methAndRunningLastTime) == 0)) || ((((((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && tmp <= 0) && 1 == systemActive) && 0 <= tmp) && waterLevel <= \old(waterLevel))) || !(1 == systemActive)) || ((((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical == 1)) && ((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || (((((pumpRunning == 0 && !(tmp == 0)) && methAndRunningLastTime == 0) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || ((((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel)))) && ((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (((((methAndRunningLastTime == 0 && !(pumpRunning == 0)) && 2 <= waterLevel) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || !(1 == systemActive)) || (((((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= 1) && 1 == systemActive) && tmp == methaneLevelCritical) && waterLevel <= \old(waterLevel))) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical))) && (((((((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1)) - InvariantResult [Line: 185]: Loop Invariant Derived loop invariant: ((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) || !(methAndRunningLastTime == 0)) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && (((!(pumpRunning == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) - InvariantResult [Line: 189]: Loop Invariant Derived loop invariant: ((((!(1 == systemActive) || !(methaneLevelCritical == 0)) || (pumpRunning == 0 && ((waterLevel < 2 && tmp == 0) || (!(waterLevel < 2) && tmp == 1)))) || !(methAndRunningLastTime == 0)) && ((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || (pumpRunning == 0 && ((waterLevel < 2 && tmp == 0) || (!(waterLevel < 2) && tmp == 1)))) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0)) - InvariantResult [Line: 215]: Loop Invariant Derived loop invariant: (((((((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 0)) || ((waterLevel + 1 <= \old(waterLevel) || (!(0 < waterLevel) && waterLevel <= \old(waterLevel))) && !(pumpRunning == 0))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || !(methaneLevelCritical == 1)) || (((waterLevel + 1 <= \old(waterLevel) || (!(0 < waterLevel) && waterLevel <= \old(waterLevel))) && !(pumpRunning == 0)) && tmp == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || \old(pumpRunning) == 0) || !(methaneLevelCritical <= 0)) || !(0 <= methaneLevelCritical)) RESULT: Ultimate proved your program to be correct! [2022-10-17 17:22:04,270 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39b9a64f-d81f-47b8-99be-8e524066c085/bin/utaipan-G1rejxKTta/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE