./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec1_product64.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 5e519f3a Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec1_product64.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash c6b9b08cafcd1ede2e2b3a8fb1be067350eaac45a7dc4fb4db0fb4cb0fdccd74 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-5e519f3 [2022-11-03 02:53:36,245 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-03 02:53:36,246 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-03 02:53:36,274 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-03 02:53:36,274 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-03 02:53:36,275 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-03 02:53:36,277 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-03 02:53:36,278 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-03 02:53:36,280 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-03 02:53:36,281 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-03 02:53:36,282 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-03 02:53:36,283 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-03 02:53:36,283 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-03 02:53:36,284 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-03 02:53:36,286 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-03 02:53:36,287 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-03 02:53:36,288 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-03 02:53:36,289 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-03 02:53:36,291 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-03 02:53:36,293 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-03 02:53:36,294 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-03 02:53:36,295 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-03 02:53:36,297 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-03 02:53:36,298 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-03 02:53:36,301 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-03 02:53:36,302 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-03 02:53:36,302 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-03 02:53:36,303 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-03 02:53:36,304 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-03 02:53:36,305 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-03 02:53:36,305 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-03 02:53:36,306 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-03 02:53:36,316 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-03 02:53:36,317 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-03 02:53:36,318 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-03 02:53:36,318 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-03 02:53:36,319 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-03 02:53:36,319 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-03 02:53:36,320 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-03 02:53:36,321 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-03 02:53:36,321 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-03 02:53:36,326 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-03 02:53:36,360 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-03 02:53:36,361 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-03 02:53:36,361 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-03 02:53:36,362 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-03 02:53:36,363 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-03 02:53:36,363 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-03 02:53:36,363 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-03 02:53:36,363 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-03 02:53:36,363 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-03 02:53:36,364 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-03 02:53:36,365 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-03 02:53:36,365 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-03 02:53:36,365 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-03 02:53:36,365 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-03 02:53:36,365 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-03 02:53:36,366 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-03 02:53:36,366 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-03 02:53:36,366 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-03 02:53:36,367 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-03 02:53:36,367 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-03 02:53:36,367 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-03 02:53:36,367 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-03 02:53:36,367 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-03 02:53:36,368 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-03 02:53:36,368 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-03 02:53:36,368 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-03 02:53:36,368 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-03 02:53:36,368 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-03 02:53:36,368 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-03 02:53:36,369 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-03 02:53:36,369 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-03 02:53:36,369 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-03 02:53:36,369 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-03 02:53:36,370 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-03 02:53:36,370 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-03 02:53:36,370 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-03 02:53:36,370 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-03 02:53:36,370 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-03 02:53:36,371 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-03 02:53:36,371 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-03 02:53:36,371 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-03 02:53:36,371 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> c6b9b08cafcd1ede2e2b3a8fb1be067350eaac45a7dc4fb4db0fb4cb0fdccd74 [2022-11-03 02:53:36,687 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-03 02:53:36,718 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-03 02:53:36,720 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-03 02:53:36,722 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-03 02:53:36,724 INFO L275 PluginConnector]: CDTParser initialized [2022-11-03 02:53:36,725 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/../../sv-benchmarks/c/product-lines/minepump_spec1_product64.cil.c [2022-11-03 02:53:36,794 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/data/2ac592f1d/30e99836613549c7b414e7d61f0d86be/FLAG05676d5c7 [2022-11-03 02:53:37,400 INFO L306 CDTParser]: Found 1 translation units. [2022-11-03 02:53:37,401 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/sv-benchmarks/c/product-lines/minepump_spec1_product64.cil.c [2022-11-03 02:53:37,418 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/data/2ac592f1d/30e99836613549c7b414e7d61f0d86be/FLAG05676d5c7 [2022-11-03 02:53:37,682 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/data/2ac592f1d/30e99836613549c7b414e7d61f0d86be [2022-11-03 02:53:37,685 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-03 02:53:37,687 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-03 02:53:37,688 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-03 02:53:37,689 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-03 02:53:37,692 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-03 02:53:37,693 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 03.11 02:53:37" (1/1) ... [2022-11-03 02:53:37,694 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2582e9bd and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:37, skipping insertion in model container [2022-11-03 02:53:37,694 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 03.11 02:53:37" (1/1) ... [2022-11-03 02:53:37,702 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-03 02:53:37,779 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-03 02:53:37,961 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/sv-benchmarks/c/product-lines/minepump_spec1_product64.cil.c[1605,1618] [2022-11-03 02:53:38,095 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-03 02:53:38,104 INFO L203 MainTranslator]: Completed pre-run [2022-11-03 02:53:38,118 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/sv-benchmarks/c/product-lines/minepump_spec1_product64.cil.c[1605,1618] [2022-11-03 02:53:38,212 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-03 02:53:38,239 INFO L208 MainTranslator]: Completed translation [2022-11-03 02:53:38,239 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38 WrapperNode [2022-11-03 02:53:38,239 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-03 02:53:38,241 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-03 02:53:38,241 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-03 02:53:38,241 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-03 02:53:38,250 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,282 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,311 INFO L138 Inliner]: procedures = 59, calls = 163, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 276 [2022-11-03 02:53:38,311 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-03 02:53:38,312 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-03 02:53:38,312 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-03 02:53:38,312 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-03 02:53:38,321 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,321 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,324 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,324 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,329 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,334 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,336 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,338 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,340 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-03 02:53:38,341 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-03 02:53:38,342 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-03 02:53:38,342 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-03 02:53:38,360 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (1/1) ... [2022-11-03 02:53:38,366 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-03 02:53:38,389 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 02:53:38,406 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-03 02:53:38,435 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-03 02:53:38,464 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-03 02:53:38,464 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-03 02:53:38,464 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-03 02:53:38,464 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-03 02:53:38,464 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-03 02:53:38,465 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-03 02:53:38,465 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-03 02:53:38,465 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2022-11-03 02:53:38,465 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2022-11-03 02:53:38,465 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 02:53:38,465 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 02:53:38,466 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-03 02:53:38,466 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-03 02:53:38,466 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2022-11-03 02:53:38,466 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2022-11-03 02:53:38,466 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2022-11-03 02:53:38,466 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2022-11-03 02:53:38,467 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-03 02:53:38,467 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-03 02:53:38,467 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-03 02:53:38,467 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-03 02:53:38,467 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-03 02:53:38,467 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-03 02:53:38,468 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-03 02:53:38,592 INFO L235 CfgBuilder]: Building ICFG [2022-11-03 02:53:38,597 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-03 02:53:39,060 INFO L276 CfgBuilder]: Performing block encoding [2022-11-03 02:53:39,301 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-03 02:53:39,301 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-03 02:53:39,304 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 02:53:39 BoogieIcfgContainer [2022-11-03 02:53:39,304 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-03 02:53:39,308 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-03 02:53:39,308 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-03 02:53:39,313 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-03 02:53:39,314 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 03.11 02:53:37" (1/3) ... [2022-11-03 02:53:39,315 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7cac3017 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 03.11 02:53:39, skipping insertion in model container [2022-11-03 02:53:39,315 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:53:38" (2/3) ... [2022-11-03 02:53:39,315 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7cac3017 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 03.11 02:53:39, skipping insertion in model container [2022-11-03 02:53:39,315 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 02:53:39" (3/3) ... [2022-11-03 02:53:39,317 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec1_product64.cil.c [2022-11-03 02:53:39,337 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-03 02:53:39,337 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-03 02:53:39,418 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-03 02:53:39,430 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@aaa598b, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-03 02:53:39,430 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-03 02:53:39,435 INFO L276 IsEmpty]: Start isEmpty. Operand has 79 states, 48 states have (on average 1.4166666666666667) internal successors, (68), 59 states have internal predecessors, (68), 19 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 14 states have call predecessors, (19), 19 states have call successors, (19) [2022-11-03 02:53:39,449 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2022-11-03 02:53:39,450 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:53:39,450 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:39,451 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:53:39,456 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:53:39,456 INFO L85 PathProgramCache]: Analyzing trace with hash -407289928, now seen corresponding path program 1 times [2022-11-03 02:53:39,465 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:53:39,465 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1629568855] [2022-11-03 02:53:39,466 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:53:39,466 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:53:39,624 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:53:39,746 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:53:39,746 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:53:39,747 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1629568855] [2022-11-03 02:53:39,748 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1629568855] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:53:39,748 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:53:39,748 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-03 02:53:39,750 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1550509387] [2022-11-03 02:53:39,750 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:53:39,756 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-03 02:53:39,757 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:53:39,790 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-03 02:53:39,791 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-03 02:53:39,794 INFO L87 Difference]: Start difference. First operand has 79 states, 48 states have (on average 1.4166666666666667) internal successors, (68), 59 states have internal predecessors, (68), 19 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 14 states have call predecessors, (19), 19 states have call successors, (19) Second operand has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:53:39,923 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:53:39,923 INFO L93 Difference]: Finished difference Result 156 states and 213 transitions. [2022-11-03 02:53:39,925 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-03 02:53:39,926 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 16 [2022-11-03 02:53:39,927 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:53:39,942 INFO L225 Difference]: With dead ends: 156 [2022-11-03 02:53:39,942 INFO L226 Difference]: Without dead ends: 74 [2022-11-03 02:53:39,947 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-03 02:53:39,951 INFO L413 NwaCegarLoop]: 84 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 84 SdHoareTripleChecker+Invalid, 20 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 02:53:39,952 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 84 Invalid, 20 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 02:53:39,970 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 74 states. [2022-11-03 02:53:39,999 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 74 to 74. [2022-11-03 02:53:40,001 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 74 states, 45 states have (on average 1.3333333333333333) internal successors, (60), 55 states have internal predecessors, (60), 19 states have call successors, (19), 10 states have call predecessors, (19), 9 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2022-11-03 02:53:40,007 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 74 states to 74 states and 97 transitions. [2022-11-03 02:53:40,009 INFO L78 Accepts]: Start accepts. Automaton has 74 states and 97 transitions. Word has length 16 [2022-11-03 02:53:40,009 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:53:40,009 INFO L495 AbstractCegarLoop]: Abstraction has 74 states and 97 transitions. [2022-11-03 02:53:40,009 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:53:40,010 INFO L276 IsEmpty]: Start isEmpty. Operand 74 states and 97 transitions. [2022-11-03 02:53:40,012 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2022-11-03 02:53:40,012 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:53:40,012 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:40,012 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-03 02:53:40,013 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:53:40,013 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:53:40,013 INFO L85 PathProgramCache]: Analyzing trace with hash 1426351859, now seen corresponding path program 1 times [2022-11-03 02:53:40,014 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:53:40,014 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [529031999] [2022-11-03 02:53:40,014 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:53:40,014 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:53:40,036 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:53:40,156 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:53:40,156 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:53:40,156 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [529031999] [2022-11-03 02:53:40,157 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [529031999] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:53:40,157 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:53:40,157 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-03 02:53:40,157 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [30212228] [2022-11-03 02:53:40,158 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:53:40,159 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-03 02:53:40,159 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:53:40,159 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-03 02:53:40,160 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 02:53:40,160 INFO L87 Difference]: Start difference. First operand 74 states and 97 transitions. Second operand has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:53:40,237 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:53:40,238 INFO L93 Difference]: Finished difference Result 120 states and 156 transitions. [2022-11-03 02:53:40,239 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-03 02:53:40,239 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2022-11-03 02:53:40,241 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:53:40,242 INFO L225 Difference]: With dead ends: 120 [2022-11-03 02:53:40,243 INFO L226 Difference]: Without dead ends: 66 [2022-11-03 02:53:40,244 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 02:53:40,247 INFO L413 NwaCegarLoop]: 70 mSDtfsCounter, 14 mSDsluCounter, 66 mSDsCounter, 0 mSdLazyCounter, 28 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 124 SdHoareTripleChecker+Invalid, 28 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 28 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-03 02:53:40,249 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 124 Invalid, 28 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 28 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-03 02:53:40,250 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 66 states. [2022-11-03 02:53:40,261 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 66 to 66. [2022-11-03 02:53:40,263 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 66 states, 40 states have (on average 1.35) internal successors, (54), 50 states have internal predecessors, (54), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) [2022-11-03 02:53:40,265 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 66 states to 66 states and 86 transitions. [2022-11-03 02:53:40,269 INFO L78 Accepts]: Start accepts. Automaton has 66 states and 86 transitions. Word has length 17 [2022-11-03 02:53:40,269 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:53:40,269 INFO L495 AbstractCegarLoop]: Abstraction has 66 states and 86 transitions. [2022-11-03 02:53:40,271 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:53:40,271 INFO L276 IsEmpty]: Start isEmpty. Operand 66 states and 86 transitions. [2022-11-03 02:53:40,272 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2022-11-03 02:53:40,274 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:53:40,282 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:40,283 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-03 02:53:40,283 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:53:40,283 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:53:40,288 INFO L85 PathProgramCache]: Analyzing trace with hash 962935263, now seen corresponding path program 1 times [2022-11-03 02:53:40,288 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:53:40,288 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [779087930] [2022-11-03 02:53:40,289 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:53:40,289 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:53:40,319 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:53:40,410 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:53:40,411 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:53:40,411 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [779087930] [2022-11-03 02:53:40,411 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [779087930] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:53:40,412 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:53:40,412 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-03 02:53:40,412 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1327690089] [2022-11-03 02:53:40,412 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:53:40,413 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-03 02:53:40,413 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:53:40,413 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-03 02:53:40,414 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 02:53:40,414 INFO L87 Difference]: Start difference. First operand 66 states and 86 transitions. Second operand has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:53:40,485 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:53:40,485 INFO L93 Difference]: Finished difference Result 194 states and 255 transitions. [2022-11-03 02:53:40,485 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-03 02:53:40,486 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2022-11-03 02:53:40,486 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:53:40,488 INFO L225 Difference]: With dead ends: 194 [2022-11-03 02:53:40,488 INFO L226 Difference]: Without dead ends: 130 [2022-11-03 02:53:40,489 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 02:53:40,490 INFO L413 NwaCegarLoop]: 94 mSDtfsCounter, 80 mSDsluCounter, 80 mSDsCounter, 0 mSdLazyCounter, 35 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 80 SdHoareTripleChecker+Valid, 162 SdHoareTripleChecker+Invalid, 36 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 35 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-03 02:53:40,491 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [80 Valid, 162 Invalid, 36 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 35 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-03 02:53:40,492 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 130 states. [2022-11-03 02:53:40,513 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 130 to 127. [2022-11-03 02:53:40,514 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 127 states, 76 states have (on average 1.355263157894737) internal successors, (103), 95 states have internal predecessors, (103), 32 states have call successors, (32), 18 states have call predecessors, (32), 18 states have return successors, (32), 21 states have call predecessors, (32), 32 states have call successors, (32) [2022-11-03 02:53:40,515 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 127 states to 127 states and 167 transitions. [2022-11-03 02:53:40,515 INFO L78 Accepts]: Start accepts. Automaton has 127 states and 167 transitions. Word has length 20 [2022-11-03 02:53:40,516 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:53:40,516 INFO L495 AbstractCegarLoop]: Abstraction has 127 states and 167 transitions. [2022-11-03 02:53:40,516 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 3 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:53:40,516 INFO L276 IsEmpty]: Start isEmpty. Operand 127 states and 167 transitions. [2022-11-03 02:53:40,518 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2022-11-03 02:53:40,518 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:53:40,518 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:40,518 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-03 02:53:40,519 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:53:40,519 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:53:40,519 INFO L85 PathProgramCache]: Analyzing trace with hash -1550570041, now seen corresponding path program 1 times [2022-11-03 02:53:40,520 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:53:40,520 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [762686274] [2022-11-03 02:53:40,520 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:53:40,520 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:53:40,545 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:53:40,679 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:53:40,679 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:53:40,680 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [762686274] [2022-11-03 02:53:40,680 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [762686274] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:53:40,680 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:53:40,680 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-03 02:53:40,681 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [489985014] [2022-11-03 02:53:40,681 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:53:40,681 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-03 02:53:40,681 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:53:40,682 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-03 02:53:40,682 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-03 02:53:40,682 INFO L87 Difference]: Start difference. First operand 127 states and 167 transitions. Second operand has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:53:40,782 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:53:40,782 INFO L93 Difference]: Finished difference Result 346 states and 467 transitions. [2022-11-03 02:53:40,783 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-03 02:53:40,783 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2022-11-03 02:53:40,784 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:53:40,786 INFO L225 Difference]: With dead ends: 346 [2022-11-03 02:53:40,786 INFO L226 Difference]: Without dead ends: 221 [2022-11-03 02:53:40,787 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-03 02:53:40,792 INFO L413 NwaCegarLoop]: 77 mSDtfsCounter, 50 mSDsluCounter, 151 mSDsCounter, 0 mSdLazyCounter, 57 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 50 SdHoareTripleChecker+Valid, 208 SdHoareTripleChecker+Invalid, 67 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 57 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 02:53:40,792 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [50 Valid, 208 Invalid, 67 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 57 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 02:53:40,793 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 221 states. [2022-11-03 02:53:40,850 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 221 to 212. [2022-11-03 02:53:40,851 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 212 states, 135 states have (on average 1.2814814814814814) internal successors, (173), 152 states have internal predecessors, (173), 42 states have call successors, (42), 34 states have call predecessors, (42), 34 states have return successors, (54), 37 states have call predecessors, (54), 42 states have call successors, (54) [2022-11-03 02:53:40,858 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 212 states to 212 states and 269 transitions. [2022-11-03 02:53:40,858 INFO L78 Accepts]: Start accepts. Automaton has 212 states and 269 transitions. Word has length 23 [2022-11-03 02:53:40,859 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:53:40,859 INFO L495 AbstractCegarLoop]: Abstraction has 212 states and 269 transitions. [2022-11-03 02:53:40,859 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:53:40,859 INFO L276 IsEmpty]: Start isEmpty. Operand 212 states and 269 transitions. [2022-11-03 02:53:40,861 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2022-11-03 02:53:40,861 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:53:40,861 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:40,861 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-03 02:53:40,861 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:53:40,862 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:53:40,862 INFO L85 PathProgramCache]: Analyzing trace with hash -1697524873, now seen corresponding path program 1 times [2022-11-03 02:53:40,862 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:53:40,862 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1058810280] [2022-11-03 02:53:40,863 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:53:40,863 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:53:40,889 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:53:41,304 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-03 02:53:41,305 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:53:41,305 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1058810280] [2022-11-03 02:53:41,305 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1058810280] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:53:41,306 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:53:41,306 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-11-03 02:53:41,306 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [848731655] [2022-11-03 02:53:41,306 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:53:41,307 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-11-03 02:53:41,307 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:53:41,307 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-11-03 02:53:41,308 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2022-11-03 02:53:41,308 INFO L87 Difference]: Start difference. First operand 212 states and 269 transitions. Second operand has 8 states, 8 states have (on average 3.625) internal successors, (29), 8 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) [2022-11-03 02:53:41,691 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:53:41,692 INFO L93 Difference]: Finished difference Result 604 states and 766 transitions. [2022-11-03 02:53:41,692 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-11-03 02:53:41,693 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 3.625) internal successors, (29), 8 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) Word has length 41 [2022-11-03 02:53:41,693 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:53:41,699 INFO L225 Difference]: With dead ends: 604 [2022-11-03 02:53:41,700 INFO L226 Difference]: Without dead ends: 394 [2022-11-03 02:53:41,702 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=32, Invalid=58, Unknown=0, NotChecked=0, Total=90 [2022-11-03 02:53:41,708 INFO L413 NwaCegarLoop]: 116 mSDtfsCounter, 172 mSDsluCounter, 337 mSDsCounter, 0 mSdLazyCounter, 283 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 173 SdHoareTripleChecker+Valid, 405 SdHoareTripleChecker+Invalid, 322 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 283 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-03 02:53:41,709 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [173 Valid, 405 Invalid, 322 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 283 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-03 02:53:41,712 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 394 states. [2022-11-03 02:53:41,770 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 394 to 350. [2022-11-03 02:53:41,772 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 350 states, 231 states have (on average 1.2683982683982684) internal successors, (293), 251 states have internal predecessors, (293), 59 states have call successors, (59), 53 states have call predecessors, (59), 59 states have return successors, (77), 59 states have call predecessors, (77), 59 states have call successors, (77) [2022-11-03 02:53:41,775 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 350 states to 350 states and 429 transitions. [2022-11-03 02:53:41,776 INFO L78 Accepts]: Start accepts. Automaton has 350 states and 429 transitions. Word has length 41 [2022-11-03 02:53:41,776 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:53:41,776 INFO L495 AbstractCegarLoop]: Abstraction has 350 states and 429 transitions. [2022-11-03 02:53:41,776 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 3.625) internal successors, (29), 8 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) [2022-11-03 02:53:41,777 INFO L276 IsEmpty]: Start isEmpty. Operand 350 states and 429 transitions. [2022-11-03 02:53:41,784 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2022-11-03 02:53:41,785 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:53:41,785 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:41,785 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-03 02:53:41,785 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:53:41,786 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:53:41,786 INFO L85 PathProgramCache]: Analyzing trace with hash -2088445930, now seen corresponding path program 1 times [2022-11-03 02:53:41,787 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:53:41,787 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1157033535] [2022-11-03 02:53:41,787 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:53:41,787 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:53:41,812 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:53:42,190 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-03 02:53:42,191 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:53:42,191 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1157033535] [2022-11-03 02:53:42,191 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1157033535] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:53:42,191 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:53:42,191 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [13] imperfect sequences [] total 13 [2022-11-03 02:53:42,192 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [825126136] [2022-11-03 02:53:42,192 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:53:42,193 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2022-11-03 02:53:42,193 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:53:42,194 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2022-11-03 02:53:42,195 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=29, Invalid=127, Unknown=0, NotChecked=0, Total=156 [2022-11-03 02:53:42,195 INFO L87 Difference]: Start difference. First operand 350 states and 429 transitions. Second operand has 13 states, 11 states have (on average 2.727272727272727) internal successors, (30), 10 states have internal predecessors, (30), 4 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 4 states have call successors, (6) [2022-11-03 02:53:43,226 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:53:43,226 INFO L93 Difference]: Finished difference Result 1005 states and 1372 transitions. [2022-11-03 02:53:43,227 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 28 states. [2022-11-03 02:53:43,227 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 11 states have (on average 2.727272727272727) internal successors, (30), 10 states have internal predecessors, (30), 4 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 4 states have call successors, (6) Word has length 44 [2022-11-03 02:53:43,228 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:53:43,232 INFO L225 Difference]: With dead ends: 1005 [2022-11-03 02:53:43,233 INFO L226 Difference]: Without dead ends: 737 [2022-11-03 02:53:43,234 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 42 GetRequests, 8 SyntacticMatches, 0 SemanticMatches, 34 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 283 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=267, Invalid=993, Unknown=0, NotChecked=0, Total=1260 [2022-11-03 02:53:43,240 INFO L413 NwaCegarLoop]: 59 mSDtfsCounter, 428 mSDsluCounter, 386 mSDsCounter, 0 mSdLazyCounter, 699 mSolverCounterSat, 322 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 435 SdHoareTripleChecker+Valid, 391 SdHoareTripleChecker+Invalid, 1021 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 322 IncrementalHoareTripleChecker+Valid, 699 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2022-11-03 02:53:43,243 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [435 Valid, 391 Invalid, 1021 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [322 Valid, 699 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2022-11-03 02:53:43,245 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 737 states. [2022-11-03 02:53:43,310 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 737 to 527. [2022-11-03 02:53:43,312 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 527 states, 348 states have (on average 1.278735632183908) internal successors, (445), 378 states have internal predecessors, (445), 89 states have call successors, (89), 73 states have call predecessors, (89), 89 states have return successors, (135), 91 states have call predecessors, (135), 89 states have call successors, (135) [2022-11-03 02:53:43,315 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 527 states to 527 states and 669 transitions. [2022-11-03 02:53:43,315 INFO L78 Accepts]: Start accepts. Automaton has 527 states and 669 transitions. Word has length 44 [2022-11-03 02:53:43,316 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:53:43,316 INFO L495 AbstractCegarLoop]: Abstraction has 527 states and 669 transitions. [2022-11-03 02:53:43,316 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 11 states have (on average 2.727272727272727) internal successors, (30), 10 states have internal predecessors, (30), 4 states have call successors, (7), 3 states have call predecessors, (7), 4 states have return successors, (6), 6 states have call predecessors, (6), 4 states have call successors, (6) [2022-11-03 02:53:43,317 INFO L276 IsEmpty]: Start isEmpty. Operand 527 states and 669 transitions. [2022-11-03 02:53:43,319 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 70 [2022-11-03 02:53:43,319 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:53:43,320 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:43,320 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-03 02:53:43,320 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:53:43,320 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:53:43,321 INFO L85 PathProgramCache]: Analyzing trace with hash -1911056336, now seen corresponding path program 1 times [2022-11-03 02:53:43,321 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:53:43,321 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1214261413] [2022-11-03 02:53:43,321 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:53:43,321 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:53:43,337 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:53:43,374 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 15 proven. 0 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-11-03 02:53:43,374 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:53:43,374 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1214261413] [2022-11-03 02:53:43,374 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1214261413] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:53:43,374 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:53:43,375 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-03 02:53:43,375 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [241977971] [2022-11-03 02:53:43,375 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:53:43,376 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-03 02:53:43,376 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:53:43,376 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-03 02:53:43,376 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-03 02:53:43,377 INFO L87 Difference]: Start difference. First operand 527 states and 669 transitions. Second operand has 4 states, 3 states have (on average 16.0) internal successors, (48), 4 states have internal predecessors, (48), 4 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (9), 3 states have call predecessors, (9), 4 states have call successors, (9) [2022-11-03 02:53:43,547 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:53:43,547 INFO L93 Difference]: Finished difference Result 832 states and 1053 transitions. [2022-11-03 02:53:43,548 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-03 02:53:43,548 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 16.0) internal successors, (48), 4 states have internal predecessors, (48), 4 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (9), 3 states have call predecessors, (9), 4 states have call successors, (9) Word has length 69 [2022-11-03 02:53:43,549 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:53:43,550 INFO L225 Difference]: With dead ends: 832 [2022-11-03 02:53:43,550 INFO L226 Difference]: Without dead ends: 307 [2022-11-03 02:53:43,552 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-03 02:53:43,553 INFO L413 NwaCegarLoop]: 91 mSDtfsCounter, 104 mSDsluCounter, 71 mSDsCounter, 0 mSdLazyCounter, 94 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 104 SdHoareTripleChecker+Valid, 142 SdHoareTripleChecker+Invalid, 98 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 94 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 02:53:43,553 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [104 Valid, 142 Invalid, 98 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 94 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 02:53:43,554 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 307 states. [2022-11-03 02:53:43,589 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 307 to 303. [2022-11-03 02:53:43,590 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 303 states, 203 states have (on average 1.2660098522167487) internal successors, (257), 220 states have internal predecessors, (257), 50 states have call successors, (50), 42 states have call predecessors, (50), 49 states have return successors, (69), 51 states have call predecessors, (69), 50 states have call successors, (69) [2022-11-03 02:53:43,591 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 303 states to 303 states and 376 transitions. [2022-11-03 02:53:43,592 INFO L78 Accepts]: Start accepts. Automaton has 303 states and 376 transitions. Word has length 69 [2022-11-03 02:53:43,592 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:53:43,592 INFO L495 AbstractCegarLoop]: Abstraction has 303 states and 376 transitions. [2022-11-03 02:53:43,593 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 16.0) internal successors, (48), 4 states have internal predecessors, (48), 4 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (9), 3 states have call predecessors, (9), 4 states have call successors, (9) [2022-11-03 02:53:43,593 INFO L276 IsEmpty]: Start isEmpty. Operand 303 states and 376 transitions. [2022-11-03 02:53:43,594 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 91 [2022-11-03 02:53:43,595 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:53:43,595 INFO L195 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:43,595 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-03 02:53:43,595 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:53:43,596 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:53:43,596 INFO L85 PathProgramCache]: Analyzing trace with hash -1845102470, now seen corresponding path program 1 times [2022-11-03 02:53:43,596 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:53:43,596 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1091255401] [2022-11-03 02:53:43,596 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:53:43,597 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:53:43,619 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:53:43,815 INFO L134 CoverageAnalysis]: Checked inductivity of 40 backedges. 11 proven. 0 refuted. 0 times theorem prover too weak. 29 trivial. 0 not checked. [2022-11-03 02:53:43,815 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:53:43,816 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1091255401] [2022-11-03 02:53:43,816 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1091255401] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:53:43,816 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:53:43,816 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2022-11-03 02:53:43,816 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [295414807] [2022-11-03 02:53:43,817 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:53:43,817 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2022-11-03 02:53:43,817 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:53:43,818 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2022-11-03 02:53:43,818 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=73, Unknown=0, NotChecked=0, Total=90 [2022-11-03 02:53:43,818 INFO L87 Difference]: Start difference. First operand 303 states and 376 transitions. Second operand has 10 states, 8 states have (on average 5.875) internal successors, (47), 7 states have internal predecessors, (47), 2 states have call successors, (13), 1 states have call predecessors, (13), 3 states have return successors, (14), 5 states have call predecessors, (14), 2 states have call successors, (14) [2022-11-03 02:53:44,268 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:53:44,268 INFO L93 Difference]: Finished difference Result 849 states and 1077 transitions. [2022-11-03 02:53:44,269 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2022-11-03 02:53:44,269 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 8 states have (on average 5.875) internal successors, (47), 7 states have internal predecessors, (47), 2 states have call successors, (13), 1 states have call predecessors, (13), 3 states have return successors, (14), 5 states have call predecessors, (14), 2 states have call successors, (14) Word has length 90 [2022-11-03 02:53:44,269 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:53:44,270 INFO L225 Difference]: With dead ends: 849 [2022-11-03 02:53:44,270 INFO L226 Difference]: Without dead ends: 0 [2022-11-03 02:53:44,272 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 22 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 41 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=64, Invalid=316, Unknown=0, NotChecked=0, Total=380 [2022-11-03 02:53:44,272 INFO L413 NwaCegarLoop]: 79 mSDtfsCounter, 81 mSDsluCounter, 519 mSDsCounter, 0 mSdLazyCounter, 422 mSolverCounterSat, 12 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 88 SdHoareTripleChecker+Valid, 490 SdHoareTripleChecker+Invalid, 434 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 12 IncrementalHoareTripleChecker+Valid, 422 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-03 02:53:44,273 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [88 Valid, 490 Invalid, 434 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [12 Valid, 422 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-03 02:53:44,273 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-03 02:53:44,274 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-03 02:53:44,274 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:53:44,274 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-03 02:53:44,274 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 90 [2022-11-03 02:53:44,274 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:53:44,275 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-03 02:53:44,275 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 8 states have (on average 5.875) internal successors, (47), 7 states have internal predecessors, (47), 2 states have call successors, (13), 1 states have call predecessors, (13), 3 states have return successors, (14), 5 states have call predecessors, (14), 2 states have call successors, (14) [2022-11-03 02:53:44,275 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-03 02:53:44,275 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-03 02:53:44,278 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-03 02:53:44,278 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2022-11-03 02:53:44,280 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-03 02:53:48,592 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 737 744) the Hoare annotation is: (let ((.cse0 (= ~pumpRunning~0 |old(~pumpRunning~0)|))) (and (or .cse0 (= 0 ~systemActive~0) (= ~waterLevel~0 1)) (or .cse0 (not (= 1 ~systemActive~0))))) [2022-11-03 02:53:48,592 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 737 744) no Hoare annotation was computed. [2022-11-03 02:53:48,592 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 627 633) no Hoare annotation was computed. [2022-11-03 02:53:48,592 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 627 633) the Hoare annotation is: true [2022-11-03 02:53:48,593 INFO L895 garLoopResultBuilder]: At program point L671(line 671) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (= ~methaneLevelCritical~0 0))) (or (not (= |old(~pumpRunning~0)| 0)) .cse0))) [2022-11-03 02:53:48,593 INFO L899 garLoopResultBuilder]: For program point L669(lines 669 677) no Hoare annotation was computed. [2022-11-03 02:53:48,593 INFO L895 garLoopResultBuilder]: At program point L665(lines 665 682) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (= ~methaneLevelCritical~0 0))) (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0))) [2022-11-03 02:53:48,594 INFO L895 garLoopResultBuilder]: At program point L680(line 680) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (= ~methaneLevelCritical~0 0)) (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse1)) (or (not (= |old(~pumpRunning~0)| 0)) .cse1 .cse0))) [2022-11-03 02:53:48,594 INFO L899 garLoopResultBuilder]: For program point L680-1(lines 661 685) no Hoare annotation was computed. [2022-11-03 02:53:48,594 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__methaneQueryENTRY(lines 661 685) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (= ~methaneLevelCritical~0 0))) (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0))) [2022-11-03 02:53:48,594 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__methaneQueryEXIT(lines 661 685) no Hoare annotation was computed. [2022-11-03 02:53:48,594 INFO L895 garLoopResultBuilder]: At program point L675(line 675) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (= ~methaneLevelCritical~0 0))) (or (not (= |old(~pumpRunning~0)| 0)) .cse0))) [2022-11-03 02:53:48,595 INFO L895 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 890 901) the Hoare annotation is: (let ((.cse0 (not (= |old(~methaneLevelCritical~0)| 0))) (.cse1 (= ~methaneLevelCritical~0 0))) (and (or .cse0 (not (= ~pumpRunning~0 0)) .cse1 (not (= 0 ~systemActive~0))) (or .cse0 .cse1 (not (= 1 ~systemActive~0))))) [2022-11-03 02:53:48,595 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 890 901) no Hoare annotation was computed. [2022-11-03 02:53:48,595 INFO L899 garLoopResultBuilder]: For program point L614-1(lines 614 620) no Hoare annotation was computed. [2022-11-03 02:53:48,595 INFO L895 garLoopResultBuilder]: At program point L701(line 701) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= ~methaneLevelCritical~0 0) (= |timeShift_processEnvironment_~tmp~7#1| ~methaneLevelCritical~0))) (or .cse1 .cse0) (or .cse1 (not (= 0 ~systemActive~0))))) [2022-11-03 02:53:48,596 INFO L895 garLoopResultBuilder]: At program point L697(line 697) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 0)))) (and (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= |timeShift_processEnvironment_~tmp~7#1| ~methaneLevelCritical~0)) .cse0) (or .cse1 .cse0) (or .cse0 (not (= ~methaneLevelCritical~0 0))) (or .cse1 (not (= 0 ~systemActive~0))))) [2022-11-03 02:53:48,596 INFO L895 garLoopResultBuilder]: At program point L693(line 693) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0) (or .cse1 .cse0) (or .cse1 (not (= 0 ~systemActive~0))))) [2022-11-03 02:53:48,596 INFO L899 garLoopResultBuilder]: For program point L693-1(line 693) no Hoare annotation was computed. [2022-11-03 02:53:48,596 INFO L899 garLoopResultBuilder]: For program point L111(lines 111 117) no Hoare annotation was computed. [2022-11-03 02:53:48,597 INFO L895 garLoopResultBuilder]: At program point L107(lines 107 120) the Hoare annotation is: (let ((.cse7 (= ~methaneLevelCritical~0 0))) (let ((.cse2 (not (= 0 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse5 (not (= |old(~waterLevel~0)| 1))) (.cse8 (not (= 1 ~systemActive~0))) (.cse4 (not .cse7)) (.cse1 (= ~pumpRunning~0 0)) (.cse10 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse9 (= |timeShift_processEnvironment_~tmp~7#1| ~methaneLevelCritical~0)) (.cse6 (= ~waterLevel~0 1)) (.cse3 (= |timeShift___utac_acc__Specification1_spec__1_~tmp~0#1| 0))) (and (or .cse0 .cse1 .cse2) (or .cse0 .cse3 .cse4 .cse2) (or .cse0 .cse5 .cse6 .cse2) (or .cse7 .cse8 (and .cse1 .cse9) (and .cse10 .cse1)) (or .cse0 .cse5 .cse8 .cse6) (or .cse8 (and .cse1 .cse3 .cse9) .cse4 (and .cse10 .cse1 .cse3) (and .cse10 .cse3 .cse9) (and (not .cse6) .cse3))))) [2022-11-03 02:53:48,597 INFO L895 garLoopResultBuilder]: At program point L107-1(lines 99 123) the Hoare annotation is: (let ((.cse6 (= ~waterLevel~0 1))) (let ((.cse12 (not .cse6)) (.cse11 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse1 (= ~pumpRunning~0 0)) (.cse13 (= ~methaneLevelCritical~0 0))) (let ((.cse2 (not (= 0 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse5 (not (= |old(~waterLevel~0)| 1))) (.cse4 (not .cse13)) (.cse3 (= |timeShift___utac_acc__Specification1_spec__1_~tmp~0#1| 0)) (.cse7 (not (= 1 ~systemActive~0))) (.cse10 (= |timeShift_processEnvironment_~tmp~7#1| ~methaneLevelCritical~0)) (.cse8 (and .cse11 .cse1)) (.cse9 (and .cse12 .cse1 (= |timeShift___utac_acc__Specification1_spec__1_~tmp___0~0#1| 0) .cse13))) (and (or .cse0 .cse1 .cse2) (or .cse0 .cse3 .cse4 .cse2) (or .cse0 .cse5 .cse6 .cse2) (or .cse0 .cse5 .cse7 .cse6) (or (and .cse3 (or .cse8 .cse9)) .cse7 (and .cse1 .cse3 .cse10) .cse4 (and .cse11 .cse3 .cse10) (and .cse12 .cse3)) (or .cse13 .cse7 (and .cse1 .cse10) .cse8 .cse9))))) [2022-11-03 02:53:48,598 INFO L895 garLoopResultBuilder]: At program point L706(line 706) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= ~pumpRunning~0 0))) (or (not (= |old(~waterLevel~0)| 1)) .cse0 (= ~waterLevel~0 1)) (or (not (= |old(~pumpRunning~0)| 0)) (not (= 0 ~systemActive~0))))) [2022-11-03 02:53:48,598 INFO L895 garLoopResultBuilder]: At program point L706-1(lines 687 711) the Hoare annotation is: (let ((.cse2 (= ~waterLevel~0 1)) (.cse1 (not (= 1 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse1 .cse2) (let ((.cse4 (= ~pumpRunning~0 0)) (.cse6 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse3 (= ~methaneLevelCritical~0 0)) (.cse5 (= |timeShift_processEnvironment_~tmp~7#1| ~methaneLevelCritical~0))) (or (and (not .cse2) .cse3) .cse1 (and .cse4 .cse5) (and .cse6 .cse4) (and .cse6 .cse3 .cse5))) (or .cse0 (not (= 0 ~systemActive~0))))) [2022-11-03 02:53:48,598 INFO L899 garLoopResultBuilder]: For program point L607-1(lines 606 625) no Hoare annotation was computed. [2022-11-03 02:53:48,598 INFO L895 garLoopResultBuilder]: At program point L54(line 54) the Hoare annotation is: (and (not (= 1 ~systemActive~0)) (or (not (= |old(~pumpRunning~0)| 0)) (not (= 0 ~systemActive~0)))) [2022-11-03 02:53:48,599 INFO L899 garLoopResultBuilder]: For program point L695(lines 695 703) no Hoare annotation was computed. [2022-11-03 02:53:48,599 INFO L899 garLoopResultBuilder]: For program point L691(lines 691 708) no Hoare annotation was computed. [2022-11-03 02:53:48,599 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 603 626) the Hoare annotation is: (let ((.cse1 (not (= 0 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (not (= |old(~waterLevel~0)| 1))) (.cse4 (not (= 1 ~systemActive~0))) (.cse3 (= ~waterLevel~0 1))) (and (or .cse0 (= ~pumpRunning~0 0) .cse1) (or .cse0 .cse2 .cse3 .cse1) (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse4) (or .cse0 .cse2 .cse4 .cse3))) [2022-11-03 02:53:48,599 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 603 626) no Hoare annotation was computed. [2022-11-03 02:53:48,600 INFO L895 garLoopResultBuilder]: At program point L105(line 105) the Hoare annotation is: (let ((.cse2 (not (= 0 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (not (= |old(~waterLevel~0)| 1))) (.cse4 (= ~waterLevel~0 1)) (.cse5 (not (= 1 ~systemActive~0))) (.cse1 (= ~pumpRunning~0 0))) (and (or .cse0 .cse1 .cse2) (or .cse0 .cse3 .cse4 .cse2) (or .cse0 .cse3 .cse5 .cse4) (let ((.cse8 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse7 (= |timeShift_processEnvironment_~tmp~7#1| ~methaneLevelCritical~0))) (or (and (not .cse4) .cse6) .cse5 (and .cse1 .cse7) (and .cse8 .cse1) (and .cse8 .cse6 .cse7))))) [2022-11-03 02:53:48,600 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 54) no Hoare annotation was computed. [2022-11-03 02:53:48,600 INFO L899 garLoopResultBuilder]: For program point L105-1(line 105) no Hoare annotation was computed. [2022-11-03 02:53:48,600 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 493 522) no Hoare annotation was computed. [2022-11-03 02:53:48,601 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 493 522) the Hoare annotation is: true [2022-11-03 02:53:48,601 INFO L899 garLoopResultBuilder]: For program point L507(lines 507 511) no Hoare annotation was computed. [2022-11-03 02:53:48,601 INFO L902 garLoopResultBuilder]: At program point L507-1(lines 507 511) the Hoare annotation is: true [2022-11-03 02:53:48,601 INFO L902 garLoopResultBuilder]: At program point L503-2(lines 503 517) the Hoare annotation is: true [2022-11-03 02:53:48,601 INFO L902 garLoopResultBuilder]: At program point L499(line 499) the Hoare annotation is: true [2022-11-03 02:53:48,602 INFO L899 garLoopResultBuilder]: For program point L499-1(line 499) no Hoare annotation was computed. [2022-11-03 02:53:48,602 INFO L902 garLoopResultBuilder]: At program point L518(lines 493 522) the Hoare annotation is: true [2022-11-03 02:53:48,602 INFO L899 garLoopResultBuilder]: For program point L514(line 514) no Hoare annotation was computed. [2022-11-03 02:53:48,602 INFO L902 garLoopResultBuilder]: At program point isMethaneLevelCriticalENTRY(lines 902 910) the Hoare annotation is: true [2022-11-03 02:53:48,602 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 902 910) no Hoare annotation was computed. [2022-11-03 02:53:48,603 INFO L895 garLoopResultBuilder]: At program point L989(line 989) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 0)) (.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 1 ~systemActive~0) .cse0 (or .cse1 (= ~methaneLevelCritical~0 0))) (and .cse1 .cse0 (= 0 ~systemActive~0)))) [2022-11-03 02:53:48,603 INFO L895 garLoopResultBuilder]: At program point L845(line 845) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (not (= ~waterLevel~0 1)) .cse0 (not (= 0 ~systemActive~0))) (and (= 1 ~systemActive~0) .cse0))) [2022-11-03 02:53:48,603 INFO L895 garLoopResultBuilder]: At program point L1027(lines 976 1028) the Hoare annotation is: false [2022-11-03 02:53:48,603 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-03 02:53:48,603 INFO L899 garLoopResultBuilder]: For program point L1015(lines 1015 1021) no Hoare annotation was computed. [2022-11-03 02:53:48,604 INFO L895 garLoopResultBuilder]: At program point L1015-2(lines 1007 1022) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 1 ~systemActive~0) .cse0) (and (= ~pumpRunning~0 0) .cse0 (= 0 ~systemActive~0)))) [2022-11-03 02:53:48,604 INFO L899 garLoopResultBuilder]: For program point L978(lines 977 1026) no Hoare annotation was computed. [2022-11-03 02:53:48,604 INFO L895 garLoopResultBuilder]: At program point L1007(lines 1007 1022) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 1 ~systemActive~0) .cse0) (and (= ~pumpRunning~0 0) .cse0 (= 0 ~systemActive~0)))) [2022-11-03 02:53:48,604 INFO L895 garLoopResultBuilder]: At program point L999(line 999) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 1 ~systemActive~0) .cse0) (and (= ~pumpRunning~0 0) .cse0 (= 0 ~systemActive~0)))) [2022-11-03 02:53:48,605 INFO L895 garLoopResultBuilder]: At program point L578(lines 578 585) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= ~methaneLevelCritical~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2022-11-03 02:53:48,605 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-03 02:53:48,605 INFO L895 garLoopResultBuilder]: At program point L1024(lines 977 1026) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 0)) (.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 1 ~systemActive~0) .cse0 (or .cse1 (= ~methaneLevelCritical~0 0))) (and .cse1 .cse0 (= 0 ~systemActive~0)))) [2022-11-03 02:53:48,605 INFO L902 garLoopResultBuilder]: At program point L578-2(lines 578 585) the Hoare annotation is: true [2022-11-03 02:53:48,605 INFO L899 garLoopResultBuilder]: For program point L987(lines 987 993) no Hoare annotation was computed. [2022-11-03 02:53:48,606 INFO L899 garLoopResultBuilder]: For program point L987-1(lines 987 993) no Hoare annotation was computed. [2022-11-03 02:53:48,606 INFO L899 garLoopResultBuilder]: For program point L843(lines 843 849) no Hoare annotation was computed. [2022-11-03 02:53:48,606 INFO L895 garLoopResultBuilder]: At program point L843-1(lines 843 849) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2022-11-03 02:53:48,606 INFO L902 garLoopResultBuilder]: At program point L1030(lines 967 1034) the Hoare annotation is: true [2022-11-03 02:53:48,606 INFO L899 garLoopResultBuilder]: For program point L997(lines 997 1003) no Hoare annotation was computed. [2022-11-03 02:53:48,607 INFO L899 garLoopResultBuilder]: For program point L997-1(lines 997 1003) no Hoare annotation was computed. [2022-11-03 02:53:48,607 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 635 659) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (= ~methaneLevelCritical~0 0))) (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0))) [2022-11-03 02:53:48,607 INFO L895 garLoopResultBuilder]: At program point L725(line 725) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (= ~methaneLevelCritical~0 0)) (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse1)) (or (not (= ~waterLevel~0 1)) .cse2 .cse0) (or .cse2 .cse1 .cse0))) [2022-11-03 02:53:48,607 INFO L895 garLoopResultBuilder]: At program point L725-1(line 725) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (= ~pumpRunning~0 0))) (and (or .cse0 (not (= ~methaneLevelCritical~0 0)) (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse1)) (or (not (= ~waterLevel~0 1)) .cse2 .cse0) (or .cse2 .cse0 (and .cse1 (= ~methaneLevelCritical~0 |processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret34#1|))))) [2022-11-03 02:53:48,608 INFO L895 garLoopResultBuilder]: At program point L649(line 649) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (= ~methaneLevelCritical~0 0)) (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse1)) (or (not (= ~waterLevel~0 1)) .cse2 (= |processEnvironment__wrappee__highWaterSensor_~tmp~5#1| 0) .cse0) (or .cse2 .cse1 .cse0))) [2022-11-03 02:53:48,608 INFO L899 garLoopResultBuilder]: For program point L643(lines 643 651) no Hoare annotation was computed. [2022-11-03 02:53:48,608 INFO L895 garLoopResultBuilder]: At program point L639(lines 639 656) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (= ~methaneLevelCritical~0 0))) (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0))) [2022-11-03 02:53:48,608 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 635 659) no Hoare annotation was computed. [2022-11-03 02:53:48,609 INFO L895 garLoopResultBuilder]: At program point L654(line 654) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (= ~methaneLevelCritical~0 0))) (or (not (= |old(~pumpRunning~0)| 0)) .cse0))) [2022-11-03 02:53:48,609 INFO L899 garLoopResultBuilder]: For program point L654-1(lines 635 659) no Hoare annotation was computed. [2022-11-03 02:53:48,609 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 878 889) no Hoare annotation was computed. [2022-11-03 02:53:48,609 INFO L902 garLoopResultBuilder]: At program point waterRiseENTRY(lines 878 889) the Hoare annotation is: true [2022-11-03 02:53:48,609 INFO L902 garLoopResultBuilder]: At program point isMethaneAlarmENTRY(lines 745 755) the Hoare annotation is: true [2022-11-03 02:53:48,610 INFO L902 garLoopResultBuilder]: At program point L750(line 750) the Hoare annotation is: true [2022-11-03 02:53:48,610 INFO L899 garLoopResultBuilder]: For program point L750-1(line 750) no Hoare annotation was computed. [2022-11-03 02:53:48,610 INFO L899 garLoopResultBuilder]: For program point isMethaneAlarmEXIT(lines 745 755) no Hoare annotation was computed. [2022-11-03 02:53:48,613 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:53:48,616 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-03 02:53:48,640 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 03.11 02:53:48 BoogieIcfgContainer [2022-11-03 02:53:48,640 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-03 02:53:48,641 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-03 02:53:48,641 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-03 02:53:48,641 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-03 02:53:48,642 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 02:53:39" (3/4) ... [2022-11-03 02:53:48,645 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-03 02:53:48,651 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-03 02:53:48,651 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-03 02:53:48,651 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-03 02:53:48,651 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-03 02:53:48,651 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-03 02:53:48,652 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2022-11-03 02:53:48,652 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 02:53:48,652 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-03 02:53:48,652 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2022-11-03 02:53:48,653 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2022-11-03 02:53:48,661 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 77 nodes and edges [2022-11-03 02:53:48,662 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 27 nodes and edges [2022-11-03 02:53:48,662 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 14 nodes and edges [2022-11-03 02:53:48,663 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-11-03 02:53:48,663 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 2 nodes and edges [2022-11-03 02:53:48,664 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-03 02:53:48,665 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-03 02:53:48,684 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && (pumpRunning == \old(pumpRunning) || !(1 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || waterLevel == 1) [2022-11-03 02:53:48,685 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || waterLevel == 1) && (((((!(waterLevel == 1) && methaneLevelCritical == 0) || !(1 == systemActive)) || (pumpRunning == 0 && tmp == methaneLevelCritical)) || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) || ((pumpRunning == \old(pumpRunning) && methaneLevelCritical == 0) && tmp == methaneLevelCritical))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-03 02:53:48,685 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((pumpRunning == \old(pumpRunning) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) && ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) [2022-11-03 02:53:48,686 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && (((!(\old(pumpRunning) == 0) || tmp == 0) || !(methaneLevelCritical == 0)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && (((methaneLevelCritical == 0 || !(1 == systemActive)) || (pumpRunning == 0 && tmp == methaneLevelCritical)) || (pumpRunning == \old(pumpRunning) && pumpRunning == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || waterLevel == 1)) && (((((!(1 == systemActive) || ((pumpRunning == 0 && tmp == 0) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 0)) || ((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && tmp == 0)) || ((pumpRunning == \old(pumpRunning) && tmp == 0) && tmp == methaneLevelCritical)) || (!(waterLevel == 1) && tmp == 0)) [2022-11-03 02:53:48,686 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((pumpRunning == \old(pumpRunning) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) && ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) [2022-11-03 02:53:48,686 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && (((!(\old(pumpRunning) == 0) || tmp == 0) || !(methaneLevelCritical == 0)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || waterLevel == 1)) && ((((((tmp == 0 && ((pumpRunning == \old(pumpRunning) && pumpRunning == 0) || (((!(waterLevel == 1) && pumpRunning == 0) && tmp___0 == 0) && methaneLevelCritical == 0))) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == 0) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 0)) || ((pumpRunning == \old(pumpRunning) && tmp == 0) && tmp == methaneLevelCritical)) || (!(waterLevel == 1) && tmp == 0))) && ((((methaneLevelCritical == 0 || !(1 == systemActive)) || (pumpRunning == 0 && tmp == methaneLevelCritical)) || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) || (((!(waterLevel == 1) && pumpRunning == 0) && tmp___0 == 0) && methaneLevelCritical == 0)) [2022-11-03 02:53:48,687 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(1 == systemActive) || !(methaneLevelCritical == 0)) || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) && ((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || (pumpRunning == 0 && methaneLevelCritical == aux-isMethaneAlarm()-aux)) [2022-11-03 02:53:48,688 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !(1 == systemActive) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-03 02:53:48,718 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/witness.graphml [2022-11-03 02:53:48,718 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-03 02:53:48,719 INFO L158 Benchmark]: Toolchain (without parser) took 11032.60ms. Allocated memory was 96.5MB in the beginning and 218.1MB in the end (delta: 121.6MB). Free memory was 54.7MB in the beginning and 153.0MB in the end (delta: -98.3MB). Peak memory consumption was 22.3MB. Max. memory is 16.1GB. [2022-11-03 02:53:48,720 INFO L158 Benchmark]: CDTParser took 0.22ms. Allocated memory is still 96.5MB. Free memory is still 71.8MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-03 02:53:48,720 INFO L158 Benchmark]: CACSL2BoogieTranslator took 551.53ms. Allocated memory is still 96.5MB. Free memory was 54.5MB in the beginning and 62.3MB in the end (delta: -7.7MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2022-11-03 02:53:48,720 INFO L158 Benchmark]: Boogie Procedure Inliner took 70.70ms. Allocated memory is still 96.5MB. Free memory was 62.3MB in the beginning and 59.5MB in the end (delta: 2.8MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-03 02:53:48,721 INFO L158 Benchmark]: Boogie Preprocessor took 28.71ms. Allocated memory is still 96.5MB. Free memory was 59.5MB in the beginning and 57.8MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-03 02:53:48,721 INFO L158 Benchmark]: RCFGBuilder took 962.53ms. Allocated memory was 96.5MB in the beginning and 119.5MB in the end (delta: 23.1MB). Free memory was 57.8MB in the beginning and 86.0MB in the end (delta: -28.1MB). Peak memory consumption was 33.0MB. Max. memory is 16.1GB. [2022-11-03 02:53:48,722 INFO L158 Benchmark]: TraceAbstraction took 9332.07ms. Allocated memory was 119.5MB in the beginning and 218.1MB in the end (delta: 98.6MB). Free memory was 85.2MB in the beginning and 159.4MB in the end (delta: -74.1MB). Peak memory consumption was 97.0MB. Max. memory is 16.1GB. [2022-11-03 02:53:48,722 INFO L158 Benchmark]: Witness Printer took 77.94ms. Allocated memory is still 218.1MB. Free memory was 159.4MB in the beginning and 153.0MB in the end (delta: 6.4MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-03 02:53:48,724 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.22ms. Allocated memory is still 96.5MB. Free memory is still 71.8MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 551.53ms. Allocated memory is still 96.5MB. Free memory was 54.5MB in the beginning and 62.3MB in the end (delta: -7.7MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 70.70ms. Allocated memory is still 96.5MB. Free memory was 62.3MB in the beginning and 59.5MB in the end (delta: 2.8MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 28.71ms. Allocated memory is still 96.5MB. Free memory was 59.5MB in the beginning and 57.8MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 962.53ms. Allocated memory was 96.5MB in the beginning and 119.5MB in the end (delta: 23.1MB). Free memory was 57.8MB in the beginning and 86.0MB in the end (delta: -28.1MB). Peak memory consumption was 33.0MB. Max. memory is 16.1GB. * TraceAbstraction took 9332.07ms. Allocated memory was 119.5MB in the beginning and 218.1MB in the end (delta: 98.6MB). Free memory was 85.2MB in the beginning and 159.4MB in the end (delta: -74.1MB). Peak memory consumption was 97.0MB. Max. memory is 16.1GB. * Witness Printer took 77.94ms. Allocated memory is still 218.1MB. Free memory was 159.4MB in the beginning and 153.0MB in the end (delta: 6.4MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 54]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 79 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 9.2s, OverallIterations: 8, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 2.6s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 4.3s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 948 SdHoareTripleChecker+Valid, 1.5s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 929 mSDsluCounter, 2006 SdHoareTripleChecker+Invalid, 1.2s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1610 mSDsCounter, 389 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 1637 IncrementalHoareTripleChecker+Invalid, 2026 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 389 mSolverCounterUnsat, 670 mSDtfsCounter, 1637 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 93 GetRequests, 26 SyntacticMatches, 0 SemanticMatches, 67 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 334 ImplicationChecksByTransitivity, 0.6s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=527occurred in iteration=6, InterpolantAutomatonStates: 72, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.3s AutomataMinimizationTime, 8 MinimizatonAttempts, 270 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 45 LocationsWithAnnotation, 1163 PreInvPairs, 1382 NumberOfFragments, 1171 HoareAnnotationTreeSize, 1163 FomulaSimplifications, 2655 FormulaSimplificationTreeSizeReduction, 0.6s HoareSimplificationTime, 45 FomulaSimplificationsInter, 13950 FormulaSimplificationTreeSizeReductionInter, 3.6s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 1.5s InterpolantComputationTime, 320 NumberOfCodeBlocks, 320 NumberOfCodeBlocksAsserted, 8 NumberOfCheckSat, 312 ConstructedInterpolants, 0 QuantifiedInterpolants, 626 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 8 InterpolantComputations, 8 PerfectInterpolantSequences, 65/65 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 54]: Loop Invariant Derived loop invariant: !(1 == systemActive) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 578]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 687]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || waterLevel == 1) && (((((!(waterLevel == 1) && methaneLevelCritical == 0) || !(1 == systemActive)) || (pumpRunning == 0 && tmp == methaneLevelCritical)) || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) || ((pumpRunning == \old(pumpRunning) && methaneLevelCritical == 0) && tmp == methaneLevelCritical))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 99]: Loop Invariant Derived loop invariant: ((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && (((!(\old(pumpRunning) == 0) || tmp == 0) || !(methaneLevelCritical == 0)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || waterLevel == 1)) && ((((((tmp == 0 && ((pumpRunning == \old(pumpRunning) && pumpRunning == 0) || (((!(waterLevel == 1) && pumpRunning == 0) && tmp___0 == 0) && methaneLevelCritical == 0))) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == 0) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 0)) || ((pumpRunning == \old(pumpRunning) && tmp == 0) && tmp == methaneLevelCritical)) || (!(waterLevel == 1) && tmp == 0))) && ((((methaneLevelCritical == 0 || !(1 == systemActive)) || (pumpRunning == 0 && tmp == methaneLevelCritical)) || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) || (((!(waterLevel == 1) && pumpRunning == 0) && tmp___0 == 0) && methaneLevelCritical == 0)) - InvariantResult [Line: 976]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 603]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && (pumpRunning == \old(pumpRunning) || !(1 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || waterLevel == 1) - InvariantResult [Line: 639]: Loop Invariant Derived loop invariant: ((pumpRunning == \old(pumpRunning) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) && ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) - InvariantResult [Line: 843]: Loop Invariant Derived loop invariant: pumpRunning == 0 && splverifierCounter == 0 - InvariantResult [Line: 725]: Loop Invariant Derived loop invariant: (((!(1 == systemActive) || !(methaneLevelCritical == 0)) || (pumpRunning == \old(pumpRunning) && pumpRunning == 0)) && ((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || (pumpRunning == 0 && methaneLevelCritical == aux-isMethaneAlarm()-aux)) - InvariantResult [Line: 665]: Loop Invariant Derived loop invariant: ((pumpRunning == \old(pumpRunning) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) && ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) - InvariantResult [Line: 1007]: Loop Invariant Derived loop invariant: (1 == systemActive && splverifierCounter == 0) || ((pumpRunning == 0 && splverifierCounter == 0) && 0 == systemActive) - InvariantResult [Line: 107]: Loop Invariant Derived loop invariant: ((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && (((!(\old(pumpRunning) == 0) || tmp == 0) || !(methaneLevelCritical == 0)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && (((methaneLevelCritical == 0 || !(1 == systemActive)) || (pumpRunning == 0 && tmp == methaneLevelCritical)) || (pumpRunning == \old(pumpRunning) && pumpRunning == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || waterLevel == 1)) && (((((!(1 == systemActive) || ((pumpRunning == 0 && tmp == 0) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 0)) || ((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && tmp == 0)) || ((pumpRunning == \old(pumpRunning) && tmp == 0) && tmp == methaneLevelCritical)) || (!(waterLevel == 1) && tmp == 0)) - InvariantResult [Line: 493]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 503]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 578]: Loop Invariant Derived loop invariant: ((pumpRunning == 0 && methaneLevelCritical == 0) && 1 == systemActive) && waterLevel == 1 - InvariantResult [Line: 977]: Loop Invariant Derived loop invariant: ((1 == systemActive && splverifierCounter == 0) && (pumpRunning == 0 || methaneLevelCritical == 0)) || ((pumpRunning == 0 && splverifierCounter == 0) && 0 == systemActive) - InvariantResult [Line: 967]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2022-11-03 02:53:48,781 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b732d96f-c604-4501-b54f-22687823d2b0/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE