./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec4_product57.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 5e519f3a Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec4_product57.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 7573d0f26b9c64760f56bc1038037f99fa78fd69add5234955c16ce4082df45a --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-5e519f3 [2022-11-03 02:21:06,975 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-03 02:21:06,978 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-03 02:21:07,019 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-03 02:21:07,020 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-03 02:21:07,024 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-03 02:21:07,026 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-03 02:21:07,030 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-03 02:21:07,032 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-03 02:21:07,037 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-03 02:21:07,038 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-03 02:21:07,040 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-03 02:21:07,041 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-03 02:21:07,043 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-03 02:21:07,045 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-03 02:21:07,046 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-03 02:21:07,048 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-03 02:21:07,049 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-03 02:21:07,050 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-03 02:21:07,057 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-03 02:21:07,059 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-03 02:21:07,060 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-03 02:21:07,063 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-03 02:21:07,064 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-03 02:21:07,072 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-03 02:21:07,073 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-03 02:21:07,073 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-03 02:21:07,075 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-03 02:21:07,075 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-03 02:21:07,076 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-03 02:21:07,077 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-03 02:21:07,078 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-03 02:21:07,080 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-03 02:21:07,081 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-03 02:21:07,082 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-03 02:21:07,082 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-03 02:21:07,083 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-03 02:21:07,083 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-03 02:21:07,083 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-03 02:21:07,084 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-03 02:21:07,085 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-03 02:21:07,086 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-03 02:21:07,130 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-03 02:21:07,130 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-03 02:21:07,131 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-03 02:21:07,131 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-03 02:21:07,132 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-03 02:21:07,132 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-03 02:21:07,132 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-03 02:21:07,133 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-03 02:21:07,133 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-03 02:21:07,133 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-03 02:21:07,134 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-03 02:21:07,134 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-03 02:21:07,135 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-03 02:21:07,135 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-03 02:21:07,135 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-03 02:21:07,135 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-03 02:21:07,135 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-03 02:21:07,136 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-03 02:21:07,136 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-03 02:21:07,137 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-03 02:21:07,137 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-03 02:21:07,137 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-03 02:21:07,137 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-03 02:21:07,139 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-03 02:21:07,139 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-03 02:21:07,139 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-03 02:21:07,140 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-03 02:21:07,140 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-03 02:21:07,140 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-03 02:21:07,140 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-03 02:21:07,140 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-03 02:21:07,141 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-03 02:21:07,141 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-03 02:21:07,141 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-03 02:21:07,141 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-03 02:21:07,142 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-03 02:21:07,142 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-03 02:21:07,142 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-03 02:21:07,142 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-03 02:21:07,143 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-03 02:21:07,143 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-03 02:21:07,143 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 7573d0f26b9c64760f56bc1038037f99fa78fd69add5234955c16ce4082df45a [2022-11-03 02:21:07,446 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-03 02:21:07,473 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-03 02:21:07,475 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-03 02:21:07,477 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-03 02:21:07,478 INFO L275 PluginConnector]: CDTParser initialized [2022-11-03 02:21:07,479 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/../../sv-benchmarks/c/product-lines/minepump_spec4_product57.cil.c [2022-11-03 02:21:07,554 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/data/aa3f48eb0/21f0ea2f4fe143f6a646d0f7327d9a1a/FLAGb33a4ba30 [2022-11-03 02:21:08,152 INFO L306 CDTParser]: Found 1 translation units. [2022-11-03 02:21:08,153 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/sv-benchmarks/c/product-lines/minepump_spec4_product57.cil.c [2022-11-03 02:21:08,171 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/data/aa3f48eb0/21f0ea2f4fe143f6a646d0f7327d9a1a/FLAGb33a4ba30 [2022-11-03 02:21:08,475 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/data/aa3f48eb0/21f0ea2f4fe143f6a646d0f7327d9a1a [2022-11-03 02:21:08,478 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-03 02:21:08,479 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-03 02:21:08,481 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-03 02:21:08,482 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-03 02:21:08,491 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-03 02:21:08,492 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:08,493 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@5df6d3f8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08, skipping insertion in model container [2022-11-03 02:21:08,493 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:08,500 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-03 02:21:08,536 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-03 02:21:08,830 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/sv-benchmarks/c/product-lines/minepump_spec4_product57.cil.c[18691,18704] [2022-11-03 02:21:08,833 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-03 02:21:08,842 INFO L203 MainTranslator]: Completed pre-run [2022-11-03 02:21:08,914 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/sv-benchmarks/c/product-lines/minepump_spec4_product57.cil.c[18691,18704] [2022-11-03 02:21:08,919 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-03 02:21:08,941 INFO L208 MainTranslator]: Completed translation [2022-11-03 02:21:08,942 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08 WrapperNode [2022-11-03 02:21:08,942 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-03 02:21:08,943 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-03 02:21:08,943 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-03 02:21:08,944 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-03 02:21:08,951 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:08,974 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,018 INFO L138 Inliner]: procedures = 56, calls = 156, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 280 [2022-11-03 02:21:09,021 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-03 02:21:09,022 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-03 02:21:09,023 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-03 02:21:09,023 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-03 02:21:09,032 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,032 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,045 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,053 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,057 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,071 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,072 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,074 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,076 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-03 02:21:09,077 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-03 02:21:09,084 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-03 02:21:09,084 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-03 02:21:09,085 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (1/1) ... [2022-11-03 02:21:09,089 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-03 02:21:09,099 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 02:21:09,121 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-03 02:21:09,124 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-03 02:21:09,158 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-03 02:21:09,158 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-03 02:21:09,158 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-03 02:21:09,158 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-03 02:21:09,158 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-03 02:21:09,159 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-03 02:21:09,159 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-03 02:21:09,159 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 02:21:09,160 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 02:21:09,160 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-03 02:21:09,161 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-03 02:21:09,161 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-03 02:21:09,161 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-03 02:21:09,161 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-03 02:21:09,161 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-03 02:21:09,162 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-03 02:21:09,270 INFO L235 CfgBuilder]: Building ICFG [2022-11-03 02:21:09,273 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-03 02:21:09,725 INFO L276 CfgBuilder]: Performing block encoding [2022-11-03 02:21:09,886 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-03 02:21:09,886 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-03 02:21:09,889 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 02:21:09 BoogieIcfgContainer [2022-11-03 02:21:09,889 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-03 02:21:09,891 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-03 02:21:09,893 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-03 02:21:09,896 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-03 02:21:09,896 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 03.11 02:21:08" (1/3) ... [2022-11-03 02:21:09,897 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1aab0ded and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 03.11 02:21:09, skipping insertion in model container [2022-11-03 02:21:09,898 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 02:21:08" (2/3) ... [2022-11-03 02:21:09,898 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1aab0ded and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 03.11 02:21:09, skipping insertion in model container [2022-11-03 02:21:09,898 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 02:21:09" (3/3) ... [2022-11-03 02:21:09,900 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product57.cil.c [2022-11-03 02:21:09,918 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-03 02:21:09,919 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-03 02:21:09,982 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-03 02:21:09,989 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@665adcd3, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-03 02:21:09,990 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-03 02:21:09,994 INFO L276 IsEmpty]: Start isEmpty. Operand has 51 states, 33 states have (on average 1.4545454545454546) internal successors, (48), 41 states have internal predecessors, (48), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 8 states have call predecessors, (10), 10 states have call successors, (10) [2022-11-03 02:21:10,003 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2022-11-03 02:21:10,003 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:10,004 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:10,005 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:10,010 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:10,010 INFO L85 PathProgramCache]: Analyzing trace with hash 576610716, now seen corresponding path program 1 times [2022-11-03 02:21:10,020 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:10,021 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [781343888] [2022-11-03 02:21:10,021 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:10,021 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:10,169 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:10,269 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:10,269 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:10,270 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [781343888] [2022-11-03 02:21:10,270 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [781343888] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:21:10,271 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:21:10,271 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-03 02:21:10,273 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1471925682] [2022-11-03 02:21:10,273 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:10,278 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-03 02:21:10,279 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:10,312 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-03 02:21:10,314 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-03 02:21:10,316 INFO L87 Difference]: Start difference. First operand has 51 states, 33 states have (on average 1.4545454545454546) internal successors, (48), 41 states have internal predecessors, (48), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 8 states have call predecessors, (10), 10 states have call successors, (10) Second operand has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:21:10,406 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:10,406 INFO L93 Difference]: Finished difference Result 100 states and 137 transitions. [2022-11-03 02:21:10,408 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-03 02:21:10,409 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 12 [2022-11-03 02:21:10,410 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:10,420 INFO L225 Difference]: With dead ends: 100 [2022-11-03 02:21:10,420 INFO L226 Difference]: Without dead ends: 46 [2022-11-03 02:21:10,425 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-03 02:21:10,430 INFO L413 NwaCegarLoop]: 48 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 48 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:10,431 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 48 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-03 02:21:10,453 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 46 states. [2022-11-03 02:21:10,484 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 46 to 46. [2022-11-03 02:21:10,486 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 46 states, 30 states have (on average 1.3333333333333333) internal successors, (40), 37 states have internal predecessors, (40), 10 states have call successors, (10), 6 states have call predecessors, (10), 5 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-03 02:21:10,490 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 46 states to 46 states and 59 transitions. [2022-11-03 02:21:10,491 INFO L78 Accepts]: Start accepts. Automaton has 46 states and 59 transitions. Word has length 12 [2022-11-03 02:21:10,492 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:10,492 INFO L495 AbstractCegarLoop]: Abstraction has 46 states and 59 transitions. [2022-11-03 02:21:10,493 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:21:10,494 INFO L276 IsEmpty]: Start isEmpty. Operand 46 states and 59 transitions. [2022-11-03 02:21:10,496 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2022-11-03 02:21:10,496 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:10,497 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:10,498 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-03 02:21:10,498 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:10,499 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:10,499 INFO L85 PathProgramCache]: Analyzing trace with hash 1435718459, now seen corresponding path program 1 times [2022-11-03 02:21:10,499 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:10,499 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [539036402] [2022-11-03 02:21:10,500 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:10,500 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:10,542 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:10,673 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:10,674 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:10,675 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [539036402] [2022-11-03 02:21:10,675 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [539036402] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:21:10,675 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:21:10,675 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-03 02:21:10,675 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1208754876] [2022-11-03 02:21:10,676 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:10,677 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-03 02:21:10,678 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:10,678 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-03 02:21:10,679 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 02:21:10,679 INFO L87 Difference]: Start difference. First operand 46 states and 59 transitions. Second operand has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:21:10,746 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:10,747 INFO L93 Difference]: Finished difference Result 69 states and 89 transitions. [2022-11-03 02:21:10,750 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-03 02:21:10,750 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 13 [2022-11-03 02:21:10,751 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:10,752 INFO L225 Difference]: With dead ends: 69 [2022-11-03 02:21:10,752 INFO L226 Difference]: Without dead ends: 38 [2022-11-03 02:21:10,758 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 02:21:10,759 INFO L413 NwaCegarLoop]: 34 mSDtfsCounter, 7 mSDsluCounter, 36 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 59 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:10,760 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 59 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-03 02:21:10,761 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 38 states. [2022-11-03 02:21:10,764 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 38 to 38. [2022-11-03 02:21:10,765 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 38 states, 25 states have (on average 1.36) internal successors, (34), 32 states have internal predecessors, (34), 7 states have call successors, (7), 5 states have call predecessors, (7), 5 states have return successors, (7), 5 states have call predecessors, (7), 7 states have call successors, (7) [2022-11-03 02:21:10,765 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 38 states to 38 states and 48 transitions. [2022-11-03 02:21:10,765 INFO L78 Accepts]: Start accepts. Automaton has 38 states and 48 transitions. Word has length 13 [2022-11-03 02:21:10,766 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:10,766 INFO L495 AbstractCegarLoop]: Abstraction has 38 states and 48 transitions. [2022-11-03 02:21:10,766 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:21:10,766 INFO L276 IsEmpty]: Start isEmpty. Operand 38 states and 48 transitions. [2022-11-03 02:21:10,766 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 16 [2022-11-03 02:21:10,766 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:10,767 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:10,767 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-03 02:21:10,767 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:10,767 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:10,767 INFO L85 PathProgramCache]: Analyzing trace with hash -2094359470, now seen corresponding path program 1 times [2022-11-03 02:21:10,768 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:10,768 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1290816384] [2022-11-03 02:21:10,768 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:10,768 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:10,797 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:10,934 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:10,934 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:10,934 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1290816384] [2022-11-03 02:21:10,935 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1290816384] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:21:10,935 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:21:10,935 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-03 02:21:10,935 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1930251090] [2022-11-03 02:21:10,936 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:10,936 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-03 02:21:10,936 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:10,937 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-03 02:21:10,937 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-03 02:21:10,937 INFO L87 Difference]: Start difference. First operand 38 states and 48 transitions. Second operand has 4 states, 4 states have (on average 3.5) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:21:11,014 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:11,014 INFO L93 Difference]: Finished difference Result 74 states and 95 transitions. [2022-11-03 02:21:11,015 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-03 02:21:11,015 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 3.5) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 15 [2022-11-03 02:21:11,016 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:11,016 INFO L225 Difference]: With dead ends: 74 [2022-11-03 02:21:11,017 INFO L226 Difference]: Without dead ends: 38 [2022-11-03 02:21:11,017 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-03 02:21:11,019 INFO L413 NwaCegarLoop]: 29 mSDtfsCounter, 44 mSDsluCounter, 22 mSDsCounter, 0 mSdLazyCounter, 40 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 44 SdHoareTripleChecker+Valid, 41 SdHoareTripleChecker+Invalid, 46 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 40 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:11,019 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [44 Valid, 41 Invalid, 46 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 40 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 02:21:11,020 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 38 states. [2022-11-03 02:21:11,025 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 38 to 38. [2022-11-03 02:21:11,026 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 38 states, 25 states have (on average 1.32) internal successors, (33), 32 states have internal predecessors, (33), 7 states have call successors, (7), 5 states have call predecessors, (7), 5 states have return successors, (7), 5 states have call predecessors, (7), 7 states have call successors, (7) [2022-11-03 02:21:11,027 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 38 states to 38 states and 47 transitions. [2022-11-03 02:21:11,027 INFO L78 Accepts]: Start accepts. Automaton has 38 states and 47 transitions. Word has length 15 [2022-11-03 02:21:11,027 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:11,028 INFO L495 AbstractCegarLoop]: Abstraction has 38 states and 47 transitions. [2022-11-03 02:21:11,028 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 3.5) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:21:11,028 INFO L276 IsEmpty]: Start isEmpty. Operand 38 states and 47 transitions. [2022-11-03 02:21:11,029 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2022-11-03 02:21:11,029 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:11,029 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:11,029 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-03 02:21:11,030 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:11,030 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:11,030 INFO L85 PathProgramCache]: Analyzing trace with hash 633221315, now seen corresponding path program 1 times [2022-11-03 02:21:11,031 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:11,031 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [925175724] [2022-11-03 02:21:11,031 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:11,031 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:11,050 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:11,120 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:11,120 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:11,120 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [925175724] [2022-11-03 02:21:11,121 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [925175724] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:21:11,121 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:21:11,121 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-03 02:21:11,121 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [526731636] [2022-11-03 02:21:11,121 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:11,122 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-03 02:21:11,122 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:11,122 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-03 02:21:11,122 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 02:21:11,123 INFO L87 Difference]: Start difference. First operand 38 states and 47 transitions. Second operand has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:21:11,190 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:11,190 INFO L93 Difference]: Finished difference Result 104 states and 132 transitions. [2022-11-03 02:21:11,190 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-03 02:21:11,191 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 18 [2022-11-03 02:21:11,191 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:11,192 INFO L225 Difference]: With dead ends: 104 [2022-11-03 02:21:11,192 INFO L226 Difference]: Without dead ends: 68 [2022-11-03 02:21:11,193 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 02:21:11,194 INFO L413 NwaCegarLoop]: 44 mSDtfsCounter, 29 mSDsluCounter, 34 mSDsCounter, 0 mSdLazyCounter, 29 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 29 SdHoareTripleChecker+Valid, 72 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 29 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:11,194 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [29 Valid, 72 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 29 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-03 02:21:11,195 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 68 states. [2022-11-03 02:21:11,209 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 68 to 66. [2022-11-03 02:21:11,209 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 66 states, 45 states have (on average 1.2666666666666666) internal successors, (57), 52 states have internal predecessors, (57), 10 states have call successors, (10), 10 states have call predecessors, (10), 10 states have return successors, (14), 10 states have call predecessors, (14), 10 states have call successors, (14) [2022-11-03 02:21:11,210 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 66 states to 66 states and 81 transitions. [2022-11-03 02:21:11,210 INFO L78 Accepts]: Start accepts. Automaton has 66 states and 81 transitions. Word has length 18 [2022-11-03 02:21:11,211 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:11,211 INFO L495 AbstractCegarLoop]: Abstraction has 66 states and 81 transitions. [2022-11-03 02:21:11,216 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.666666666666667) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:21:11,216 INFO L276 IsEmpty]: Start isEmpty. Operand 66 states and 81 transitions. [2022-11-03 02:21:11,220 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2022-11-03 02:21:11,221 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:11,221 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:11,221 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-03 02:21:11,221 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:11,222 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:11,222 INFO L85 PathProgramCache]: Analyzing trace with hash 1809641867, now seen corresponding path program 1 times [2022-11-03 02:21:11,222 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:11,222 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [595159789] [2022-11-03 02:21:11,222 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:11,223 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:11,240 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:11,525 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:11,525 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:11,526 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [595159789] [2022-11-03 02:21:11,526 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [595159789] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:21:11,526 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:21:11,526 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-11-03 02:21:11,528 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [864671821] [2022-11-03 02:21:11,528 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:11,529 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-03 02:21:11,530 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:11,535 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-03 02:21:11,535 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-11-03 02:21:11,536 INFO L87 Difference]: Start difference. First operand 66 states and 81 transitions. Second operand has 5 states, 5 states have (on average 4.0) internal successors, (20), 5 states have internal predecessors, (20), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:21:11,660 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:11,660 INFO L93 Difference]: Finished difference Result 179 states and 222 transitions. [2022-11-03 02:21:11,660 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-11-03 02:21:11,661 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.0) internal successors, (20), 5 states have internal predecessors, (20), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2022-11-03 02:21:11,661 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:11,662 INFO L225 Difference]: With dead ends: 179 [2022-11-03 02:21:11,662 INFO L226 Difference]: Without dead ends: 115 [2022-11-03 02:21:11,663 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2022-11-03 02:21:11,664 INFO L413 NwaCegarLoop]: 42 mSDtfsCounter, 47 mSDsluCounter, 133 mSDsCounter, 0 mSdLazyCounter, 75 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 47 SdHoareTripleChecker+Valid, 154 SdHoareTripleChecker+Invalid, 81 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 75 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:11,665 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [47 Valid, 154 Invalid, 81 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 75 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 02:21:11,665 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 115 states. [2022-11-03 02:21:11,681 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 115 to 100. [2022-11-03 02:21:11,682 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 100 states, 69 states have (on average 1.2173913043478262) internal successors, (84), 78 states have internal predecessors, (84), 14 states have call successors, (14), 14 states have call predecessors, (14), 16 states have return successors, (20), 15 states have call predecessors, (20), 14 states have call successors, (20) [2022-11-03 02:21:11,683 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 100 states to 100 states and 118 transitions. [2022-11-03 02:21:11,683 INFO L78 Accepts]: Start accepts. Automaton has 100 states and 118 transitions. Word has length 23 [2022-11-03 02:21:11,683 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:11,683 INFO L495 AbstractCegarLoop]: Abstraction has 100 states and 118 transitions. [2022-11-03 02:21:11,684 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.0) internal successors, (20), 5 states have internal predecessors, (20), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 02:21:11,684 INFO L276 IsEmpty]: Start isEmpty. Operand 100 states and 118 transitions. [2022-11-03 02:21:11,685 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2022-11-03 02:21:11,685 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:11,685 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:11,685 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-03 02:21:11,685 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:11,686 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:11,686 INFO L85 PathProgramCache]: Analyzing trace with hash 1278145829, now seen corresponding path program 1 times [2022-11-03 02:21:11,686 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:11,686 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2098630827] [2022-11-03 02:21:11,686 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:11,687 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:11,703 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:12,017 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:12,017 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:12,017 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2098630827] [2022-11-03 02:21:12,017 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2098630827] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:21:12,018 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:21:12,018 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-11-03 02:21:12,018 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [526303080] [2022-11-03 02:21:12,018 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:12,018 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-11-03 02:21:12,019 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:12,019 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-11-03 02:21:12,019 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-11-03 02:21:12,019 INFO L87 Difference]: Start difference. First operand 100 states and 118 transitions. Second operand has 8 states, 7 states have (on average 3.0) internal successors, (21), 7 states have internal predecessors, (21), 3 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-03 02:21:12,463 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:12,464 INFO L93 Difference]: Finished difference Result 251 states and 312 transitions. [2022-11-03 02:21:12,464 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-11-03 02:21:12,464 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 3.0) internal successors, (21), 7 states have internal predecessors, (21), 3 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 26 [2022-11-03 02:21:12,465 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:12,466 INFO L225 Difference]: With dead ends: 251 [2022-11-03 02:21:12,466 INFO L226 Difference]: Without dead ends: 187 [2022-11-03 02:21:12,467 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=86, Unknown=0, NotChecked=0, Total=132 [2022-11-03 02:21:12,468 INFO L413 NwaCegarLoop]: 67 mSDtfsCounter, 127 mSDsluCounter, 236 mSDsCounter, 0 mSdLazyCounter, 373 mSolverCounterSat, 52 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 135 SdHoareTripleChecker+Valid, 246 SdHoareTripleChecker+Invalid, 425 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 52 IncrementalHoareTripleChecker+Valid, 373 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:12,468 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [135 Valid, 246 Invalid, 425 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [52 Valid, 373 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-03 02:21:12,469 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 187 states. [2022-11-03 02:21:12,496 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 187 to 168. [2022-11-03 02:21:12,497 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 168 states, 116 states have (on average 1.2241379310344827) internal successors, (142), 132 states have internal predecessors, (142), 24 states have call successors, (24), 22 states have call predecessors, (24), 27 states have return successors, (35), 26 states have call predecessors, (35), 24 states have call successors, (35) [2022-11-03 02:21:12,499 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 168 states to 168 states and 201 transitions. [2022-11-03 02:21:12,499 INFO L78 Accepts]: Start accepts. Automaton has 168 states and 201 transitions. Word has length 26 [2022-11-03 02:21:12,499 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:12,500 INFO L495 AbstractCegarLoop]: Abstraction has 168 states and 201 transitions. [2022-11-03 02:21:12,500 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 3.0) internal successors, (21), 7 states have internal predecessors, (21), 3 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-03 02:21:12,500 INFO L276 IsEmpty]: Start isEmpty. Operand 168 states and 201 transitions. [2022-11-03 02:21:12,502 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2022-11-03 02:21:12,502 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:12,502 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:12,502 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-03 02:21:12,502 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:12,503 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:12,503 INFO L85 PathProgramCache]: Analyzing trace with hash 1647794668, now seen corresponding path program 1 times [2022-11-03 02:21:12,503 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:12,503 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1079166541] [2022-11-03 02:21:12,503 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:12,504 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:12,519 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:12,924 INFO L134 CoverageAnalysis]: Checked inductivity of 13 backedges. 13 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:12,924 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:12,924 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1079166541] [2022-11-03 02:21:12,925 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1079166541] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:21:12,925 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 02:21:12,925 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2022-11-03 02:21:12,925 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [166893840] [2022-11-03 02:21:12,925 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:12,926 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-03 02:21:12,926 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:12,926 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-03 02:21:12,926 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=23, Invalid=49, Unknown=0, NotChecked=0, Total=72 [2022-11-03 02:21:12,926 INFO L87 Difference]: Start difference. First operand 168 states and 201 transitions. Second operand has 9 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 8 states have internal predecessors, (34), 3 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-03 02:21:13,222 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:13,222 INFO L93 Difference]: Finished difference Result 280 states and 345 transitions. [2022-11-03 02:21:13,222 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-11-03 02:21:13,223 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 8 states have internal predecessors, (34), 3 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 39 [2022-11-03 02:21:13,223 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:13,227 INFO L225 Difference]: With dead ends: 280 [2022-11-03 02:21:13,227 INFO L226 Difference]: Without dead ends: 209 [2022-11-03 02:21:13,229 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=49, Invalid=107, Unknown=0, NotChecked=0, Total=156 [2022-11-03 02:21:13,230 INFO L413 NwaCegarLoop]: 43 mSDtfsCounter, 108 mSDsluCounter, 94 mSDsCounter, 0 mSdLazyCounter, 199 mSolverCounterSat, 57 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 115 SdHoareTripleChecker+Valid, 118 SdHoareTripleChecker+Invalid, 256 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 57 IncrementalHoareTripleChecker+Valid, 199 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:13,232 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [115 Valid, 118 Invalid, 256 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [57 Valid, 199 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-03 02:21:13,233 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 209 states. [2022-11-03 02:21:13,275 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 209 to 169. [2022-11-03 02:21:13,277 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 169 states, 117 states have (on average 1.2307692307692308) internal successors, (144), 132 states have internal predecessors, (144), 24 states have call successors, (24), 22 states have call predecessors, (24), 27 states have return successors, (36), 26 states have call predecessors, (36), 24 states have call successors, (36) [2022-11-03 02:21:13,281 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 169 states to 169 states and 204 transitions. [2022-11-03 02:21:13,281 INFO L78 Accepts]: Start accepts. Automaton has 169 states and 204 transitions. Word has length 39 [2022-11-03 02:21:13,282 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:13,282 INFO L495 AbstractCegarLoop]: Abstraction has 169 states and 204 transitions. [2022-11-03 02:21:13,282 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 3.7777777777777777) internal successors, (34), 8 states have internal predecessors, (34), 3 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-03 02:21:13,282 INFO L276 IsEmpty]: Start isEmpty. Operand 169 states and 204 transitions. [2022-11-03 02:21:13,290 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 43 [2022-11-03 02:21:13,292 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:13,292 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:13,292 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-03 02:21:13,293 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:13,293 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:13,293 INFO L85 PathProgramCache]: Analyzing trace with hash -497882746, now seen corresponding path program 1 times [2022-11-03 02:21:13,294 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:13,294 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1963156738] [2022-11-03 02:21:13,294 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:13,294 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:13,337 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:13,981 INFO L134 CoverageAnalysis]: Checked inductivity of 13 backedges. 0 proven. 13 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:13,982 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:13,982 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1963156738] [2022-11-03 02:21:13,982 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1963156738] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 02:21:13,982 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [345366575] [2022-11-03 02:21:13,982 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:13,983 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:21:13,983 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 02:21:13,986 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 02:21:13,994 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-03 02:21:14,113 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:14,132 INFO L263 TraceCheckSpWp]: Trace formula consists of 398 conjuncts, 28 conjunts are in the unsatisfiable core [2022-11-03 02:21:14,151 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 02:21:14,546 INFO L134 CoverageAnalysis]: Checked inductivity of 13 backedges. 0 proven. 9 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-03 02:21:14,546 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-03 02:21:15,110 INFO L134 CoverageAnalysis]: Checked inductivity of 13 backedges. 1 proven. 8 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-03 02:21:15,110 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [345366575] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-03 02:21:15,110 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [526412647] [2022-11-03 02:21:15,129 INFO L159 IcfgInterpreter]: Started Sifa with 30 locations of interest [2022-11-03 02:21:15,129 INFO L166 IcfgInterpreter]: Building call graph [2022-11-03 02:21:15,133 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-03 02:21:15,138 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-03 02:21:15,139 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-03 02:21:25,925 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 319 for LOIs [2022-11-03 02:21:26,035 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 28 for LOIs [2022-11-03 02:21:26,148 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2022-11-03 02:21:26,181 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-03 02:21:35,879 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3075#(and (<= 0 |old(~pumpRunning~0)|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1| |timeShift_getWaterLevel_#res#1|) (<= ~pumpRunning~0 1) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1| 0)) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1| 0) (= ~methaneLevelCritical~0 0) (<= |old(~pumpRunning~0)| 1) (= |timeShift_getWaterLevel_~retValue_acc~5#1| |timeShift_getWaterLevel_#res#1|) (= ~head~0.offset 0) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~1#1|) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~1#1|) (= |timeShift_getWaterLevel_~retValue_acc~5#1| ~waterLevel~0) (<= 0 ~pumpRunning~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1|) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-03 02:21:35,879 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-03 02:21:35,880 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-03 02:21:35,880 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 9, 11] total 30 [2022-11-03 02:21:35,880 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2063823103] [2022-11-03 02:21:35,880 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-03 02:21:35,882 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 30 states [2022-11-03 02:21:35,882 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:35,883 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 30 interpolants. [2022-11-03 02:21:35,887 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=289, Invalid=2467, Unknown=0, NotChecked=0, Total=2756 [2022-11-03 02:21:35,887 INFO L87 Difference]: Start difference. First operand 169 states and 204 transitions. Second operand has 30 states, 27 states have (on average 3.2962962962962963) internal successors, (89), 27 states have internal predecessors, (89), 10 states have call successors, (12), 9 states have call predecessors, (12), 8 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-03 02:21:41,373 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:41,373 INFO L93 Difference]: Finished difference Result 1032 states and 1364 transitions. [2022-11-03 02:21:41,374 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 85 states. [2022-11-03 02:21:41,374 INFO L78 Accepts]: Start accepts. Automaton has has 30 states, 27 states have (on average 3.2962962962962963) internal successors, (89), 27 states have internal predecessors, (89), 10 states have call successors, (12), 9 states have call predecessors, (12), 8 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) Word has length 42 [2022-11-03 02:21:41,374 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:41,380 INFO L225 Difference]: With dead ends: 1032 [2022-11-03 02:21:41,380 INFO L226 Difference]: Without dead ends: 945 [2022-11-03 02:21:41,387 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 226 GetRequests, 100 SyntacticMatches, 0 SemanticMatches, 126 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 5736 ImplicationChecksByTransitivity, 13.4s TimeCoverageRelationStatistics Valid=1942, Invalid=14314, Unknown=0, NotChecked=0, Total=16256 [2022-11-03 02:21:41,388 INFO L413 NwaCegarLoop]: 121 mSDtfsCounter, 1458 mSDsluCounter, 874 mSDsCounter, 0 mSdLazyCounter, 2050 mSolverCounterSat, 999 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1463 SdHoareTripleChecker+Valid, 803 SdHoareTripleChecker+Invalid, 3049 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 999 IncrementalHoareTripleChecker+Valid, 2050 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.9s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:41,389 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1463 Valid, 803 Invalid, 3049 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [999 Valid, 2050 Invalid, 0 Unknown, 0 Unchecked, 1.9s Time] [2022-11-03 02:21:41,390 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 945 states. [2022-11-03 02:21:41,505 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 945 to 712. [2022-11-03 02:21:41,507 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 712 states, 502 states have (on average 1.1932270916334662) internal successors, (599), 546 states have internal predecessors, (599), 100 states have call successors, (100), 90 states have call predecessors, (100), 109 states have return successors, (155), 105 states have call predecessors, (155), 100 states have call successors, (155) [2022-11-03 02:21:41,511 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 712 states to 712 states and 854 transitions. [2022-11-03 02:21:41,512 INFO L78 Accepts]: Start accepts. Automaton has 712 states and 854 transitions. Word has length 42 [2022-11-03 02:21:41,512 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:41,512 INFO L495 AbstractCegarLoop]: Abstraction has 712 states and 854 transitions. [2022-11-03 02:21:41,513 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 30 states, 27 states have (on average 3.2962962962962963) internal successors, (89), 27 states have internal predecessors, (89), 10 states have call successors, (12), 9 states have call predecessors, (12), 8 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-03 02:21:41,513 INFO L276 IsEmpty]: Start isEmpty. Operand 712 states and 854 transitions. [2022-11-03 02:21:41,515 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 64 [2022-11-03 02:21:41,515 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:41,516 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:41,554 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2022-11-03 02:21:41,729 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:21:41,729 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:41,730 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:41,730 INFO L85 PathProgramCache]: Analyzing trace with hash -796623641, now seen corresponding path program 2 times [2022-11-03 02:21:41,730 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:41,730 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1899379109] [2022-11-03 02:21:41,730 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:41,731 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:41,753 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:42,638 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 0 proven. 43 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-03 02:21:42,639 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:42,639 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1899379109] [2022-11-03 02:21:42,639 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1899379109] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 02:21:42,639 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [35427181] [2022-11-03 02:21:42,639 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-03 02:21:42,639 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:21:42,640 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 02:21:42,641 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 02:21:42,658 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-03 02:21:42,733 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 1 check-sat command(s) [2022-11-03 02:21:42,733 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-03 02:21:42,735 INFO L263 TraceCheckSpWp]: Trace formula consists of 329 conjuncts, 18 conjunts are in the unsatisfiable core [2022-11-03 02:21:42,739 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 02:21:42,947 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 0 proven. 14 refuted. 0 times theorem prover too weak. 33 trivial. 0 not checked. [2022-11-03 02:21:42,948 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-03 02:21:43,134 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 9 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2022-11-03 02:21:43,135 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [35427181] provided 1 perfect and 1 imperfect interpolant sequences [2022-11-03 02:21:43,135 INFO L184 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2022-11-03 02:21:43,135 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [18, 6] total 23 [2022-11-03 02:21:43,135 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1482068292] [2022-11-03 02:21:43,135 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:43,136 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-03 02:21:43,136 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:43,136 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-03 02:21:43,137 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=77, Invalid=429, Unknown=0, NotChecked=0, Total=506 [2022-11-03 02:21:43,137 INFO L87 Difference]: Start difference. First operand 712 states and 854 transitions. Second operand has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-11-03 02:21:43,314 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:43,315 INFO L93 Difference]: Finished difference Result 1250 states and 1556 transitions. [2022-11-03 02:21:43,315 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-03 02:21:43,315 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) Word has length 63 [2022-11-03 02:21:43,316 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:43,321 INFO L225 Difference]: With dead ends: 1250 [2022-11-03 02:21:43,321 INFO L226 Difference]: Without dead ends: 812 [2022-11-03 02:21:43,323 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 145 GetRequests, 121 SyntacticMatches, 2 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 167 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=82, Invalid=470, Unknown=0, NotChecked=0, Total=552 [2022-11-03 02:21:43,326 INFO L413 NwaCegarLoop]: 41 mSDtfsCounter, 38 mSDsluCounter, 85 mSDsCounter, 0 mSdLazyCounter, 51 mSolverCounterSat, 15 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 39 SdHoareTripleChecker+Valid, 111 SdHoareTripleChecker+Invalid, 66 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 15 IncrementalHoareTripleChecker+Valid, 51 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:43,326 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [39 Valid, 111 Invalid, 66 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [15 Valid, 51 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 02:21:43,328 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 812 states. [2022-11-03 02:21:43,440 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 812 to 708. [2022-11-03 02:21:43,441 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 708 states, 498 states have (on average 1.178714859437751) internal successors, (587), 542 states have internal predecessors, (587), 100 states have call successors, (100), 90 states have call predecessors, (100), 109 states have return successors, (155), 105 states have call predecessors, (155), 100 states have call successors, (155) [2022-11-03 02:21:43,446 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 708 states to 708 states and 842 transitions. [2022-11-03 02:21:43,448 INFO L78 Accepts]: Start accepts. Automaton has 708 states and 842 transitions. Word has length 63 [2022-11-03 02:21:43,449 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:43,450 INFO L495 AbstractCegarLoop]: Abstraction has 708 states and 842 transitions. [2022-11-03 02:21:43,450 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (4), 2 states have call predecessors, (4), 1 states have call successors, (4) [2022-11-03 02:21:43,450 INFO L276 IsEmpty]: Start isEmpty. Operand 708 states and 842 transitions. [2022-11-03 02:21:43,454 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2022-11-03 02:21:43,455 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:43,455 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:43,495 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-03 02:21:43,678 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:21:43,678 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:43,679 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:43,679 INFO L85 PathProgramCache]: Analyzing trace with hash 1987367933, now seen corresponding path program 1 times [2022-11-03 02:21:43,679 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:43,679 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [771538917] [2022-11-03 02:21:43,679 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:43,680 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:43,706 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:44,416 INFO L134 CoverageAnalysis]: Checked inductivity of 46 backedges. 27 proven. 16 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2022-11-03 02:21:44,416 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:44,417 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [771538917] [2022-11-03 02:21:44,417 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [771538917] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 02:21:44,417 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1456892515] [2022-11-03 02:21:44,417 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:44,417 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:21:44,417 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 02:21:44,418 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 02:21:44,434 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-03 02:21:44,523 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:44,525 INFO L263 TraceCheckSpWp]: Trace formula consists of 474 conjuncts, 25 conjunts are in the unsatisfiable core [2022-11-03 02:21:44,527 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 02:21:44,641 INFO L134 CoverageAnalysis]: Checked inductivity of 46 backedges. 29 proven. 17 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 02:21:44,642 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-03 02:21:44,703 INFO L134 CoverageAnalysis]: Checked inductivity of 46 backedges. 32 proven. 0 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2022-11-03 02:21:44,704 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1456892515] provided 1 perfect and 1 imperfect interpolant sequences [2022-11-03 02:21:44,704 INFO L184 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2022-11-03 02:21:44,704 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [15, 6] total 20 [2022-11-03 02:21:44,704 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1161904236] [2022-11-03 02:21:44,704 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:21:44,705 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-03 02:21:44,705 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:21:44,705 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-03 02:21:44,705 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=50, Invalid=330, Unknown=0, NotChecked=0, Total=380 [2022-11-03 02:21:44,706 INFO L87 Difference]: Start difference. First operand 708 states and 842 transitions. Second operand has 5 states, 5 states have (on average 8.8) internal successors, (44), 5 states have internal predecessors, (44), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-03 02:21:44,923 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:21:44,923 INFO L93 Difference]: Finished difference Result 1251 states and 1557 transitions. [2022-11-03 02:21:44,923 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2022-11-03 02:21:44,924 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 8.8) internal successors, (44), 5 states have internal predecessors, (44), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 66 [2022-11-03 02:21:44,924 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:21:44,928 INFO L225 Difference]: With dead ends: 1251 [2022-11-03 02:21:44,928 INFO L226 Difference]: Without dead ends: 767 [2022-11-03 02:21:44,930 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 150 GetRequests, 130 SyntacticMatches, 0 SemanticMatches, 20 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 104 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=60, Invalid=402, Unknown=0, NotChecked=0, Total=462 [2022-11-03 02:21:44,931 INFO L413 NwaCegarLoop]: 68 mSDtfsCounter, 69 mSDsluCounter, 118 mSDsCounter, 0 mSdLazyCounter, 82 mSolverCounterSat, 19 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 69 SdHoareTripleChecker+Valid, 158 SdHoareTripleChecker+Invalid, 101 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 19 IncrementalHoareTripleChecker+Valid, 82 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 02:21:44,932 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [69 Valid, 158 Invalid, 101 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [19 Valid, 82 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 02:21:44,933 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 767 states. [2022-11-03 02:21:45,034 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 767 to 733. [2022-11-03 02:21:45,036 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 733 states, 520 states have (on average 1.1826923076923077) internal successors, (615), 564 states have internal predecessors, (615), 104 states have call successors, (104), 94 states have call predecessors, (104), 108 states have return successors, (153), 106 states have call predecessors, (153), 104 states have call successors, (153) [2022-11-03 02:21:45,040 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 733 states to 733 states and 872 transitions. [2022-11-03 02:21:45,040 INFO L78 Accepts]: Start accepts. Automaton has 733 states and 872 transitions. Word has length 66 [2022-11-03 02:21:45,040 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:21:45,040 INFO L495 AbstractCegarLoop]: Abstraction has 733 states and 872 transitions. [2022-11-03 02:21:45,041 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 8.8) internal successors, (44), 5 states have internal predecessors, (44), 3 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-03 02:21:45,041 INFO L276 IsEmpty]: Start isEmpty. Operand 733 states and 872 transitions. [2022-11-03 02:21:45,042 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2022-11-03 02:21:45,042 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:21:45,042 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:21:45,082 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-03 02:21:45,257 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-03 02:21:45,258 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:21:45,258 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:21:45,258 INFO L85 PathProgramCache]: Analyzing trace with hash -1780940924, now seen corresponding path program 1 times [2022-11-03 02:21:45,258 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:21:45,258 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1929597980] [2022-11-03 02:21:45,258 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:45,258 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:21:45,276 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:46,067 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 0 proven. 43 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-03 02:21:46,067 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:21:46,067 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1929597980] [2022-11-03 02:21:46,067 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1929597980] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 02:21:46,067 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2118946852] [2022-11-03 02:21:46,067 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:21:46,068 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:21:46,068 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 02:21:46,069 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 02:21:46,086 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-03 02:21:46,180 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:21:46,182 INFO L263 TraceCheckSpWp]: Trace formula consists of 473 conjuncts, 22 conjunts are in the unsatisfiable core [2022-11-03 02:21:46,185 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 02:21:46,306 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 34 proven. 1 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-03 02:21:46,306 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-03 02:21:46,403 INFO L134 CoverageAnalysis]: Checked inductivity of 47 backedges. 29 proven. 1 refuted. 0 times theorem prover too weak. 17 trivial. 0 not checked. [2022-11-03 02:21:46,404 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2118946852] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-03 02:21:46,404 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [218985924] [2022-11-03 02:21:46,409 INFO L159 IcfgInterpreter]: Started Sifa with 33 locations of interest [2022-11-03 02:21:46,409 INFO L166 IcfgInterpreter]: Building call graph [2022-11-03 02:21:46,409 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-03 02:21:46,409 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-03 02:21:46,410 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-03 02:21:55,076 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 319 for LOIs [2022-11-03 02:21:55,184 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 28 for LOIs [2022-11-03 02:21:55,297 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2022-11-03 02:21:55,435 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 25 for LOIs [2022-11-03 02:21:55,437 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-03 02:22:05,568 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13538#(and (<= 0 |old(~pumpRunning~0)|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1| |timeShift_getWaterLevel_#res#1|) (<= ~pumpRunning~0 1) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1| 0)) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1| 0) (= ~methaneLevelCritical~0 0) (<= |old(~pumpRunning~0)| 1) (= |timeShift_getWaterLevel_~retValue_acc~5#1| |timeShift_getWaterLevel_#res#1|) (= ~head~0.offset 0) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~1#1|) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~1#1|) (= |timeShift_getWaterLevel_~retValue_acc~5#1| ~waterLevel~0) (<= 0 ~pumpRunning~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1|) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-03 02:22:05,568 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-03 02:22:05,568 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-03 02:22:05,569 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 6, 6] total 23 [2022-11-03 02:22:05,569 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1448153078] [2022-11-03 02:22:05,569 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-03 02:22:05,569 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2022-11-03 02:22:05,570 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:22:05,570 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2022-11-03 02:22:05,572 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=228, Invalid=2028, Unknown=0, NotChecked=0, Total=2256 [2022-11-03 02:22:05,572 INFO L87 Difference]: Start difference. First operand 733 states and 872 transitions. Second operand has 23 states, 22 states have (on average 4.2272727272727275) internal successors, (93), 21 states have internal predecessors, (93), 8 states have call successors, (14), 5 states have call predecessors, (14), 6 states have return successors, (13), 7 states have call predecessors, (13), 7 states have call successors, (13) [2022-11-03 02:22:09,877 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:22:09,877 INFO L93 Difference]: Finished difference Result 1797 states and 2221 transitions. [2022-11-03 02:22:09,877 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 78 states. [2022-11-03 02:22:09,878 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 22 states have (on average 4.2272727272727275) internal successors, (93), 21 states have internal predecessors, (93), 8 states have call successors, (14), 5 states have call predecessors, (14), 6 states have return successors, (13), 7 states have call predecessors, (13), 7 states have call successors, (13) Word has length 66 [2022-11-03 02:22:09,879 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:22:09,886 INFO L225 Difference]: With dead ends: 1797 [2022-11-03 02:22:09,887 INFO L226 Difference]: Without dead ends: 1296 [2022-11-03 02:22:09,892 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 315 GetRequests, 200 SyntacticMatches, 2 SemanticMatches, 113 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4702 ImplicationChecksByTransitivity, 12.9s TimeCoverageRelationStatistics Valid=1541, Invalid=11569, Unknown=0, NotChecked=0, Total=13110 [2022-11-03 02:22:09,893 INFO L413 NwaCegarLoop]: 89 mSDtfsCounter, 1049 mSDsluCounter, 566 mSDsCounter, 0 mSdLazyCounter, 1583 mSolverCounterSat, 785 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1054 SdHoareTripleChecker+Valid, 527 SdHoareTripleChecker+Invalid, 2368 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 785 IncrementalHoareTripleChecker+Valid, 1583 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.5s IncrementalHoareTripleChecker+Time [2022-11-03 02:22:09,893 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1054 Valid, 527 Invalid, 2368 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [785 Valid, 1583 Invalid, 0 Unknown, 0 Unchecked, 1.5s Time] [2022-11-03 02:22:09,895 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1296 states. [2022-11-03 02:22:10,050 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1296 to 1028. [2022-11-03 02:22:10,053 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1028 states, 721 states have (on average 1.1650485436893203) internal successors, (840), 789 states have internal predecessors, (840), 146 states have call successors, (146), 134 states have call predecessors, (146), 160 states have return successors, (225), 150 states have call predecessors, (225), 146 states have call successors, (225) [2022-11-03 02:22:10,059 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1028 states to 1028 states and 1211 transitions. [2022-11-03 02:22:10,060 INFO L78 Accepts]: Start accepts. Automaton has 1028 states and 1211 transitions. Word has length 66 [2022-11-03 02:22:10,060 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:22:10,060 INFO L495 AbstractCegarLoop]: Abstraction has 1028 states and 1211 transitions. [2022-11-03 02:22:10,060 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 22 states have (on average 4.2272727272727275) internal successors, (93), 21 states have internal predecessors, (93), 8 states have call successors, (14), 5 states have call predecessors, (14), 6 states have return successors, (13), 7 states have call predecessors, (13), 7 states have call successors, (13) [2022-11-03 02:22:10,061 INFO L276 IsEmpty]: Start isEmpty. Operand 1028 states and 1211 transitions. [2022-11-03 02:22:10,063 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 80 [2022-11-03 02:22:10,063 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:22:10,063 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:22:10,102 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-03 02:22:10,286 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2022-11-03 02:22:10,286 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:22:10,287 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:22:10,287 INFO L85 PathProgramCache]: Analyzing trace with hash -780882616, now seen corresponding path program 3 times [2022-11-03 02:22:10,287 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:22:10,287 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [14545039] [2022-11-03 02:22:10,287 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:22:10,287 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:22:10,319 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:22:11,286 INFO L134 CoverageAnalysis]: Checked inductivity of 91 backedges. 41 proven. 42 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-11-03 02:22:11,286 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:22:11,286 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [14545039] [2022-11-03 02:22:11,286 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [14545039] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 02:22:11,286 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1972455750] [2022-11-03 02:22:11,286 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-03 02:22:11,286 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:22:11,287 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 02:22:11,291 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 02:22:11,305 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-11-03 02:22:11,414 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-03 02:22:11,414 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-03 02:22:11,416 INFO L263 TraceCheckSpWp]: Trace formula consists of 545 conjuncts, 19 conjunts are in the unsatisfiable core [2022-11-03 02:22:11,419 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 02:22:11,500 INFO L134 CoverageAnalysis]: Checked inductivity of 91 backedges. 10 proven. 0 refuted. 0 times theorem prover too weak. 81 trivial. 0 not checked. [2022-11-03 02:22:11,500 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-03 02:22:11,501 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1972455750] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 02:22:11,501 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-03 02:22:11,501 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [19] total 22 [2022-11-03 02:22:11,501 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1797165326] [2022-11-03 02:22:11,501 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 02:22:11,502 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-03 02:22:11,502 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:22:11,502 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-03 02:22:11,503 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=69, Invalid=393, Unknown=0, NotChecked=0, Total=462 [2022-11-03 02:22:11,503 INFO L87 Difference]: Start difference. First operand 1028 states and 1211 transitions. Second operand has 5 states, 5 states have (on average 6.0) internal successors, (30), 5 states have internal predecessors, (30), 1 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) [2022-11-03 02:22:11,763 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:22:11,763 INFO L93 Difference]: Finished difference Result 1330 states and 1598 transitions. [2022-11-03 02:22:11,764 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2022-11-03 02:22:11,764 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.0) internal successors, (30), 5 states have internal predecessors, (30), 1 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) Word has length 79 [2022-11-03 02:22:11,764 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:22:11,769 INFO L225 Difference]: With dead ends: 1330 [2022-11-03 02:22:11,769 INFO L226 Difference]: Without dead ends: 1056 [2022-11-03 02:22:11,771 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 102 GetRequests, 80 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 141 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=79, Invalid=473, Unknown=0, NotChecked=0, Total=552 [2022-11-03 02:22:11,772 INFO L413 NwaCegarLoop]: 37 mSDtfsCounter, 31 mSDsluCounter, 120 mSDsCounter, 0 mSdLazyCounter, 70 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 32 SdHoareTripleChecker+Valid, 134 SdHoareTripleChecker+Invalid, 73 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 70 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 02:22:11,772 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [32 Valid, 134 Invalid, 73 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 70 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 02:22:11,773 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1056 states. [2022-11-03 02:22:11,920 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1056 to 988. [2022-11-03 02:22:11,922 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 988 states, 692 states have (on average 1.157514450867052) internal successors, (801), 756 states have internal predecessors, (801), 142 states have call successors, (142), 130 states have call predecessors, (142), 153 states have return successors, (211), 146 states have call predecessors, (211), 142 states have call successors, (211) [2022-11-03 02:22:11,926 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 988 states to 988 states and 1154 transitions. [2022-11-03 02:22:11,926 INFO L78 Accepts]: Start accepts. Automaton has 988 states and 1154 transitions. Word has length 79 [2022-11-03 02:22:11,927 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:22:11,927 INFO L495 AbstractCegarLoop]: Abstraction has 988 states and 1154 transitions. [2022-11-03 02:22:11,927 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.0) internal successors, (30), 5 states have internal predecessors, (30), 1 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) [2022-11-03 02:22:11,927 INFO L276 IsEmpty]: Start isEmpty. Operand 988 states and 1154 transitions. [2022-11-03 02:22:11,929 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 88 [2022-11-03 02:22:11,929 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 02:22:11,929 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:22:11,968 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2022-11-03 02:22:12,146 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:22:12,146 INFO L420 AbstractCegarLoop]: === Iteration 13 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 02:22:12,147 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 02:22:12,147 INFO L85 PathProgramCache]: Analyzing trace with hash -1705668770, now seen corresponding path program 2 times [2022-11-03 02:22:12,147 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 02:22:12,147 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1162086295] [2022-11-03 02:22:12,147 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 02:22:12,147 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 02:22:12,173 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 02:22:13,121 INFO L134 CoverageAnalysis]: Checked inductivity of 99 backedges. 41 proven. 46 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-03 02:22:13,122 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 02:22:13,122 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1162086295] [2022-11-03 02:22:13,122 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1162086295] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 02:22:13,122 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1900701439] [2022-11-03 02:22:13,122 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-03 02:22:13,122 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 02:22:13,122 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 02:22:13,124 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 02:22:13,129 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2022-11-03 02:22:13,230 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2022-11-03 02:22:13,230 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-03 02:22:13,232 INFO L263 TraceCheckSpWp]: Trace formula consists of 405 conjuncts, 32 conjunts are in the unsatisfiable core [2022-11-03 02:22:13,235 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 02:22:13,422 INFO L134 CoverageAnalysis]: Checked inductivity of 99 backedges. 56 proven. 5 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2022-11-03 02:22:13,422 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-03 02:22:13,870 INFO L134 CoverageAnalysis]: Checked inductivity of 99 backedges. 50 proven. 5 refuted. 0 times theorem prover too weak. 44 trivial. 0 not checked. [2022-11-03 02:22:13,871 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1900701439] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-03 02:22:13,871 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1744654318] [2022-11-03 02:22:13,873 INFO L159 IcfgInterpreter]: Started Sifa with 34 locations of interest [2022-11-03 02:22:13,873 INFO L166 IcfgInterpreter]: Building call graph [2022-11-03 02:22:13,874 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-03 02:22:13,874 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-03 02:22:13,874 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-03 02:22:21,523 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 317 for LOIs [2022-11-03 02:22:21,634 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 44 for LOIs [2022-11-03 02:22:21,893 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 59 for LOIs [2022-11-03 02:22:22,107 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 33 for LOIs [2022-11-03 02:22:22,110 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-03 02:22:33,116 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '22657#(and (<= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1| 2147483647) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1| |timeShift_getWaterLevel_#res#1|) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1| 0)) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1| 0) (= ~methaneLevelCritical~0 0) (= |timeShift_getWaterLevel_~retValue_acc~5#1| |timeShift_getWaterLevel_#res#1|) (= ~head~0.offset 0) (<= 0 (+ |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1| 2147483648)) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~1#1|) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~1#1|) (= |timeShift_getWaterLevel_~retValue_acc~5#1| ~waterLevel~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1|) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-03 02:22:33,116 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-03 02:22:33,116 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-03 02:22:33,116 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 8, 9] total 31 [2022-11-03 02:22:33,116 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1787237359] [2022-11-03 02:22:33,116 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-03 02:22:33,117 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 31 states [2022-11-03 02:22:33,117 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 02:22:33,117 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 31 interpolants. [2022-11-03 02:22:33,119 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=304, Invalid=2776, Unknown=0, NotChecked=0, Total=3080 [2022-11-03 02:22:33,119 INFO L87 Difference]: Start difference. First operand 988 states and 1154 transitions. Second operand has 31 states, 30 states have (on average 4.266666666666667) internal successors, (128), 29 states have internal predecessors, (128), 11 states have call successors, (16), 7 states have call predecessors, (16), 10 states have return successors, (18), 12 states have call predecessors, (18), 9 states have call successors, (18) [2022-11-03 02:22:37,988 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 02:22:37,988 INFO L93 Difference]: Finished difference Result 1756 states and 2107 transitions. [2022-11-03 02:22:37,989 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 77 states. [2022-11-03 02:22:37,989 INFO L78 Accepts]: Start accepts. Automaton has has 31 states, 30 states have (on average 4.266666666666667) internal successors, (128), 29 states have internal predecessors, (128), 11 states have call successors, (16), 7 states have call predecessors, (16), 10 states have return successors, (18), 12 states have call predecessors, (18), 9 states have call successors, (18) Word has length 87 [2022-11-03 02:22:37,989 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 02:22:37,990 INFO L225 Difference]: With dead ends: 1756 [2022-11-03 02:22:37,990 INFO L226 Difference]: Without dead ends: 0 [2022-11-03 02:22:37,997 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 373 GetRequests, 244 SyntacticMatches, 8 SemanticMatches, 121 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 5485 ImplicationChecksByTransitivity, 14.6s TimeCoverageRelationStatistics Valid=1898, Invalid=13108, Unknown=0, NotChecked=0, Total=15006 [2022-11-03 02:22:37,997 INFO L413 NwaCegarLoop]: 64 mSDtfsCounter, 906 mSDsluCounter, 595 mSDsCounter, 0 mSdLazyCounter, 1804 mSolverCounterSat, 776 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 910 SdHoareTripleChecker+Valid, 501 SdHoareTripleChecker+Invalid, 2580 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 776 IncrementalHoareTripleChecker+Valid, 1804 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.5s IncrementalHoareTripleChecker+Time [2022-11-03 02:22:37,998 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [910 Valid, 501 Invalid, 2580 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [776 Valid, 1804 Invalid, 0 Unknown, 0 Unchecked, 1.5s Time] [2022-11-03 02:22:37,998 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-03 02:22:37,998 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-03 02:22:37,999 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 02:22:37,999 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-03 02:22:37,999 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 87 [2022-11-03 02:22:37,999 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 02:22:37,999 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-03 02:22:38,000 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 31 states, 30 states have (on average 4.266666666666667) internal successors, (128), 29 states have internal predecessors, (128), 11 states have call successors, (16), 7 states have call predecessors, (16), 10 states have return successors, (18), 12 states have call predecessors, (18), 9 states have call successors, (18) [2022-11-03 02:22:38,000 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-03 02:22:38,000 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-03 02:22:38,003 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-03 02:22:38,046 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2022-11-03 02:22:38,218 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2022-11-03 02:22:38,220 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-03 02:22:53,699 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 156 162) no Hoare annotation was computed. [2022-11-03 02:22:53,699 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 156 162) the Hoare annotation is: true [2022-11-03 02:22:53,699 INFO L895 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 398 409) the Hoare annotation is: (let ((.cse2 (= |old(~methaneLevelCritical~0)| 0)) (.cse6 (= ~methaneLevelCritical~0 0))) (let ((.cse3 (not .cse6)) (.cse0 (not (= ~waterLevel~0 1))) (.cse5 (not .cse2)) (.cse1 (not (= ~pumpRunning~0 0))) (.cse4 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse2 (not (<= 2 ~waterLevel~0)) .cse3 .cse4 (= ~pumpRunning~0 1)) (or .cse0 .cse5 .cse1 .cse6 .cse4) (or .cse5 .cse1 .cse6 (not (= 2 ~waterLevel~0)) .cse4)))) [2022-11-03 02:22:53,700 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 398 409) no Hoare annotation was computed. [2022-11-03 02:22:53,700 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 514 543) no Hoare annotation was computed. [2022-11-03 02:22:53,700 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 514 543) the Hoare annotation is: true [2022-11-03 02:22:53,700 INFO L902 garLoopResultBuilder]: At program point L539(lines 514 543) the Hoare annotation is: true [2022-11-03 02:22:53,700 INFO L899 garLoopResultBuilder]: For program point L535(line 535) no Hoare annotation was computed. [2022-11-03 02:22:53,700 INFO L899 garLoopResultBuilder]: For program point L528(lines 528 532) no Hoare annotation was computed. [2022-11-03 02:22:53,700 INFO L902 garLoopResultBuilder]: At program point L528-1(lines 528 532) the Hoare annotation is: true [2022-11-03 02:22:53,701 INFO L902 garLoopResultBuilder]: At program point L524-2(lines 524 538) the Hoare annotation is: true [2022-11-03 02:22:53,701 INFO L902 garLoopResultBuilder]: At program point L520(line 520) the Hoare annotation is: true [2022-11-03 02:22:53,701 INFO L899 garLoopResultBuilder]: For program point L520-1(line 520) no Hoare annotation was computed. [2022-11-03 02:22:53,701 INFO L895 garLoopResultBuilder]: At program point L209(line 209) the Hoare annotation is: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse1 (= 0 ~systemActive~0))) (and (or (not .cse0) (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse1 (= |old(~waterLevel~0)| 0)) (or .cse0 .cse1 (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-03 02:22:53,702 INFO L895 garLoopResultBuilder]: At program point L209-1(lines 190 214) the Hoare annotation is: (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse4 (= |old(~pumpRunning~0)| 0)) (.cse5 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (= 0 ~systemActive~0))) (let ((.cse6 (and (or (not .cse1) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse4 .cse5 (not .cse2))) (.cse0 (= ~pumpRunning~0 0)) (.cse3 (not (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 .cse1 .cse2 .cse3) (or (not .cse4) (and .cse0 .cse5) .cse6 .cse2 (= |old(~waterLevel~0)| 0)) (or .cse6 (let ((.cse7 (+ ~waterLevel~0 1))) (and .cse0 (= |timeShift_processEnvironment_~tmp~2#1| 1) (<= .cse7 |old(~waterLevel~0)|) (<= |old(~waterLevel~0)| .cse7))) .cse2 .cse3)))) [2022-11-03 02:22:53,702 INFO L895 garLoopResultBuilder]: At program point L143-1(lines 143 149) the Hoare annotation is: (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse4 (= |old(~pumpRunning~0)| 0)) (.cse5 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (= 0 ~systemActive~0))) (let ((.cse6 (and (or (not .cse1) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse4 .cse5 (not .cse2))) (.cse0 (= ~pumpRunning~0 0)) (.cse3 (not (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 .cse1 .cse2 .cse3) (or (not .cse4) (and .cse0 .cse5) .cse6 .cse2 (= |old(~waterLevel~0)| 0)) (or .cse6 (let ((.cse7 (+ ~waterLevel~0 1))) (and .cse0 (= |timeShift_processEnvironment_~tmp~2#1| 1) (<= .cse7 |old(~waterLevel~0)|) (<= |old(~waterLevel~0)| .cse7))) .cse2 .cse3)))) [2022-11-03 02:22:53,702 INFO L899 garLoopResultBuilder]: For program point L358(lines 358 364) no Hoare annotation was computed. [2022-11-03 02:22:53,702 INFO L895 garLoopResultBuilder]: At program point L354(lines 354 367) the Hoare annotation is: (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse4 (= |old(~pumpRunning~0)| 0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1| ~waterLevel~0)) (.cse2 (= 0 ~systemActive~0))) (let ((.cse5 (and (or (not .cse1) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse4 .cse6 .cse7 (not .cse2))) (.cse0 (= ~pumpRunning~0 0)) (.cse3 (not (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 .cse1 .cse2 .cse3) (or (not .cse4) .cse5 (and .cse0 .cse6 .cse7) .cse2 (= |old(~waterLevel~0)| 0)) (or .cse5 (let ((.cse8 (+ ~waterLevel~0 1))) (and .cse0 (= |timeShift_processEnvironment_~tmp~2#1| 1) (<= .cse8 |old(~waterLevel~0)|) (<= |old(~waterLevel~0)| .cse8) .cse7)) .cse2 .cse3)))) [2022-11-03 02:22:53,702 INFO L895 garLoopResultBuilder]: At program point L354-1(lines 346 370) the Hoare annotation is: (let ((.cse5 (= 0 ~systemActive~0))) (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse4 (not .cse5)) (.cse11 (= |old(~pumpRunning~0)| 0)) (.cse2 (= ~pumpRunning~0 0)) (.cse9 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1| ~waterLevel~0))) (let ((.cse0 (let ((.cse12 (+ ~waterLevel~0 1))) (and (or .cse11 (<= .cse12 |old(~waterLevel~0)|)) .cse2 (= |timeShift_processEnvironment_~tmp~2#1| 1) (<= |old(~waterLevel~0)| .cse12) .cse9))) (.cse8 (not .cse11)) (.cse7 (and (not (= ~waterLevel~0 1)) (or (not .cse1) (= ~pumpRunning~0 1)) .cse11 (<= 1 |timeShift___utac_acc__Specification4_spec__1_~tmp~6#1|) .cse3 .cse9 .cse4)) (.cse10 (= |old(~waterLevel~0)| 0)) (.cse6 (not (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 .cse1 (and .cse2 .cse3 .cse4) .cse5 .cse6) (or .cse0 .cse7 .cse5 .cse6) (or .cse8 .cse7 (and .cse2 .cse3 .cse9 .cse4) .cse5 .cse10) (or .cse8 .cse7 .cse5 .cse10 .cse6))))) [2022-11-03 02:22:53,703 INFO L899 garLoopResultBuilder]: For program point L136-1(lines 135 154) no Hoare annotation was computed. [2022-11-03 02:22:53,703 INFO L895 garLoopResultBuilder]: At program point L198(lines 198 206) the Hoare annotation is: (let ((.cse0 (= 0 ~systemActive~0)) (.cse1 (not (<= 2 |old(~waterLevel~0)|)))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (= |old(~waterLevel~0)| 0)) (or (and (not (= ~pumpRunning~0 0)) (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (= |timeShift_processEnvironment_~tmp~2#1| 1)) .cse0 .cse1) (or (not (= ~methaneLevelCritical~0 0)) (not (= |old(~pumpRunning~0)| 1)) .cse0 (= ~pumpRunning~0 1) .cse1))) [2022-11-03 02:22:53,703 INFO L895 garLoopResultBuilder]: At program point L194(lines 194 211) the Hoare annotation is: (let ((.cse5 (= ~pumpRunning~0 0)) (.cse1 (+ ~waterLevel~0 1))) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse2 (let ((.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (or (and .cse5 .cse6) (and (not .cse5) (let ((.cse7 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse7) .cse6) (and (= |old(~waterLevel~0)| .cse1) .cse7))))))) (.cse3 (= 0 ~systemActive~0)) (.cse4 (not (<= 2 |old(~waterLevel~0)|)))) (and (or (and (or .cse0 (<= .cse1 |old(~waterLevel~0)|)) .cse2) .cse3 .cse4) (or (not .cse0) .cse3 (= |old(~waterLevel~0)| 0) (and .cse5 .cse2)) (or (not (= ~methaneLevelCritical~0 0)) (not (= |old(~pumpRunning~0)| 1)) .cse3 (= ~pumpRunning~0 1) .cse4)))) [2022-11-03 02:22:53,703 INFO L895 garLoopResultBuilder]: At program point L979(line 979) the Hoare annotation is: (let ((.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (= |old(~waterLevel~0)| 0)) (or .cse0 (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-03 02:22:53,704 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 132 155) the Hoare annotation is: (let ((.cse0 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse1 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) .cse0) .cse1 (= |old(~waterLevel~0)| 0)) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0) .cse1 (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-03 02:22:53,704 INFO L895 garLoopResultBuilder]: At program point L204(line 204) the Hoare annotation is: (let ((.cse0 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (= |old(~waterLevel~0)| 0)) (or .cse0 (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-03 02:22:53,704 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 132 155) no Hoare annotation was computed. [2022-11-03 02:22:53,704 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 979) no Hoare annotation was computed. [2022-11-03 02:22:53,704 INFO L895 garLoopResultBuilder]: At program point L110(lines 63 111) the Hoare annotation is: false [2022-11-03 02:22:53,705 INFO L899 garLoopResultBuilder]: For program point L65(lines 64 109) no Hoare annotation was computed. [2022-11-03 02:22:53,705 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-03 02:22:53,705 INFO L895 garLoopResultBuilder]: At program point L86(line 86) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~7#1| ~systemActive~0)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and (= ~pumpRunning~0 0) .cse0 (<= 1 ~waterLevel~0) .cse1 .cse2))) [2022-11-03 02:22:53,705 INFO L895 garLoopResultBuilder]: At program point L107(lines 64 109) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~7#1| ~systemActive~0)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and (= ~pumpRunning~0 0) .cse0 (<= 1 ~waterLevel~0) .cse1 .cse2))) [2022-11-03 02:22:53,705 INFO L899 garLoopResultBuilder]: For program point L74(lines 74 80) no Hoare annotation was computed. [2022-11-03 02:22:53,705 INFO L899 garLoopResultBuilder]: For program point L74-1(lines 74 80) no Hoare annotation was computed. [2022-11-03 02:22:53,706 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-03 02:22:53,706 INFO L895 garLoopResultBuilder]: At program point L595(lines 595 602) the Hoare annotation is: (and (= |ULTIMATE.start_main_~tmp~7#1| 1) (= ~pumpRunning~0 0) (= ~methaneLevelCritical~0 0) (= ~waterLevel~0 1) (= |ULTIMATE.start_main_~tmp~7#1| ~systemActive~0)) [2022-11-03 02:22:53,706 INFO L902 garLoopResultBuilder]: At program point L595-2(lines 595 602) the Hoare annotation is: true [2022-11-03 02:22:53,706 INFO L895 garLoopResultBuilder]: At program point L100-2(lines 94 105) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~7#1| ~systemActive~0)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and (<= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and (= ~pumpRunning~0 0) .cse0 (= ~waterLevel~0 1) .cse1 .cse2))) [2022-11-03 02:22:53,706 INFO L899 garLoopResultBuilder]: For program point L84(lines 84 90) no Hoare annotation was computed. [2022-11-03 02:22:53,706 INFO L899 garLoopResultBuilder]: For program point L84-1(lines 84 90) no Hoare annotation was computed. [2022-11-03 02:22:53,707 INFO L902 garLoopResultBuilder]: At program point L113(lines 54 117) the Hoare annotation is: true [2022-11-03 02:22:53,707 INFO L895 garLoopResultBuilder]: At program point L76(line 76) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~7#1| ~systemActive~0)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and (= ~pumpRunning~0 0) .cse0 (<= 1 ~waterLevel~0) .cse1 .cse2))) [2022-11-03 02:22:53,707 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 164 188) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) (= 0 ~systemActive~0) (= ~waterLevel~0 0)) [2022-11-03 02:22:53,707 INFO L895 garLoopResultBuilder]: At program point L178(line 178) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 (and (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~1#1| 0)) .cse1 (= ~waterLevel~0 0)) (or .cse0 (not (<= 2 ~waterLevel~0)) .cse1))) [2022-11-03 02:22:53,707 INFO L895 garLoopResultBuilder]: At program point L172(lines 172 180) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (let ((.cse0 (< ~waterLevel~0 2))) (or (and .cse0 (= |processEnvironment__wrappee__highWaterSensor_~tmp~1#1| 0)) (and (not .cse0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~1#1| 1))))) (= 0 ~systemActive~0) (= ~waterLevel~0 0)) [2022-11-03 02:22:53,708 INFO L895 garLoopResultBuilder]: At program point L168(lines 168 185) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) (= 0 ~systemActive~0) (= ~waterLevel~0 0)) [2022-11-03 02:22:53,708 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 164 188) no Hoare annotation was computed. [2022-11-03 02:22:53,708 INFO L895 garLoopResultBuilder]: At program point L183(line 183) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= 0 ~systemActive~0) (= ~waterLevel~0 0)) [2022-11-03 02:22:53,708 INFO L899 garLoopResultBuilder]: For program point L183-1(lines 164 188) no Hoare annotation was computed. [2022-11-03 02:22:53,708 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 386 397) no Hoare annotation was computed. [2022-11-03 02:22:53,708 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 386 397) the Hoare annotation is: (let ((.cse0 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse1 (= 0 ~systemActive~0))) (and (or (and (= ~methaneLevelCritical~0 0) (not (= ~pumpRunning~0 1))) .cse0 .cse1 (not (<= 2 |old(~waterLevel~0)|))) (or (not (= ~pumpRunning~0 0)) (not (<= 1 |old(~waterLevel~0)|)) .cse0 .cse1))) [2022-11-03 02:22:53,712 INFO L444 BasicCegarLoop]: Path program histogram: [3, 2, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 02:22:53,714 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-03 02:22:53,738 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 03.11 02:22:53 BoogieIcfgContainer [2022-11-03 02:22:53,739 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-03 02:22:53,739 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-03 02:22:53,739 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-03 02:22:53,740 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-03 02:22:53,740 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 02:21:09" (3/4) ... [2022-11-03 02:22:53,743 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-03 02:22:53,748 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-03 02:22:53,748 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-03 02:22:53,748 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-03 02:22:53,749 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-03 02:22:53,749 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 02:22:53,749 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-03 02:22:53,755 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 79 nodes and edges [2022-11-03 02:22:53,756 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 27 nodes and edges [2022-11-03 02:22:53,757 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2022-11-03 02:22:53,757 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-11-03 02:22:53,758 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 2 nodes and edges [2022-11-03 02:22:53,758 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-03 02:22:53,759 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-03 02:22:53,782 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || 0 == systemActive) || \old(waterLevel) == 0) && (((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) || 0 == systemActive) || !(2 <= \old(waterLevel))) [2022-11-03 02:22:53,783 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0 || methaneLevelCritical == 0) || 0 == systemActive) || !(2 <= \old(waterLevel))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || (((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || \old(waterLevel) == 0)) && ((((((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && !(0 == systemActive)) || (((pumpRunning == 0 && tmp == 1) && waterLevel + 1 <= \old(waterLevel)) && \old(waterLevel) <= waterLevel + 1)) || 0 == systemActive) || !(2 <= \old(waterLevel))) [2022-11-03 02:22:53,783 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((\old(pumpRunning) == 0 || waterLevel + 1 <= \old(waterLevel)) && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) || 0 == systemActive) || !(2 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || 0 == systemActive) || \old(waterLevel) == 0) || (pumpRunning == 0 && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))))) && ((((!(methaneLevelCritical == 0) || !(\old(pumpRunning) == 1)) || 0 == systemActive) || pumpRunning == 1) || !(2 <= \old(waterLevel))) [2022-11-03 02:22:53,783 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0 || methaneLevelCritical == 0) || 0 == systemActive) || !(2 <= \old(waterLevel))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || (((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || \old(waterLevel) == 0)) && ((((((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && !(0 == systemActive)) || (((pumpRunning == 0 && tmp == 1) && waterLevel + 1 <= \old(waterLevel)) && \old(waterLevel) <= waterLevel + 1)) || 0 == systemActive) || !(2 <= \old(waterLevel))) [2022-11-03 02:22:53,784 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || 0 == systemActive) || waterLevel == 0 [2022-11-03 02:22:53,784 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0 || methaneLevelCritical == 0) || 0 == systemActive) || !(2 <= \old(waterLevel))) && ((((!(\old(pumpRunning) == 0) || ((((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && tmp == waterLevel)) || 0 == systemActive) || \old(waterLevel) == 0)) && (((((((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive)) || ((((pumpRunning == 0 && tmp == 1) && waterLevel + 1 <= \old(waterLevel)) && \old(waterLevel) <= waterLevel + 1) && tmp == waterLevel)) || 0 == systemActive) || !(2 <= \old(waterLevel))) [2022-11-03 02:22:53,785 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((((\old(pumpRunning) == 0 || waterLevel + 1 <= \old(waterLevel)) && pumpRunning == 0) && tmp == 1) && \old(waterLevel) <= waterLevel + 1) && tmp == waterLevel) || methaneLevelCritical == 0) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || !(2 <= \old(waterLevel))) && ((((((((\old(pumpRunning) == 0 || waterLevel + 1 <= \old(waterLevel)) && pumpRunning == 0) && tmp == 1) && \old(waterLevel) <= waterLevel + 1) && tmp == waterLevel) || ((((((!(waterLevel == 1) && (!(methaneLevelCritical == 0) || pumpRunning == 1)) && \old(pumpRunning) == 0) && 1 <= tmp) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || ((((((!(waterLevel == 1) && (!(methaneLevelCritical == 0) || pumpRunning == 1)) && \old(pumpRunning) == 0) && 1 <= tmp) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || \old(waterLevel) == 0)) && ((((!(\old(pumpRunning) == 0) || ((((((!(waterLevel == 1) && (!(methaneLevelCritical == 0) || pumpRunning == 1)) && \old(pumpRunning) == 0) && 1 <= tmp) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || \old(waterLevel) == 0) || !(2 <= \old(waterLevel))) [2022-11-03 02:22:53,785 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((!(\old(pumpRunning) == 0) || 0 == systemActive) || \old(waterLevel) == 0) && (0 == systemActive || !(2 <= \old(waterLevel))) [2022-11-03 02:22:53,785 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || 0 == systemActive) || \old(waterLevel) == 0) && ((((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && tmp == 1) || 0 == systemActive) || !(2 <= \old(waterLevel)))) && ((((!(methaneLevelCritical == 0) || !(\old(pumpRunning) == 1)) || 0 == systemActive) || pumpRunning == 1) || !(2 <= \old(waterLevel))) [2022-11-03 02:22:53,786 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && ((waterLevel < 2 && tmp == 0) || (!(waterLevel < 2) && tmp == 1)))) || 0 == systemActive) || waterLevel == 0 [2022-11-03 02:22:53,808 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/witness.graphml [2022-11-03 02:22:53,808 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-03 02:22:53,809 INFO L158 Benchmark]: Toolchain (without parser) took 105329.57ms. Allocated memory was 130.0MB in the beginning and 824.2MB in the end (delta: 694.2MB). Free memory was 97.4MB in the beginning and 583.4MB in the end (delta: -486.0MB). Peak memory consumption was 206.5MB. Max. memory is 16.1GB. [2022-11-03 02:22:53,809 INFO L158 Benchmark]: CDTParser took 0.24ms. Allocated memory is still 104.9MB. Free memory is still 57.7MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-03 02:22:53,809 INFO L158 Benchmark]: CACSL2BoogieTranslator took 460.84ms. Allocated memory is still 130.0MB. Free memory was 97.4MB in the beginning and 95.6MB in the end (delta: 1.8MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2022-11-03 02:22:53,810 INFO L158 Benchmark]: Boogie Procedure Inliner took 78.33ms. Allocated memory is still 130.0MB. Free memory was 95.6MB in the beginning and 93.0MB in the end (delta: 2.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-03 02:22:53,810 INFO L158 Benchmark]: Boogie Preprocessor took 54.81ms. Allocated memory is still 130.0MB. Free memory was 93.0MB in the beginning and 91.4MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-03 02:22:53,811 INFO L158 Benchmark]: RCFGBuilder took 811.74ms. Allocated memory is still 130.0MB. Free memory was 91.4MB in the beginning and 102.4MB in the end (delta: -11.1MB). Peak memory consumption was 34.7MB. Max. memory is 16.1GB. [2022-11-03 02:22:53,811 INFO L158 Benchmark]: TraceAbstraction took 103847.37ms. Allocated memory was 130.0MB in the beginning and 824.2MB in the end (delta: 694.2MB). Free memory was 101.8MB in the beginning and 589.7MB in the end (delta: -487.9MB). Peak memory consumption was 510.3MB. Max. memory is 16.1GB. [2022-11-03 02:22:53,811 INFO L158 Benchmark]: Witness Printer took 69.06ms. Allocated memory is still 824.2MB. Free memory was 589.7MB in the beginning and 583.4MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-03 02:22:53,813 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.24ms. Allocated memory is still 104.9MB. Free memory is still 57.7MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 460.84ms. Allocated memory is still 130.0MB. Free memory was 97.4MB in the beginning and 95.6MB in the end (delta: 1.8MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 78.33ms. Allocated memory is still 130.0MB. Free memory was 95.6MB in the beginning and 93.0MB in the end (delta: 2.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 54.81ms. Allocated memory is still 130.0MB. Free memory was 93.0MB in the beginning and 91.4MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 811.74ms. Allocated memory is still 130.0MB. Free memory was 91.4MB in the beginning and 102.4MB in the end (delta: -11.1MB). Peak memory consumption was 34.7MB. Max. memory is 16.1GB. * TraceAbstraction took 103847.37ms. Allocated memory was 130.0MB in the beginning and 824.2MB in the end (delta: 694.2MB). Free memory was 101.8MB in the beginning and 589.7MB in the end (delta: -487.9MB). Peak memory consumption was 510.3MB. Max. memory is 16.1GB. * Witness Printer took 69.06ms. Allocated memory is still 824.2MB. Free memory was 589.7MB in the beginning and 583.4MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 979]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 7 procedures, 51 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 103.7s, OverallIterations: 13, TraceHistogramMax: 4, PathProgramHistogramMax: 3, EmptinessCheckTime: 0.0s, AutomataDifference: 16.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 15.5s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3947 SdHoareTripleChecker+Valid, 5.9s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 3913 mSDsluCounter, 2972 SdHoareTripleChecker+Invalid, 4.9s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2913 mSDsCounter, 2723 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 6398 IncrementalHoareTripleChecker+Invalid, 9121 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 2723 mSolverCounterUnsat, 727 mSDtfsCounter, 6398 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1361 GetRequests, 894 SyntacticMatches, 12 SemanticMatches, 455 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16362 ImplicationChecksByTransitivity, 41.9s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1028occurred in iteration=11, InterpolantAutomatonStates: 299, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.8s AutomataMinimizationTime, 13 MinimizatonAttempts, 783 StatesRemovedByMinimization, 9 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 32 LocationsWithAnnotation, 2603 PreInvPairs, 3174 NumberOfFragments, 1185 HoareAnnotationTreeSize, 2603 FomulaSimplifications, 65759 FormulaSimplificationTreeSizeReduction, 4.1s HoareSimplificationTime, 32 FomulaSimplificationsInter, 154853 FormulaSimplificationTreeSizeReductionInter, 11.2s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.2s SsaConstructionTime, 0.6s SatisfiabilityAnalysisTime, 8.9s InterpolantComputationTime, 952 NumberOfCodeBlocks, 872 NumberOfCodeBlocksAsserted, 21 NumberOfCheckSat, 1252 ConstructedInterpolants, 0 QuantifiedInterpolants, 5409 SizeOfPredicates, 65 NumberOfNonLiveVariables, 2624 ConjunctsInSsa, 144 ConjunctsInUnsatCore, 24 InterpolantComputations, 10 PerfectInterpolantSequences, 688/951 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 198]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || 0 == systemActive) || \old(waterLevel) == 0) && ((((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && tmp == 1) || 0 == systemActive) || !(2 <= \old(waterLevel)))) && ((((!(methaneLevelCritical == 0) || !(\old(pumpRunning) == 1)) || 0 == systemActive) || pumpRunning == 1) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 63]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 524]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 514]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 190]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0 || methaneLevelCritical == 0) || 0 == systemActive) || !(2 <= \old(waterLevel))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || (((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || \old(waterLevel) == 0)) && ((((((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && !(0 == systemActive)) || (((pumpRunning == 0 && tmp == 1) && waterLevel + 1 <= \old(waterLevel)) && \old(waterLevel) <= waterLevel + 1)) || 0 == systemActive) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 595]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 132]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || 0 == systemActive) || \old(waterLevel) == 0) && (((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) || 0 == systemActive) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 194]: Loop Invariant Derived loop invariant: (((((\old(pumpRunning) == 0 || waterLevel + 1 <= \old(waterLevel)) && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) || 0 == systemActive) || !(2 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || 0 == systemActive) || \old(waterLevel) == 0) || (pumpRunning == 0 && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))))) && ((((!(methaneLevelCritical == 0) || !(\old(pumpRunning) == 1)) || 0 == systemActive) || pumpRunning == 1) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 143]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0 || methaneLevelCritical == 0) || 0 == systemActive) || !(2 <= \old(waterLevel))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || (((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || \old(waterLevel) == 0)) && ((((((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && !(0 == systemActive)) || (((pumpRunning == 0 && tmp == 1) && waterLevel + 1 <= \old(waterLevel)) && \old(waterLevel) <= waterLevel + 1)) || 0 == systemActive) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 346]: Loop Invariant Derived loop invariant: (((((((((((\old(pumpRunning) == 0 || waterLevel + 1 <= \old(waterLevel)) && pumpRunning == 0) && tmp == 1) && \old(waterLevel) <= waterLevel + 1) && tmp == waterLevel) || methaneLevelCritical == 0) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || !(2 <= \old(waterLevel))) && ((((((((\old(pumpRunning) == 0 || waterLevel + 1 <= \old(waterLevel)) && pumpRunning == 0) && tmp == 1) && \old(waterLevel) <= waterLevel + 1) && tmp == waterLevel) || ((((((!(waterLevel == 1) && (!(methaneLevelCritical == 0) || pumpRunning == 1)) && \old(pumpRunning) == 0) && 1 <= tmp) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || ((((((!(waterLevel == 1) && (!(methaneLevelCritical == 0) || pumpRunning == 1)) && \old(pumpRunning) == 0) && 1 <= tmp) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || \old(waterLevel) == 0)) && ((((!(\old(pumpRunning) == 0) || ((((((!(waterLevel == 1) && (!(methaneLevelCritical == 0) || pumpRunning == 1)) && \old(pumpRunning) == 0) && 1 <= tmp) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || 0 == systemActive) || \old(waterLevel) == 0) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 64]: Loop Invariant Derived loop invariant: (((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && splverifierCounter == 0) && tmp == systemActive) && !(0 == systemActive)) || ((((pumpRunning == 0 && splverifierCounter == 0) && 1 <= waterLevel) && tmp == systemActive) && !(0 == systemActive)) - InvariantResult [Line: 54]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 354]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0 || methaneLevelCritical == 0) || 0 == systemActive) || !(2 <= \old(waterLevel))) && ((((!(\old(pumpRunning) == 0) || ((((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive))) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && tmp == waterLevel)) || 0 == systemActive) || \old(waterLevel) == 0)) && (((((((((!(methaneLevelCritical == 0) || pumpRunning == 1) && 2 <= waterLevel) && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel) && tmp == waterLevel) && !(0 == systemActive)) || ((((pumpRunning == 0 && tmp == 1) && waterLevel + 1 <= \old(waterLevel)) && \old(waterLevel) <= waterLevel + 1) && tmp == waterLevel)) || 0 == systemActive) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 595]: Loop Invariant Derived loop invariant: (((tmp == 1 && pumpRunning == 0) && methaneLevelCritical == 0) && waterLevel == 1) && tmp == systemActive - InvariantResult [Line: 979]: Loop Invariant Derived loop invariant: ((!(\old(pumpRunning) == 0) || 0 == systemActive) || \old(waterLevel) == 0) && (0 == systemActive || !(2 <= \old(waterLevel))) - InvariantResult [Line: 172]: Loop Invariant Derived loop invariant: ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && ((waterLevel < 2 && tmp == 0) || (!(waterLevel < 2) && tmp == 1)))) || 0 == systemActive) || waterLevel == 0 - InvariantResult [Line: 168]: Loop Invariant Derived loop invariant: ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || 0 == systemActive) || waterLevel == 0 RESULT: Ultimate proved your program to be correct! [2022-11-03 02:22:53,874 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_862c83c4-70b6-4d3c-a611-a3f591bb0314/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE