./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 5e519f3a Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 68cd47586ea836a40d34f69dc7bca714ffc0af5c5bf2f7fbd8cfbbd6f1019685 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-5e519f3 [2022-11-03 01:53:49,084 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-03 01:53:49,086 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-03 01:53:49,138 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-03 01:53:49,138 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-03 01:53:49,139 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-03 01:53:49,141 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-03 01:53:49,143 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-03 01:53:49,145 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-03 01:53:49,145 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-03 01:53:49,147 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-03 01:53:49,157 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-03 01:53:49,158 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-03 01:53:49,164 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-03 01:53:49,167 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-03 01:53:49,169 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-03 01:53:49,170 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-03 01:53:49,172 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-03 01:53:49,174 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-03 01:53:49,181 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-03 01:53:49,183 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-03 01:53:49,185 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-03 01:53:49,188 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-03 01:53:49,189 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-03 01:53:49,195 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-03 01:53:49,195 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-03 01:53:49,196 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-03 01:53:49,197 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-03 01:53:49,197 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-03 01:53:49,198 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-03 01:53:49,198 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-03 01:53:49,199 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-03 01:53:49,200 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-03 01:53:49,201 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-03 01:53:49,201 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-03 01:53:49,202 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-03 01:53:49,202 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-03 01:53:49,203 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-03 01:53:49,212 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-03 01:53:49,213 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-03 01:53:49,214 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-03 01:53:49,215 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-03 01:53:49,251 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-03 01:53:49,253 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-03 01:53:49,254 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-03 01:53:49,254 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-03 01:53:49,255 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-03 01:53:49,255 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-03 01:53:49,256 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-03 01:53:49,256 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-03 01:53:49,256 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-03 01:53:49,256 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-03 01:53:49,257 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-03 01:53:49,258 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-03 01:53:49,258 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-03 01:53:49,258 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-03 01:53:49,258 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-03 01:53:49,259 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-03 01:53:49,259 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-03 01:53:49,259 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-03 01:53:49,260 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-03 01:53:49,260 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-03 01:53:49,260 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-03 01:53:49,260 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-03 01:53:49,261 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-03 01:53:49,262 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-03 01:53:49,262 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-03 01:53:49,263 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-03 01:53:49,263 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-03 01:53:49,263 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-03 01:53:49,263 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-03 01:53:49,264 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-03 01:53:49,264 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-03 01:53:49,264 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-03 01:53:49,264 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-03 01:53:49,265 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-03 01:53:49,265 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-03 01:53:49,265 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-03 01:53:49,265 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-03 01:53:49,266 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-03 01:53:49,266 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-03 01:53:49,266 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-03 01:53:49,266 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-03 01:53:49,267 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 68cd47586ea836a40d34f69dc7bca714ffc0af5c5bf2f7fbd8cfbbd6f1019685 [2022-11-03 01:53:49,594 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-03 01:53:49,627 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-03 01:53:49,629 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-03 01:53:49,631 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-03 01:53:49,631 INFO L275 PluginConnector]: CDTParser initialized [2022-11-03 01:53:49,633 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/../../sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c [2022-11-03 01:53:49,704 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/data/bd0add485/3bb70545385c4321bcd6d2334aa172df/FLAG3e1989dd2 [2022-11-03 01:53:50,278 INFO L306 CDTParser]: Found 1 translation units. [2022-11-03 01:53:50,279 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c [2022-11-03 01:53:50,290 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/data/bd0add485/3bb70545385c4321bcd6d2334aa172df/FLAG3e1989dd2 [2022-11-03 01:53:50,602 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/data/bd0add485/3bb70545385c4321bcd6d2334aa172df [2022-11-03 01:53:50,604 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-03 01:53:50,606 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-03 01:53:50,608 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-03 01:53:50,608 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-03 01:53:50,612 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-03 01:53:50,613 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 03.11 01:53:50" (1/1) ... [2022-11-03 01:53:50,614 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@6544d98c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:50, skipping insertion in model container [2022-11-03 01:53:50,614 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 03.11 01:53:50" (1/1) ... [2022-11-03 01:53:50,621 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-03 01:53:50,665 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-03 01:53:50,930 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c[9171,9184] [2022-11-03 01:53:50,977 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-03 01:53:50,985 INFO L203 MainTranslator]: Completed pre-run [2022-11-03 01:53:51,048 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c[9171,9184] [2022-11-03 01:53:51,095 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-03 01:53:51,119 INFO L208 MainTranslator]: Completed translation [2022-11-03 01:53:51,127 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51 WrapperNode [2022-11-03 01:53:51,127 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-03 01:53:51,129 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-03 01:53:51,129 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-03 01:53:51,129 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-03 01:53:51,137 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,162 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,204 INFO L138 Inliner]: procedures = 57, calls = 158, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 283 [2022-11-03 01:53:51,206 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-03 01:53:51,207 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-03 01:53:51,208 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-03 01:53:51,208 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-03 01:53:51,218 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,218 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,228 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,228 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,242 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,246 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,250 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,251 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,253 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-03 01:53:51,254 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-03 01:53:51,254 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-03 01:53:51,254 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-03 01:53:51,255 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (1/1) ... [2022-11-03 01:53:51,276 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-03 01:53:51,287 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 01:53:51,305 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-03 01:53:51,315 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-03 01:53:51,367 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-03 01:53:51,367 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-03 01:53:51,367 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-03 01:53:51,367 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-03 01:53:51,367 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-03 01:53:51,367 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-03 01:53:51,367 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-03 01:53:51,368 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 01:53:51,368 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 01:53:51,368 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-03 01:53:51,368 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-03 01:53:51,368 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-03 01:53:51,368 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-03 01:53:51,368 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-03 01:53:51,368 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-03 01:53:51,369 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-03 01:53:51,369 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-03 01:53:51,369 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-03 01:53:51,513 INFO L235 CfgBuilder]: Building ICFG [2022-11-03 01:53:51,515 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-03 01:53:51,932 INFO L276 CfgBuilder]: Performing block encoding [2022-11-03 01:53:52,062 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-03 01:53:52,063 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-03 01:53:52,065 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 01:53:52 BoogieIcfgContainer [2022-11-03 01:53:52,065 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-03 01:53:52,068 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-03 01:53:52,068 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-03 01:53:52,071 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-03 01:53:52,071 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 03.11 01:53:50" (1/3) ... [2022-11-03 01:53:52,072 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6db48648 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 03.11 01:53:52, skipping insertion in model container [2022-11-03 01:53:52,072 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.11 01:53:51" (2/3) ... [2022-11-03 01:53:52,073 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6db48648 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 03.11 01:53:52, skipping insertion in model container [2022-11-03 01:53:52,073 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 01:53:52" (3/3) ... [2022-11-03 01:53:52,074 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product59.cil.c [2022-11-03 01:53:52,092 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-03 01:53:52,093 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-03 01:53:52,167 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-03 01:53:52,182 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@136050aa, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-03 01:53:52,210 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-03 01:53:52,233 INFO L276 IsEmpty]: Start isEmpty. Operand has 59 states, 38 states have (on average 1.4736842105263157) internal successors, (56), 47 states have internal predecessors, (56), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 9 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-03 01:53:52,243 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2022-11-03 01:53:52,243 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:53:52,244 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:53:52,245 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:53:52,264 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:53:52,282 INFO L85 PathProgramCache]: Analyzing trace with hash 1369029533, now seen corresponding path program 1 times [2022-11-03 01:53:52,293 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:53:52,294 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2080281874] [2022-11-03 01:53:52,294 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:52,295 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:53:52,434 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:52,503 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 01:53:52,504 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:53:52,504 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2080281874] [2022-11-03 01:53:52,504 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2080281874] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:53:52,505 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 01:53:52,505 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-03 01:53:52,506 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1518749453] [2022-11-03 01:53:52,507 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:53:52,511 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-03 01:53:52,511 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:53:52,538 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-03 01:53:52,538 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-03 01:53:52,541 INFO L87 Difference]: Start difference. First operand has 59 states, 38 states have (on average 1.4736842105263157) internal successors, (56), 47 states have internal predecessors, (56), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 9 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:53:52,605 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:53:52,605 INFO L93 Difference]: Finished difference Result 116 states and 161 transitions. [2022-11-03 01:53:52,606 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-03 01:53:52,608 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 12 [2022-11-03 01:53:52,608 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:53:52,622 INFO L225 Difference]: With dead ends: 116 [2022-11-03 01:53:52,622 INFO L226 Difference]: Without dead ends: 54 [2022-11-03 01:53:52,627 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-03 01:53:52,639 INFO L413 NwaCegarLoop]: 60 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 60 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-03 01:53:52,640 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 60 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-03 01:53:52,657 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 54 states. [2022-11-03 01:53:52,688 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 54 to 54. [2022-11-03 01:53:52,689 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 54 states, 35 states have (on average 1.3714285714285714) internal successors, (48), 43 states have internal predecessors, (48), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-03 01:53:52,691 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 54 states to 54 states and 71 transitions. [2022-11-03 01:53:52,693 INFO L78 Accepts]: Start accepts. Automaton has 54 states and 71 transitions. Word has length 12 [2022-11-03 01:53:52,693 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:53:52,693 INFO L495 AbstractCegarLoop]: Abstraction has 54 states and 71 transitions. [2022-11-03 01:53:52,693 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:53:52,693 INFO L276 IsEmpty]: Start isEmpty. Operand 54 states and 71 transitions. [2022-11-03 01:53:52,695 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2022-11-03 01:53:52,695 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:53:52,696 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:53:52,697 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-03 01:53:52,697 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:53:52,698 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:53:52,698 INFO L85 PathProgramCache]: Analyzing trace with hash -410986028, now seen corresponding path program 1 times [2022-11-03 01:53:52,698 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:53:52,698 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [425133651] [2022-11-03 01:53:52,698 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:52,699 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:53:52,742 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:52,824 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 01:53:52,825 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:53:52,825 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [425133651] [2022-11-03 01:53:52,825 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [425133651] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:53:52,825 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 01:53:52,826 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-03 01:53:52,826 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1866339843] [2022-11-03 01:53:52,826 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:53:52,827 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-03 01:53:52,827 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:53:52,828 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-03 01:53:52,828 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 01:53:52,828 INFO L87 Difference]: Start difference. First operand 54 states and 71 transitions. Second operand has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:53:52,884 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:53:52,885 INFO L93 Difference]: Finished difference Result 80 states and 104 transitions. [2022-11-03 01:53:52,885 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-03 01:53:52,886 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 13 [2022-11-03 01:53:52,886 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:53:52,887 INFO L225 Difference]: With dead ends: 80 [2022-11-03 01:53:52,887 INFO L226 Difference]: Without dead ends: 46 [2022-11-03 01:53:52,888 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-03 01:53:52,889 INFO L413 NwaCegarLoop]: 46 mSDtfsCounter, 14 mSDsluCounter, 40 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 75 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-03 01:53:52,890 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 75 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-03 01:53:52,890 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 46 states. [2022-11-03 01:53:52,895 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 46 to 46. [2022-11-03 01:53:52,895 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 46 states, 30 states have (on average 1.4) internal successors, (42), 38 states have internal predecessors, (42), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 6 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-03 01:53:52,897 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 46 states to 46 states and 60 transitions. [2022-11-03 01:53:52,897 INFO L78 Accepts]: Start accepts. Automaton has 46 states and 60 transitions. Word has length 13 [2022-11-03 01:53:52,897 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:53:52,897 INFO L495 AbstractCegarLoop]: Abstraction has 46 states and 60 transitions. [2022-11-03 01:53:52,898 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:53:52,898 INFO L276 IsEmpty]: Start isEmpty. Operand 46 states and 60 transitions. [2022-11-03 01:53:52,899 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2022-11-03 01:53:52,899 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:53:52,899 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:53:52,899 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-03 01:53:52,899 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:53:52,900 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:53:52,900 INFO L85 PathProgramCache]: Analyzing trace with hash -1528647160, now seen corresponding path program 1 times [2022-11-03 01:53:52,900 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:53:52,901 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1154093313] [2022-11-03 01:53:52,901 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:52,901 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:53:52,918 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:53,058 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 01:53:53,058 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:53:53,058 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1154093313] [2022-11-03 01:53:53,058 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1154093313] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:53:53,059 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 01:53:53,059 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-03 01:53:53,059 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2069917408] [2022-11-03 01:53:53,059 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:53:53,059 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-03 01:53:53,060 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:53:53,060 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-03 01:53:53,060 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-03 01:53:53,061 INFO L87 Difference]: Start difference. First operand 46 states and 60 transitions. Second operand has 4 states, 4 states have (on average 3.75) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:53:53,242 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:53:53,242 INFO L93 Difference]: Finished difference Result 133 states and 180 transitions. [2022-11-03 01:53:53,243 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-03 01:53:53,243 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 3.75) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 16 [2022-11-03 01:53:53,244 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:53:53,245 INFO L225 Difference]: With dead ends: 133 [2022-11-03 01:53:53,245 INFO L226 Difference]: Without dead ends: 89 [2022-11-03 01:53:53,246 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-03 01:53:53,247 INFO L413 NwaCegarLoop]: 54 mSDtfsCounter, 74 mSDsluCounter, 95 mSDsCounter, 0 mSdLazyCounter, 69 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 74 SdHoareTripleChecker+Valid, 126 SdHoareTripleChecker+Invalid, 78 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 69 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 01:53:53,248 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [74 Valid, 126 Invalid, 78 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 69 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 01:53:53,249 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 89 states. [2022-11-03 01:53:53,262 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 89 to 72. [2022-11-03 01:53:53,262 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 72 states, 48 states have (on average 1.3958333333333333) internal successors, (67), 59 states have internal predecessors, (67), 13 states have call successors, (13), 10 states have call predecessors, (13), 10 states have return successors, (14), 9 states have call predecessors, (14), 13 states have call successors, (14) [2022-11-03 01:53:53,264 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 72 states to 72 states and 94 transitions. [2022-11-03 01:53:53,264 INFO L78 Accepts]: Start accepts. Automaton has 72 states and 94 transitions. Word has length 16 [2022-11-03 01:53:53,264 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:53:53,264 INFO L495 AbstractCegarLoop]: Abstraction has 72 states and 94 transitions. [2022-11-03 01:53:53,264 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 3.75) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:53:53,265 INFO L276 IsEmpty]: Start isEmpty. Operand 72 states and 94 transitions. [2022-11-03 01:53:53,266 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 20 [2022-11-03 01:53:53,266 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:53:53,266 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:53:53,266 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-03 01:53:53,267 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:53:53,267 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:53:53,267 INFO L85 PathProgramCache]: Analyzing trace with hash 1293336084, now seen corresponding path program 1 times [2022-11-03 01:53:53,267 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:53:53,268 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1975877779] [2022-11-03 01:53:53,268 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:53,268 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:53:53,287 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:53,512 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 01:53:53,513 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:53:53,513 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1975877779] [2022-11-03 01:53:53,513 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1975877779] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:53:53,514 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 01:53:53,514 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-03 01:53:53,514 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2057135933] [2022-11-03 01:53:53,514 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:53:53,515 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-03 01:53:53,515 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:53:53,515 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-03 01:53:53,515 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-11-03 01:53:53,516 INFO L87 Difference]: Start difference. First operand 72 states and 94 transitions. Second operand has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:53:53,663 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:53:53,663 INFO L93 Difference]: Finished difference Result 222 states and 298 transitions. [2022-11-03 01:53:53,663 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-11-03 01:53:53,664 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19 [2022-11-03 01:53:53,664 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:53:53,666 INFO L225 Difference]: With dead ends: 222 [2022-11-03 01:53:53,666 INFO L226 Difference]: Without dead ends: 152 [2022-11-03 01:53:53,667 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2022-11-03 01:53:53,668 INFO L413 NwaCegarLoop]: 56 mSDtfsCounter, 65 mSDsluCounter, 183 mSDsCounter, 0 mSdLazyCounter, 82 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 65 SdHoareTripleChecker+Valid, 216 SdHoareTripleChecker+Invalid, 93 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 82 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 01:53:53,669 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [65 Valid, 216 Invalid, 93 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 82 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 01:53:53,670 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 152 states. [2022-11-03 01:53:53,692 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 152 to 143. [2022-11-03 01:53:53,692 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 143 states, 101 states have (on average 1.3366336633663367) internal successors, (135), 116 states have internal predecessors, (135), 21 states have call successors, (21), 18 states have call predecessors, (21), 20 states have return successors, (26), 19 states have call predecessors, (26), 21 states have call successors, (26) [2022-11-03 01:53:53,694 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 143 states to 143 states and 182 transitions. [2022-11-03 01:53:53,694 INFO L78 Accepts]: Start accepts. Automaton has 143 states and 182 transitions. Word has length 19 [2022-11-03 01:53:53,695 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:53:53,695 INFO L495 AbstractCegarLoop]: Abstraction has 143 states and 182 transitions. [2022-11-03 01:53:53,695 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:53:53,695 INFO L276 IsEmpty]: Start isEmpty. Operand 143 states and 182 transitions. [2022-11-03 01:53:53,696 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2022-11-03 01:53:53,697 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:53:53,697 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:53:53,697 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-03 01:53:53,697 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:53:53,698 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:53:53,698 INFO L85 PathProgramCache]: Analyzing trace with hash -1362301905, now seen corresponding path program 1 times [2022-11-03 01:53:53,698 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:53:53,698 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [686433626] [2022-11-03 01:53:53,698 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:53,698 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:53:53,713 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:54,091 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 01:53:54,091 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:53:54,092 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [686433626] [2022-11-03 01:53:54,092 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [686433626] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:53:54,092 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 01:53:54,092 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-11-03 01:53:54,092 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1392294774] [2022-11-03 01:53:54,094 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:53:54,095 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-11-03 01:53:54,098 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:53:54,099 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-11-03 01:53:54,099 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-11-03 01:53:54,100 INFO L87 Difference]: Start difference. First operand 143 states and 182 transitions. Second operand has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 01:53:54,621 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:53:54,621 INFO L93 Difference]: Finished difference Result 396 states and 525 transitions. [2022-11-03 01:53:54,622 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-11-03 01:53:54,622 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 22 [2022-11-03 01:53:54,622 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:53:54,625 INFO L225 Difference]: With dead ends: 396 [2022-11-03 01:53:54,625 INFO L226 Difference]: Without dead ends: 326 [2022-11-03 01:53:54,626 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=86, Unknown=0, NotChecked=0, Total=132 [2022-11-03 01:53:54,627 INFO L413 NwaCegarLoop]: 86 mSDtfsCounter, 197 mSDsluCounter, 242 mSDsCounter, 0 mSdLazyCounter, 333 mSolverCounterSat, 75 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 209 SdHoareTripleChecker+Valid, 293 SdHoareTripleChecker+Invalid, 408 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 75 IncrementalHoareTripleChecker+Valid, 333 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-03 01:53:54,627 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [209 Valid, 293 Invalid, 408 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [75 Valid, 333 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-03 01:53:54,628 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 326 states. [2022-11-03 01:53:54,691 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 326 to 291. [2022-11-03 01:53:54,692 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 291 states, 207 states have (on average 1.3043478260869565) internal successors, (270), 234 states have internal predecessors, (270), 42 states have call successors, (42), 36 states have call predecessors, (42), 41 states have return successors, (55), 40 states have call predecessors, (55), 42 states have call successors, (55) [2022-11-03 01:53:54,695 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 291 states to 291 states and 367 transitions. [2022-11-03 01:53:54,695 INFO L78 Accepts]: Start accepts. Automaton has 291 states and 367 transitions. Word has length 22 [2022-11-03 01:53:54,696 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:53:54,696 INFO L495 AbstractCegarLoop]: Abstraction has 291 states and 367 transitions. [2022-11-03 01:53:54,696 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-03 01:53:54,696 INFO L276 IsEmpty]: Start isEmpty. Operand 291 states and 367 transitions. [2022-11-03 01:53:54,699 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2022-11-03 01:53:54,699 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:53:54,699 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:53:54,699 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-03 01:53:54,700 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:53:54,700 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:53:54,700 INFO L85 PathProgramCache]: Analyzing trace with hash 1017599571, now seen corresponding path program 1 times [2022-11-03 01:53:54,700 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:53:54,700 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [106085006] [2022-11-03 01:53:54,701 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:54,701 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:53:54,715 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:54,749 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 01:53:54,750 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:53:54,750 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [106085006] [2022-11-03 01:53:54,750 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [106085006] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:53:54,750 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 01:53:54,751 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-03 01:53:54,751 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [858038002] [2022-11-03 01:53:54,751 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:53:54,753 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-03 01:53:54,754 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:53:54,755 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-03 01:53:54,755 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-03 01:53:54,755 INFO L87 Difference]: Start difference. First operand 291 states and 367 transitions. Second operand has 4 states, 3 states have (on average 13.333333333333334) internal successors, (40), 4 states have internal predecessors, (40), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-03 01:53:54,873 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:53:54,873 INFO L93 Difference]: Finished difference Result 554 states and 699 transitions. [2022-11-03 01:53:54,873 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-03 01:53:54,874 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 13.333333333333334) internal successors, (40), 4 states have internal predecessors, (40), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 47 [2022-11-03 01:53:54,874 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:53:54,875 INFO L225 Difference]: With dead ends: 554 [2022-11-03 01:53:54,875 INFO L226 Difference]: Without dead ends: 214 [2022-11-03 01:53:54,877 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-03 01:53:54,878 INFO L413 NwaCegarLoop]: 69 mSDtfsCounter, 84 mSDsluCounter, 63 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 84 SdHoareTripleChecker+Valid, 112 SdHoareTripleChecker+Invalid, 78 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 01:53:54,879 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [84 Valid, 112 Invalid, 78 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 01:53:54,880 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 214 states. [2022-11-03 01:53:54,903 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 214 to 196. [2022-11-03 01:53:54,904 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 196 states, 138 states have (on average 1.2753623188405796) internal successors, (176), 157 states have internal predecessors, (176), 28 states have call successors, (28), 25 states have call predecessors, (28), 29 states have return successors, (32), 28 states have call predecessors, (32), 28 states have call successors, (32) [2022-11-03 01:53:54,905 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 196 states to 196 states and 236 transitions. [2022-11-03 01:53:54,906 INFO L78 Accepts]: Start accepts. Automaton has 196 states and 236 transitions. Word has length 47 [2022-11-03 01:53:54,906 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:53:54,906 INFO L495 AbstractCegarLoop]: Abstraction has 196 states and 236 transitions. [2022-11-03 01:53:54,907 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 13.333333333333334) internal successors, (40), 4 states have internal predecessors, (40), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-03 01:53:54,907 INFO L276 IsEmpty]: Start isEmpty. Operand 196 states and 236 transitions. [2022-11-03 01:53:54,908 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2022-11-03 01:53:54,908 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:53:54,909 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:53:54,909 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-03 01:53:54,909 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:53:54,910 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:53:54,910 INFO L85 PathProgramCache]: Analyzing trace with hash 2080281671, now seen corresponding path program 1 times [2022-11-03 01:53:54,910 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:53:54,910 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [727826913] [2022-11-03 01:53:54,910 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:54,911 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:53:54,925 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:55,351 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 01:53:55,352 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:53:55,352 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [727826913] [2022-11-03 01:53:55,352 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [727826913] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:53:55,352 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-03 01:53:55,353 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2022-11-03 01:53:55,353 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1914288532] [2022-11-03 01:53:55,353 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:53:55,353 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-03 01:53:55,354 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:53:55,354 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-03 01:53:55,354 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=23, Invalid=49, Unknown=0, NotChecked=0, Total=72 [2022-11-03 01:53:55,355 INFO L87 Difference]: Start difference. First operand 196 states and 236 transitions. Second operand has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-03 01:53:55,696 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:53:55,697 INFO L93 Difference]: Finished difference Result 321 states and 399 transitions. [2022-11-03 01:53:55,697 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-11-03 01:53:55,697 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 44 [2022-11-03 01:53:55,698 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:53:55,699 INFO L225 Difference]: With dead ends: 321 [2022-11-03 01:53:55,699 INFO L226 Difference]: Without dead ends: 209 [2022-11-03 01:53:55,700 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=49, Invalid=107, Unknown=0, NotChecked=0, Total=156 [2022-11-03 01:53:55,701 INFO L413 NwaCegarLoop]: 64 mSDtfsCounter, 104 mSDsluCounter, 185 mSDsCounter, 0 mSdLazyCounter, 286 mSolverCounterSat, 45 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 114 SdHoareTripleChecker+Valid, 224 SdHoareTripleChecker+Invalid, 331 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 45 IncrementalHoareTripleChecker+Valid, 286 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-03 01:53:55,702 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [114 Valid, 224 Invalid, 331 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [45 Valid, 286 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-03 01:53:55,703 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 209 states. [2022-11-03 01:53:55,726 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 209 to 173. [2022-11-03 01:53:55,727 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 173 states, 121 states have (on average 1.28099173553719) internal successors, (155), 137 states have internal predecessors, (155), 25 states have call successors, (25), 22 states have call predecessors, (25), 26 states have return successors, (30), 25 states have call predecessors, (30), 25 states have call successors, (30) [2022-11-03 01:53:55,728 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 173 states to 173 states and 210 transitions. [2022-11-03 01:53:55,728 INFO L78 Accepts]: Start accepts. Automaton has 173 states and 210 transitions. Word has length 44 [2022-11-03 01:53:55,728 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:53:55,728 INFO L495 AbstractCegarLoop]: Abstraction has 173 states and 210 transitions. [2022-11-03 01:53:55,729 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-03 01:53:55,729 INFO L276 IsEmpty]: Start isEmpty. Operand 173 states and 210 transitions. [2022-11-03 01:53:55,730 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2022-11-03 01:53:55,730 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:53:55,731 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:53:55,731 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-03 01:53:55,731 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:53:55,731 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:53:55,732 INFO L85 PathProgramCache]: Analyzing trace with hash -1847334260, now seen corresponding path program 1 times [2022-11-03 01:53:55,732 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:53:55,732 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [956336637] [2022-11-03 01:53:55,732 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:55,732 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:53:55,750 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:56,215 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 0 proven. 14 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-03 01:53:56,215 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:53:56,215 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [956336637] [2022-11-03 01:53:56,216 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [956336637] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 01:53:56,219 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1929624757] [2022-11-03 01:53:56,219 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:53:56,220 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 01:53:56,220 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 01:53:56,221 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 01:53:56,222 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-03 01:53:56,377 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:53:56,381 INFO L263 TraceCheckSpWp]: Trace formula consists of 404 conjuncts, 28 conjunts are in the unsatisfiable core [2022-11-03 01:53:56,387 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 01:53:56,786 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 0 proven. 9 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2022-11-03 01:53:56,788 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-03 01:53:57,378 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 1 proven. 8 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2022-11-03 01:53:57,379 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1929624757] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-03 01:53:57,379 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [369741688] [2022-11-03 01:53:57,402 INFO L159 IcfgInterpreter]: Started Sifa with 34 locations of interest [2022-11-03 01:53:57,402 INFO L166 IcfgInterpreter]: Building call graph [2022-11-03 01:53:57,406 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-03 01:53:57,411 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-03 01:53:57,412 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-03 01:54:04,291 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 31 for LOIs [2022-11-03 01:54:04,297 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 27 for LOIs [2022-11-03 01:54:04,593 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2022-11-03 01:54:04,635 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 30 for LOIs [2022-11-03 01:54:04,638 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-03 01:54:09,424 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4695#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (<= 0 |old(~pumpRunning~0)|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (<= ~pumpRunning~0 1) (= ~methaneLevelCritical~0 0) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (<= 0 ~pumpRunning~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-03 01:54:09,424 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-03 01:54:09,424 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-03 01:54:09,425 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 9, 11] total 28 [2022-11-03 01:54:09,425 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [286421946] [2022-11-03 01:54:09,425 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-03 01:54:09,426 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2022-11-03 01:54:09,426 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:54:09,426 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2022-11-03 01:54:09,428 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=302, Invalid=2560, Unknown=0, NotChecked=0, Total=2862 [2022-11-03 01:54:09,428 INFO L87 Difference]: Start difference. First operand 173 states and 210 transitions. Second operand has 28 states, 25 states have (on average 3.72) internal successors, (93), 25 states have internal predecessors, (93), 12 states have call successors, (15), 10 states have call predecessors, (15), 8 states have return successors, (12), 10 states have call predecessors, (12), 11 states have call successors, (12) [2022-11-03 01:54:12,714 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:54:12,714 INFO L93 Difference]: Finished difference Result 595 states and 782 transitions. [2022-11-03 01:54:12,715 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 56 states. [2022-11-03 01:54:12,715 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 25 states have (on average 3.72) internal successors, (93), 25 states have internal predecessors, (93), 12 states have call successors, (15), 10 states have call predecessors, (15), 8 states have return successors, (12), 10 states have call predecessors, (12), 11 states have call successors, (12) Word has length 47 [2022-11-03 01:54:12,716 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:54:12,718 INFO L225 Difference]: With dead ends: 595 [2022-11-03 01:54:12,718 INFO L226 Difference]: Without dead ends: 444 [2022-11-03 01:54:12,722 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 204 GetRequests, 108 SyntacticMatches, 0 SemanticMatches, 96 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3409 ImplicationChecksByTransitivity, 7.0s TimeCoverageRelationStatistics Valid=1211, Invalid=8295, Unknown=0, NotChecked=0, Total=9506 [2022-11-03 01:54:12,723 INFO L413 NwaCegarLoop]: 100 mSDtfsCounter, 808 mSDsluCounter, 805 mSDsCounter, 0 mSdLazyCounter, 1317 mSolverCounterSat, 417 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 814 SdHoareTripleChecker+Valid, 781 SdHoareTripleChecker+Invalid, 1734 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 417 IncrementalHoareTripleChecker+Valid, 1317 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.3s IncrementalHoareTripleChecker+Time [2022-11-03 01:54:12,724 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [814 Valid, 781 Invalid, 1734 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [417 Valid, 1317 Invalid, 0 Unknown, 0 Unchecked, 1.3s Time] [2022-11-03 01:54:12,725 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 444 states. [2022-11-03 01:54:12,769 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 444 to 346. [2022-11-03 01:54:12,770 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 346 states, 246 states have (on average 1.2520325203252032) internal successors, (308), 271 states have internal predecessors, (308), 44 states have call successors, (44), 40 states have call predecessors, (44), 55 states have return successors, (67), 51 states have call predecessors, (67), 44 states have call successors, (67) [2022-11-03 01:54:12,772 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 346 states to 346 states and 419 transitions. [2022-11-03 01:54:12,772 INFO L78 Accepts]: Start accepts. Automaton has 346 states and 419 transitions. Word has length 47 [2022-11-03 01:54:12,773 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:54:12,773 INFO L495 AbstractCegarLoop]: Abstraction has 346 states and 419 transitions. [2022-11-03 01:54:12,773 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 28 states, 25 states have (on average 3.72) internal successors, (93), 25 states have internal predecessors, (93), 12 states have call successors, (15), 10 states have call predecessors, (15), 8 states have return successors, (12), 10 states have call predecessors, (12), 11 states have call successors, (12) [2022-11-03 01:54:12,773 INFO L276 IsEmpty]: Start isEmpty. Operand 346 states and 419 transitions. [2022-11-03 01:54:12,775 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2022-11-03 01:54:12,775 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:54:12,776 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:54:12,816 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-03 01:54:13,003 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 01:54:13,003 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:54:13,004 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:54:13,004 INFO L85 PathProgramCache]: Analyzing trace with hash 1675977768, now seen corresponding path program 1 times [2022-11-03 01:54:13,004 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:54:13,004 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1990602494] [2022-11-03 01:54:13,004 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:54:13,005 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:54:13,046 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:54:14,263 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 8 proven. 38 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2022-11-03 01:54:14,263 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:54:14,263 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1990602494] [2022-11-03 01:54:14,263 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1990602494] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 01:54:14,263 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1888930747] [2022-11-03 01:54:14,263 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:54:14,264 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 01:54:14,264 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 01:54:14,265 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 01:54:14,271 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-03 01:54:14,417 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:54:14,420 INFO L263 TraceCheckSpWp]: Trace formula consists of 480 conjuncts, 18 conjunts are in the unsatisfiable core [2022-11-03 01:54:14,428 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 01:54:14,548 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 38 proven. 0 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-11-03 01:54:14,563 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-03 01:54:14,563 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1888930747] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:54:14,563 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-03 01:54:14,564 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [18] total 20 [2022-11-03 01:54:14,564 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1349211115] [2022-11-03 01:54:14,564 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:54:14,565 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-03 01:54:14,565 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:54:14,565 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-03 01:54:14,565 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=60, Invalid=320, Unknown=0, NotChecked=0, Total=380 [2022-11-03 01:54:14,566 INFO L87 Difference]: Start difference. First operand 346 states and 419 transitions. Second operand has 5 states, 5 states have (on average 9.8) internal successors, (49), 5 states have internal predecessors, (49), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) [2022-11-03 01:54:14,857 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:54:14,858 INFO L93 Difference]: Finished difference Result 767 states and 960 transitions. [2022-11-03 01:54:14,858 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-03 01:54:14,859 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 9.8) internal successors, (49), 5 states have internal predecessors, (49), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) Word has length 72 [2022-11-03 01:54:14,859 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:54:14,862 INFO L225 Difference]: With dead ends: 767 [2022-11-03 01:54:14,862 INFO L226 Difference]: Without dead ends: 451 [2022-11-03 01:54:14,863 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 102 GetRequests, 80 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 153 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=81, Invalid=471, Unknown=0, NotChecked=0, Total=552 [2022-11-03 01:54:14,864 INFO L413 NwaCegarLoop]: 86 mSDtfsCounter, 66 mSDsluCounter, 222 mSDsCounter, 0 mSdLazyCounter, 137 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 265 SdHoareTripleChecker+Invalid, 145 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 137 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 01:54:14,864 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 265 Invalid, 145 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 137 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 01:54:14,865 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 451 states. [2022-11-03 01:54:14,921 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 451 to 421. [2022-11-03 01:54:14,923 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 421 states, 304 states have (on average 1.256578947368421) internal successors, (382), 332 states have internal predecessors, (382), 52 states have call successors, (52), 47 states have call predecessors, (52), 64 states have return successors, (81), 61 states have call predecessors, (81), 52 states have call successors, (81) [2022-11-03 01:54:14,925 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 421 states to 421 states and 515 transitions. [2022-11-03 01:54:14,925 INFO L78 Accepts]: Start accepts. Automaton has 421 states and 515 transitions. Word has length 72 [2022-11-03 01:54:14,926 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:54:14,926 INFO L495 AbstractCegarLoop]: Abstraction has 421 states and 515 transitions. [2022-11-03 01:54:14,926 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 9.8) internal successors, (49), 5 states have internal predecessors, (49), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) [2022-11-03 01:54:14,926 INFO L276 IsEmpty]: Start isEmpty. Operand 421 states and 515 transitions. [2022-11-03 01:54:14,928 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2022-11-03 01:54:14,928 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:54:14,928 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:54:14,970 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-03 01:54:15,155 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 01:54:15,155 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:54:15,156 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:54:15,156 INFO L85 PathProgramCache]: Analyzing trace with hash 1673814336, now seen corresponding path program 2 times [2022-11-03 01:54:15,156 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:54:15,156 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1231542332] [2022-11-03 01:54:15,156 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:54:15,157 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:54:15,194 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:54:16,088 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 53 proven. 40 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2022-11-03 01:54:16,088 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:54:16,088 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1231542332] [2022-11-03 01:54:16,088 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1231542332] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 01:54:16,089 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2073217795] [2022-11-03 01:54:16,089 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-03 01:54:16,089 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 01:54:16,089 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 01:54:16,092 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 01:54:16,101 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-03 01:54:16,212 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 1 check-sat command(s) [2022-11-03 01:54:16,212 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-03 01:54:16,214 INFO L263 TraceCheckSpWp]: Trace formula consists of 314 conjuncts, 9 conjunts are in the unsatisfiable core [2022-11-03 01:54:16,221 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 01:54:16,250 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 10 proven. 0 refuted. 0 times theorem prover too weak. 90 trivial. 0 not checked. [2022-11-03 01:54:16,250 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-03 01:54:16,251 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2073217795] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-03 01:54:16,251 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-03 01:54:16,251 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [19] total 20 [2022-11-03 01:54:16,251 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [791675927] [2022-11-03 01:54:16,252 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-03 01:54:16,252 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-03 01:54:16,252 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:54:16,253 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-03 01:54:16,253 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=70, Invalid=310, Unknown=0, NotChecked=0, Total=380 [2022-11-03 01:54:16,253 INFO L87 Difference]: Start difference. First operand 421 states and 515 transitions. Second operand has 4 states, 4 states have (on average 7.75) internal successors, (31), 4 states have internal predecessors, (31), 1 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) [2022-11-03 01:54:16,406 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:54:16,406 INFO L93 Difference]: Finished difference Result 661 states and 837 transitions. [2022-11-03 01:54:16,406 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-03 01:54:16,407 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 7.75) internal successors, (31), 4 states have internal predecessors, (31), 1 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) Word has length 89 [2022-11-03 01:54:16,408 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:54:16,411 INFO L225 Difference]: With dead ends: 661 [2022-11-03 01:54:16,412 INFO L226 Difference]: Without dead ends: 398 [2022-11-03 01:54:16,413 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 111 GetRequests, 92 SyntacticMatches, 0 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 138 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=75, Invalid=345, Unknown=0, NotChecked=0, Total=420 [2022-11-03 01:54:16,414 INFO L413 NwaCegarLoop]: 49 mSDtfsCounter, 46 mSDsluCounter, 101 mSDsCounter, 0 mSdLazyCounter, 47 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 46 SdHoareTripleChecker+Valid, 135 SdHoareTripleChecker+Invalid, 54 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 47 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-03 01:54:16,415 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [46 Valid, 135 Invalid, 54 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 47 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-03 01:54:16,417 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 398 states. [2022-11-03 01:54:16,483 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 398 to 359. [2022-11-03 01:54:16,484 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 359 states, 258 states have (on average 1.197674418604651) internal successors, (309), 281 states have internal predecessors, (309), 45 states have call successors, (45), 42 states have call predecessors, (45), 55 states have return successors, (73), 51 states have call predecessors, (73), 45 states have call successors, (73) [2022-11-03 01:54:16,487 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 359 states to 359 states and 427 transitions. [2022-11-03 01:54:16,488 INFO L78 Accepts]: Start accepts. Automaton has 359 states and 427 transitions. Word has length 89 [2022-11-03 01:54:16,489 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:54:16,490 INFO L495 AbstractCegarLoop]: Abstraction has 359 states and 427 transitions. [2022-11-03 01:54:16,490 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 7.75) internal successors, (31), 4 states have internal predecessors, (31), 1 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) [2022-11-03 01:54:16,490 INFO L276 IsEmpty]: Start isEmpty. Operand 359 states and 427 transitions. [2022-11-03 01:54:16,493 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2022-11-03 01:54:16,493 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:54:16,493 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:54:16,531 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-03 01:54:16,708 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-03 01:54:16,708 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:54:16,708 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:54:16,709 INFO L85 PathProgramCache]: Analyzing trace with hash 1410569396, now seen corresponding path program 3 times [2022-11-03 01:54:16,709 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:54:16,709 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1878074563] [2022-11-03 01:54:16,709 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:54:16,709 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:54:16,736 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:54:17,684 INFO L134 CoverageAnalysis]: Checked inductivity of 108 backedges. 1 proven. 83 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2022-11-03 01:54:17,684 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:54:17,684 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1878074563] [2022-11-03 01:54:17,684 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1878074563] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 01:54:17,684 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1716040787] [2022-11-03 01:54:17,685 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-03 01:54:17,685 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 01:54:17,685 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 01:54:17,692 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 01:54:17,697 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-03 01:54:17,846 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-03 01:54:17,846 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-03 01:54:17,850 INFO L263 TraceCheckSpWp]: Trace formula consists of 572 conjuncts, 22 conjunts are in the unsatisfiable core [2022-11-03 01:54:17,854 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 01:54:17,991 INFO L134 CoverageAnalysis]: Checked inductivity of 108 backedges. 59 proven. 1 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2022-11-03 01:54:17,992 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-03 01:54:18,138 INFO L134 CoverageAnalysis]: Checked inductivity of 108 backedges. 49 proven. 1 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2022-11-03 01:54:18,139 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1716040787] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-03 01:54:18,139 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1290697763] [2022-11-03 01:54:18,142 INFO L159 IcfgInterpreter]: Started Sifa with 34 locations of interest [2022-11-03 01:54:18,142 INFO L166 IcfgInterpreter]: Building call graph [2022-11-03 01:54:18,143 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-03 01:54:18,143 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-03 01:54:18,144 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-03 01:54:23,884 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 31 for LOIs [2022-11-03 01:54:23,889 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 27 for LOIs [2022-11-03 01:54:24,135 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2022-11-03 01:54:24,167 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 30 for LOIs [2022-11-03 01:54:24,169 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-03 01:54:28,574 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10751#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (<= 0 |old(~pumpRunning~0)|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (<= ~pumpRunning~0 1) (= ~methaneLevelCritical~0 0) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (<= 0 ~pumpRunning~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-03 01:54:28,574 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-03 01:54:28,574 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-03 01:54:28,574 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 6, 6] total 23 [2022-11-03 01:54:28,575 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [446021507] [2022-11-03 01:54:28,575 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-03 01:54:28,575 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2022-11-03 01:54:28,575 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:54:28,576 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2022-11-03 01:54:28,577 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=263, Invalid=2089, Unknown=0, NotChecked=0, Total=2352 [2022-11-03 01:54:28,577 INFO L87 Difference]: Start difference. First operand 359 states and 427 transitions. Second operand has 23 states, 21 states have (on average 4.857142857142857) internal successors, (102), 20 states have internal predecessors, (102), 9 states have call successors, (15), 6 states have call predecessors, (15), 6 states have return successors, (14), 8 states have call predecessors, (14), 9 states have call successors, (14) [2022-11-03 01:54:31,540 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:54:31,541 INFO L93 Difference]: Finished difference Result 1037 states and 1283 transitions. [2022-11-03 01:54:31,541 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 62 states. [2022-11-03 01:54:31,542 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 21 states have (on average 4.857142857142857) internal successors, (102), 20 states have internal predecessors, (102), 9 states have call successors, (15), 6 states have call predecessors, (15), 6 states have return successors, (14), 8 states have call predecessors, (14), 9 states have call successors, (14) Word has length 91 [2022-11-03 01:54:31,542 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:54:31,546 INFO L225 Difference]: With dead ends: 1037 [2022-11-03 01:54:31,546 INFO L226 Difference]: Without dead ends: 708 [2022-11-03 01:54:31,551 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 363 GetRequests, 266 SyntacticMatches, 0 SemanticMatches, 97 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3494 ImplicationChecksByTransitivity, 6.2s TimeCoverageRelationStatistics Valid=1352, Invalid=8350, Unknown=0, NotChecked=0, Total=9702 [2022-11-03 01:54:31,552 INFO L413 NwaCegarLoop]: 71 mSDtfsCounter, 984 mSDsluCounter, 435 mSDsCounter, 0 mSdLazyCounter, 1042 mSolverCounterSat, 656 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 993 SdHoareTripleChecker+Valid, 444 SdHoareTripleChecker+Invalid, 1698 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 656 IncrementalHoareTripleChecker+Valid, 1042 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2022-11-03 01:54:31,552 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [993 Valid, 444 Invalid, 1698 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [656 Valid, 1042 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2022-11-03 01:54:31,554 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 708 states. [2022-11-03 01:54:31,646 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 708 to 605. [2022-11-03 01:54:31,648 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 605 states, 436 states have (on average 1.1903669724770642) internal successors, (519), 477 states have internal predecessors, (519), 75 states have call successors, (75), 66 states have call predecessors, (75), 93 states have return successors, (127), 86 states have call predecessors, (127), 75 states have call successors, (127) [2022-11-03 01:54:31,652 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 605 states to 605 states and 721 transitions. [2022-11-03 01:54:31,653 INFO L78 Accepts]: Start accepts. Automaton has 605 states and 721 transitions. Word has length 91 [2022-11-03 01:54:31,653 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:54:31,654 INFO L495 AbstractCegarLoop]: Abstraction has 605 states and 721 transitions. [2022-11-03 01:54:31,654 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 21 states have (on average 4.857142857142857) internal successors, (102), 20 states have internal predecessors, (102), 9 states have call successors, (15), 6 states have call predecessors, (15), 6 states have return successors, (14), 8 states have call predecessors, (14), 9 states have call successors, (14) [2022-11-03 01:54:31,654 INFO L276 IsEmpty]: Start isEmpty. Operand 605 states and 721 transitions. [2022-11-03 01:54:31,656 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 95 [2022-11-03 01:54:31,656 INFO L187 NwaCegarLoop]: Found error trace [2022-11-03 01:54:31,657 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:54:31,690 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-03 01:54:31,871 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2022-11-03 01:54:31,871 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-03 01:54:31,872 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-03 01:54:31,872 INFO L85 PathProgramCache]: Analyzing trace with hash 1695781844, now seen corresponding path program 2 times [2022-11-03 01:54:31,872 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-03 01:54:31,872 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [773065077] [2022-11-03 01:54:31,872 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-03 01:54:31,872 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-03 01:54:31,894 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-03 01:54:32,849 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 52 proven. 41 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-03 01:54:32,849 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-03 01:54:32,849 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [773065077] [2022-11-03 01:54:32,850 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [773065077] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-03 01:54:32,850 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1360949675] [2022-11-03 01:54:32,850 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-03 01:54:32,850 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 01:54:32,850 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 [2022-11-03 01:54:32,851 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-03 01:54:32,875 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-11-03 01:54:32,967 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2022-11-03 01:54:32,968 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-03 01:54:32,971 INFO L263 TraceCheckSpWp]: Trace formula consists of 405 conjuncts, 32 conjunts are in the unsatisfiable core [2022-11-03 01:54:32,974 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-03 01:54:33,163 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 59 proven. 5 refuted. 0 times theorem prover too weak. 41 trivial. 0 not checked. [2022-11-03 01:54:33,163 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-03 01:54:33,718 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 53 proven. 5 refuted. 0 times theorem prover too weak. 47 trivial. 0 not checked. [2022-11-03 01:54:33,718 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1360949675] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-03 01:54:33,718 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [82905584] [2022-11-03 01:54:33,724 INFO L159 IcfgInterpreter]: Started Sifa with 38 locations of interest [2022-11-03 01:54:33,725 INFO L166 IcfgInterpreter]: Building call graph [2022-11-03 01:54:33,725 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-03 01:54:33,725 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-03 01:54:33,726 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-03 01:54:43,741 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 305 for LOIs [2022-11-03 01:54:43,814 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 26 for LOIs [2022-11-03 01:54:44,052 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 59 for LOIs [2022-11-03 01:54:44,265 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 33 for LOIs [2022-11-03 01:54:44,268 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 29 for LOIs [2022-11-03 01:54:44,270 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-03 01:54:58,117 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14050#(and (<= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 2147483647) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (<= 0 (+ |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 2147483648)) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (= ~methaneLevelCritical~0 0) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-03 01:54:58,117 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-03 01:54:58,117 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-03 01:54:58,118 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 8, 9] total 31 [2022-11-03 01:54:58,118 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1674932311] [2022-11-03 01:54:58,118 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-03 01:54:58,119 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 31 states [2022-11-03 01:54:58,119 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-03 01:54:58,120 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 31 interpolants. [2022-11-03 01:54:58,121 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=371, Invalid=3169, Unknown=0, NotChecked=0, Total=3540 [2022-11-03 01:54:58,121 INFO L87 Difference]: Start difference. First operand 605 states and 721 transitions. Second operand has 31 states, 29 states have (on average 4.655172413793103) internal successors, (135), 28 states have internal predecessors, (135), 12 states have call successors, (18), 8 states have call predecessors, (18), 10 states have return successors, (20), 13 states have call predecessors, (20), 10 states have call successors, (20) [2022-11-03 01:54:59,384 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-03 01:54:59,385 INFO L93 Difference]: Finished difference Result 699 states and 834 transitions. [2022-11-03 01:54:59,386 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 27 states. [2022-11-03 01:54:59,386 INFO L78 Accepts]: Start accepts. Automaton has has 31 states, 29 states have (on average 4.655172413793103) internal successors, (135), 28 states have internal predecessors, (135), 12 states have call successors, (18), 8 states have call predecessors, (18), 10 states have return successors, (20), 13 states have call predecessors, (20), 10 states have call successors, (20) Word has length 94 [2022-11-03 01:54:59,387 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-03 01:54:59,387 INFO L225 Difference]: With dead ends: 699 [2022-11-03 01:54:59,387 INFO L226 Difference]: Without dead ends: 0 [2022-11-03 01:54:59,391 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 326 GetRequests, 239 SyntacticMatches, 8 SemanticMatches, 79 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3006 ImplicationChecksByTransitivity, 14.9s TimeCoverageRelationStatistics Valid=777, Invalid=5703, Unknown=0, NotChecked=0, Total=6480 [2022-11-03 01:54:59,391 INFO L413 NwaCegarLoop]: 41 mSDtfsCounter, 441 mSDsluCounter, 345 mSDsCounter, 0 mSdLazyCounter, 562 mSolverCounterSat, 220 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 445 SdHoareTripleChecker+Valid, 340 SdHoareTripleChecker+Invalid, 782 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 220 IncrementalHoareTripleChecker+Valid, 562 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-03 01:54:59,392 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [445 Valid, 340 Invalid, 782 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [220 Valid, 562 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2022-11-03 01:54:59,392 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-03 01:54:59,393 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-03 01:54:59,393 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-03 01:54:59,393 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-03 01:54:59,393 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 94 [2022-11-03 01:54:59,393 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-03 01:54:59,394 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-03 01:54:59,394 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 31 states, 29 states have (on average 4.655172413793103) internal successors, (135), 28 states have internal predecessors, (135), 12 states have call successors, (18), 8 states have call predecessors, (18), 10 states have return successors, (20), 13 states have call predecessors, (20), 10 states have call successors, (20) [2022-11-03 01:54:59,394 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-03 01:54:59,395 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-03 01:54:59,397 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-03 01:54:59,423 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2022-11-03 01:54:59,599 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-03 01:54:59,601 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-03 01:55:03,937 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 309 316) the Hoare annotation is: (= ~pumpRunning~0 |old(~pumpRunning~0)|) [2022-11-03 01:55:03,938 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 309 316) no Hoare annotation was computed. [2022-11-03 01:55:03,938 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 224 230) no Hoare annotation was computed. [2022-11-03 01:55:03,938 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 224 230) the Hoare annotation is: true [2022-11-03 01:55:03,938 INFO L902 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 549 560) the Hoare annotation is: true [2022-11-03 01:55:03,939 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 549 560) no Hoare annotation was computed. [2022-11-03 01:55:03,939 INFO L899 garLoopResultBuilder]: For program point L449(line 449) no Hoare annotation was computed. [2022-11-03 01:55:03,939 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 428 457) no Hoare annotation was computed. [2022-11-03 01:55:03,939 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 428 457) the Hoare annotation is: true [2022-11-03 01:55:03,939 INFO L899 garLoopResultBuilder]: For program point L442(lines 442 446) no Hoare annotation was computed. [2022-11-03 01:55:03,939 INFO L902 garLoopResultBuilder]: At program point L442-1(lines 442 446) the Hoare annotation is: true [2022-11-03 01:55:03,940 INFO L902 garLoopResultBuilder]: At program point L438-2(lines 438 452) the Hoare annotation is: true [2022-11-03 01:55:03,940 INFO L902 garLoopResultBuilder]: At program point L434(line 434) the Hoare annotation is: true [2022-11-03 01:55:03,940 INFO L899 garLoopResultBuilder]: For program point L434-1(line 434) no Hoare annotation was computed. [2022-11-03 01:55:03,940 INFO L902 garLoopResultBuilder]: At program point L453(lines 428 457) the Hoare annotation is: true [2022-11-03 01:55:03,940 INFO L895 garLoopResultBuilder]: At program point L630(line 630) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (= 0 ~systemActive~0))) (and (or .cse0 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse1 (not (= |old(~waterLevel~0)| 1))) (or .cse1 (not .cse0)))) [2022-11-03 01:55:03,941 INFO L895 garLoopResultBuilder]: At program point L272(line 272) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (= 0 ~systemActive~0))) (and (or .cse0 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse1 (not (= |old(~waterLevel~0)| 1))) (or .cse1 (not .cse0)))) [2022-11-03 01:55:03,944 INFO L895 garLoopResultBuilder]: At program point L268(line 268) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= 0 ~systemActive~0))) (and (or (and .cse0 (not (= ~pumpRunning~0 0)) (<= 1 |timeShift_processEnvironment_~tmp~3#1|) (= ~waterLevel~0 1)) .cse1 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not (= |old(~waterLevel~0)| 1))) (or .cse0 (not .cse1)))) [2022-11-03 01:55:03,944 INFO L899 garLoopResultBuilder]: For program point L103(lines 103 109) no Hoare annotation was computed. [2022-11-03 01:55:03,944 INFO L895 garLoopResultBuilder]: At program point L99(lines 99 112) the Hoare annotation is: (let ((.cse9 (= 0 ~systemActive~0))) (let ((.cse6 (not (= |old(~waterLevel~0)| 1))) (.cse4 (= ~pumpRunning~0 0)) (.cse7 (= ~waterLevel~0 1)) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (not (<= |old(~waterLevel~0)| 2))) (.cse3 (not (<= 2 |old(~waterLevel~0)|))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse5 (not .cse9))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 (and .cse4 .cse1) .cse5) (or .cse0 .cse6 (and .cse4 .cse7)) (or .cse0 .cse6 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 1)) (or .cse0 (<= 2 |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1|) .cse5 .cse3) (let ((.cse8 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| ~waterLevel~0))) (or (and .cse4 (<= 1 |timeShift_processEnvironment_~tmp~3#1|) .cse8 .cse7) (and .cse1 .cse8) .cse9 .cse2 .cse3)) (or .cse0 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0) (not (= |old(~waterLevel~0)| 0)) .cse5)))) [2022-11-03 01:55:03,945 INFO L895 garLoopResultBuilder]: At program point L99-1(lines 91 115) the Hoare annotation is: (let ((.cse9 (= 0 ~systemActive~0))) (let ((.cse6 (not (= |old(~waterLevel~0)| 1))) (.cse4 (= ~pumpRunning~0 0)) (.cse7 (= ~waterLevel~0 1)) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (not (<= |old(~waterLevel~0)| 2))) (.cse3 (not (<= 2 |old(~waterLevel~0)|))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse5 (not .cse9))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 (and .cse4 .cse1) .cse5) (or .cse0 .cse6 (and .cse4 .cse7)) (or .cse0 .cse6 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 1)) (or .cse0 (<= 2 |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1|) .cse5 .cse3) (let ((.cse8 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| ~waterLevel~0))) (or (and .cse4 (<= 1 |timeShift_processEnvironment_~tmp~3#1|) .cse8 .cse7) (and .cse1 .cse8) .cse9 .cse2 .cse3)) (or .cse0 (not (= |old(~waterLevel~0)| 0)) .cse5 (and (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0)))))) [2022-11-03 01:55:03,945 INFO L895 garLoopResultBuilder]: At program point L277(line 277) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 0)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (= 0 ~systemActive~0))) (and (or .cse0 (not (= |old(~waterLevel~0)| 1)) (and .cse1 (= ~waterLevel~0 1))) (or (and .cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) .cse2 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not .cse2)))) [2022-11-03 01:55:03,945 INFO L895 garLoopResultBuilder]: At program point L277-1(lines 258 282) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= ~waterLevel~0 1)) (.cse3 (= 0 ~systemActive~0))) (and (or .cse0 (not (= |old(~waterLevel~0)| 1)) (and .cse1 .cse2)) (or .cse0 (not .cse3)) (or (= |old(~waterLevel~0)| ~waterLevel~0) (and .cse0 .cse1 (<= 1 |timeShift_processEnvironment_~tmp~3#1|) .cse2) .cse3 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-03 01:55:03,946 INFO L895 garLoopResultBuilder]: At program point L211-1(lines 211 217) the Hoare annotation is: (let ((.cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse4 (= ~waterLevel~0 1)) (.cse3 (= 0 ~systemActive~0))) (and (or .cse0 (and .cse1 .cse2) (not .cse3)) (or .cse0 (not (= |old(~waterLevel~0)| 1)) (and .cse1 .cse4)) (or .cse2 (and .cse0 .cse1 (<= 1 |timeShift_processEnvironment_~tmp~3#1|) .cse4) .cse3 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-03 01:55:03,946 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 200 223) the Hoare annotation is: (let ((.cse5 (= 0 ~systemActive~0))) (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse3 (not .cse5))) (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (and .cse1 .cse2 .cse3))) (and (or .cse0 (and .cse1 .cse2) .cse3) (or .cse4 .cse5 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse4 .cse5))))) [2022-11-03 01:55:03,947 INFO L899 garLoopResultBuilder]: For program point L204-1(lines 203 222) no Hoare annotation was computed. [2022-11-03 01:55:03,947 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 200 223) no Hoare annotation was computed. [2022-11-03 01:55:03,947 INFO L899 garLoopResultBuilder]: For program point L266(lines 266 274) no Hoare annotation was computed. [2022-11-03 01:55:03,948 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 630) no Hoare annotation was computed. [2022-11-03 01:55:03,948 INFO L895 garLoopResultBuilder]: At program point L262(lines 262 279) the Hoare annotation is: (let ((.cse2 (not (<= |old(~waterLevel~0)| 2))) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse5 (= ~waterLevel~0 1)) (.cse4 (= ~pumpRunning~0 0)) (.cse3 (not (<= 2 |old(~waterLevel~0)|))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse6 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 (not (= |old(~waterLevel~0)| 1)) (and .cse4 .cse5)) (or .cse6 .cse2 (and (or .cse4 (<= (+ ~waterLevel~0 1) |old(~waterLevel~0)|)) (or .cse1 .cse5) (or (not .cse4) (<= 2 ~waterLevel~0))) .cse3) (or .cse0 (not .cse6)))) [2022-11-03 01:55:03,948 INFO L899 garLoopResultBuilder]: For program point L415(lines 415 421) no Hoare annotation was computed. [2022-11-03 01:55:03,948 INFO L895 garLoopResultBuilder]: At program point L415-1(lines 415 421) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2022-11-03 01:55:03,949 INFO L895 garLoopResultBuilder]: At program point L180(lines 131 181) the Hoare annotation is: false [2022-11-03 01:55:03,949 INFO L899 garLoopResultBuilder]: For program point L168(lines 168 174) no Hoare annotation was computed. [2022-11-03 01:55:03,950 INFO L895 garLoopResultBuilder]: At program point L168-2(lines 162 175) the Hoare annotation is: (let ((.cse3 (= 0 ~systemActive~0))) (let ((.cse1 (not .cse3)) (.cse2 (= ~pumpRunning~0 0)) (.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1) (and .cse2 .cse0 (= ~waterLevel~0 1) .cse1) (and .cse2 .cse0 .cse3)))) [2022-11-03 01:55:03,950 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-03 01:55:03,950 INFO L899 garLoopResultBuilder]: For program point L152(lines 152 158) no Hoare annotation was computed. [2022-11-03 01:55:03,950 INFO L899 garLoopResultBuilder]: For program point L152-1(lines 152 158) no Hoare annotation was computed. [2022-11-03 01:55:03,950 INFO L895 garLoopResultBuilder]: At program point L177(lines 132 179) the Hoare annotation is: (let ((.cse2 (= ~pumpRunning~0 0)) (.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse1 (= 0 ~systemActive~0))) (or (and (= 2 ~waterLevel~0) .cse0 (not .cse1)) (and .cse2 .cse0 (= ~waterLevel~0 1)) (and .cse2 .cse0 .cse1))) [2022-11-03 01:55:03,951 INFO L895 garLoopResultBuilder]: At program point L144(line 144) the Hoare annotation is: (let ((.cse3 (= 0 ~systemActive~0))) (let ((.cse1 (not .cse3)) (.cse2 (= ~pumpRunning~0 0)) (.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (<= 2 ~waterLevel~0) .cse0 (<= ~waterLevel~0 2) .cse1) (and .cse2 .cse0 (= ~waterLevel~0 1) .cse1) (and .cse2 .cse0 .cse3)))) [2022-11-03 01:55:03,951 INFO L895 garLoopResultBuilder]: At program point L417(line 417) the Hoare annotation is: (and (or (not (= ~pumpRunning~0 0)) (= |old(~waterLevel~0)| 1) (and (not (= ~waterLevel~0 1)) (not (= ~waterLevel~0 0))) (= |old(~waterLevel~0)| 0)) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2022-11-03 01:55:03,951 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-03 01:55:03,951 INFO L899 garLoopResultBuilder]: For program point L133(lines 132 179) no Hoare annotation was computed. [2022-11-03 01:55:03,951 INFO L899 garLoopResultBuilder]: For program point L162(lines 162 175) no Hoare annotation was computed. [2022-11-03 01:55:03,951 INFO L895 garLoopResultBuilder]: At program point L509(lines 509 516) the Hoare annotation is: (and (= |ULTIMATE.start_main_~tmp~7#1| 1) (= ~pumpRunning~0 0) (= ~waterLevel~0 1) (= |ULTIMATE.start_main_~tmp~7#1| ~systemActive~0)) [2022-11-03 01:55:03,952 INFO L902 garLoopResultBuilder]: At program point L509-2(lines 509 516) the Hoare annotation is: true [2022-11-03 01:55:03,952 INFO L895 garLoopResultBuilder]: At program point L154(line 154) the Hoare annotation is: (let ((.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse2 (= 0 ~systemActive~0))) (or (and .cse0 .cse1 (= ~waterLevel~0 1)) (and (<= 2 ~waterLevel~0) .cse1 (<= ~waterLevel~0 2) (not .cse2)) (and .cse0 .cse1 .cse2))) [2022-11-03 01:55:03,952 INFO L902 garLoopResultBuilder]: At program point L183(lines 122 187) the Hoare annotation is: true [2022-11-03 01:55:03,952 INFO L899 garLoopResultBuilder]: For program point L142(lines 142 148) no Hoare annotation was computed. [2022-11-03 01:55:03,952 INFO L899 garLoopResultBuilder]: For program point L142-1(lines 142 148) no Hoare annotation was computed. [2022-11-03 01:55:03,953 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 232 256) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0)) .cse2) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2))) [2022-11-03 01:55:03,953 INFO L895 garLoopResultBuilder]: At program point L246(line 246) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= 0 ~systemActive~0))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1 (and (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 0))) (or .cse0 (not (= 2 ~waterLevel~0)) .cse1))) [2022-11-03 01:55:03,953 INFO L895 garLoopResultBuilder]: At program point L240(lines 240 248) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (= 0 ~systemActive~0)) (.cse1 (= ~pumpRunning~0 0))) (and (or .cse0 (and .cse1 (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 1)) (not (<= 2 ~waterLevel~0)) (not (<= ~waterLevel~0 2)) .cse2) (or (not (= ~waterLevel~0 1)) .cse0 .cse2 (and .cse1 (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 0))))) [2022-11-03 01:55:03,953 INFO L895 garLoopResultBuilder]: At program point L236(lines 236 253) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0)) .cse2) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2))) [2022-11-03 01:55:03,954 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 232 256) no Hoare annotation was computed. [2022-11-03 01:55:03,954 INFO L895 garLoopResultBuilder]: At program point L251(line 251) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 (not (= 2 ~waterLevel~0)) .cse1) (or (not (= ~waterLevel~0 1)) .cse0 .cse1))) [2022-11-03 01:55:03,954 INFO L899 garLoopResultBuilder]: For program point L251-1(lines 232 256) no Hoare annotation was computed. [2022-11-03 01:55:03,954 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 537 548) no Hoare annotation was computed. [2022-11-03 01:55:03,954 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 537 548) the Hoare annotation is: (let ((.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (= 0 ~systemActive~0)) (.cse0 (not (= ~pumpRunning~0 0)))) (and (or .cse0 .cse1 (not .cse2)) (or .cse1 .cse2 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not (= |old(~waterLevel~0)| 1)) (= ~waterLevel~0 1)))) [2022-11-03 01:55:03,958 INFO L444 BasicCegarLoop]: Path program histogram: [3, 2, 1, 1, 1, 1, 1, 1, 1] [2022-11-03 01:55:03,961 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-03 01:55:03,990 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 03.11 01:55:03 BoogieIcfgContainer [2022-11-03 01:55:03,990 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-03 01:55:03,991 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-03 01:55:03,991 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-03 01:55:03,991 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-03 01:55:03,992 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 03.11 01:53:52" (3/4) ... [2022-11-03 01:55:03,996 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-03 01:55:04,002 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-03 01:55:04,002 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-03 01:55:04,003 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-03 01:55:04,003 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-03 01:55:04,003 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-03 01:55:04,003 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-03 01:55:04,004 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-03 01:55:04,012 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 77 nodes and edges [2022-11-03 01:55:04,013 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 29 nodes and edges [2022-11-03 01:55:04,014 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2022-11-03 01:55:04,014 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-11-03 01:55:04,015 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 2 nodes and edges [2022-11-03 01:55:04,016 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-03 01:55:04,016 INFO L910 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-03 01:55:04,046 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) && (((((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && !(0 == systemActive)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || ((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || 0 == systemActive) [2022-11-03 01:55:04,047 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1))) && ((((\old(waterLevel) == waterLevel || (((!(\old(pumpRunning) == 0) && pumpRunning == 0) && 1 <= tmp) && waterLevel == 1)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) [2022-11-03 01:55:04,047 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1))) && (((0 == systemActive || !(\old(waterLevel) <= 2)) || (((pumpRunning == 0 || waterLevel + 1 <= \old(waterLevel)) && (\old(waterLevel) == waterLevel || waterLevel == 1)) && (!(pumpRunning == 0) || 2 <= waterLevel))) || !(2 <= \old(waterLevel)))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-03 01:55:04,048 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1)) && (!(\old(pumpRunning) == 0) || !(0 == systemActive))) && ((((\old(waterLevel) == waterLevel || (((!(\old(pumpRunning) == 0) && pumpRunning == 0) && 1 <= tmp) && waterLevel == 1)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) [2022-11-03 01:55:04,048 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(2 == waterLevel)) || 0 == systemActive) && (((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || 0 == systemActive) [2022-11-03 01:55:04,049 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || tmp == 1)) && (((!(\old(pumpRunning) == 0) || 2 <= tmp) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((((((pumpRunning == 0 && 1 <= tmp) && tmp == waterLevel) && waterLevel == 1) || (\old(waterLevel) == waterLevel && tmp == waterLevel)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || tmp == 0) || !(\old(waterLevel) == 0)) || !(0 == systemActive)) [2022-11-03 01:55:04,049 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || tmp == 1)) && (((!(\old(pumpRunning) == 0) || 2 <= tmp) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((((((pumpRunning == 0 && 1 <= tmp) && tmp == waterLevel) && waterLevel == 1) || (\old(waterLevel) == waterLevel && tmp == waterLevel)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 0)) || !(0 == systemActive)) || (tmp___0 == 0 && tmp == 0)) [2022-11-03 01:55:04,050 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((0 == systemActive || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-03 01:55:04,051 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && tmp == 1)) || !(2 <= waterLevel)) || !(waterLevel <= 2)) || 0 == systemActive) && (((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || 0 == systemActive) || (pumpRunning == 0 && tmp == 0)) [2022-11-03 01:55:04,079 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/witness.graphml [2022-11-03 01:55:04,080 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-03 01:55:04,080 INFO L158 Benchmark]: Toolchain (without parser) took 73474.50ms. Allocated memory was 121.6MB in the beginning and 736.1MB in the end (delta: 614.5MB). Free memory was 81.0MB in the beginning and 596.3MB in the end (delta: -515.3MB). Peak memory consumption was 98.2MB. Max. memory is 16.1GB. [2022-11-03 01:55:04,081 INFO L158 Benchmark]: CDTParser took 0.28ms. Allocated memory is still 121.6MB. Free memory is still 98.6MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-03 01:55:04,081 INFO L158 Benchmark]: CACSL2BoogieTranslator took 519.99ms. Allocated memory is still 121.6MB. Free memory was 80.8MB in the beginning and 89.0MB in the end (delta: -8.2MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2022-11-03 01:55:04,082 INFO L158 Benchmark]: Boogie Procedure Inliner took 77.73ms. Allocated memory is still 121.6MB. Free memory was 89.0MB in the beginning and 86.6MB in the end (delta: 2.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-03 01:55:04,082 INFO L158 Benchmark]: Boogie Preprocessor took 45.99ms. Allocated memory is still 121.6MB. Free memory was 86.5MB in the beginning and 84.7MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-03 01:55:04,083 INFO L158 Benchmark]: RCFGBuilder took 811.42ms. Allocated memory is still 121.6MB. Free memory was 84.7MB in the beginning and 54.0MB in the end (delta: 30.7MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. [2022-11-03 01:55:04,083 INFO L158 Benchmark]: TraceAbstraction took 71922.63ms. Allocated memory was 121.6MB in the beginning and 736.1MB in the end (delta: 614.5MB). Free memory was 53.4MB in the beginning and 602.6MB in the end (delta: -549.2MB). Peak memory consumption was 412.5MB. Max. memory is 16.1GB. [2022-11-03 01:55:04,083 INFO L158 Benchmark]: Witness Printer took 88.89ms. Allocated memory is still 736.1MB. Free memory was 602.6MB in the beginning and 596.3MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-03 01:55:04,085 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.28ms. Allocated memory is still 121.6MB. Free memory is still 98.6MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 519.99ms. Allocated memory is still 121.6MB. Free memory was 80.8MB in the beginning and 89.0MB in the end (delta: -8.2MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 77.73ms. Allocated memory is still 121.6MB. Free memory was 89.0MB in the beginning and 86.6MB in the end (delta: 2.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 45.99ms. Allocated memory is still 121.6MB. Free memory was 86.5MB in the beginning and 84.7MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 811.42ms. Allocated memory is still 121.6MB. Free memory was 84.7MB in the beginning and 54.0MB in the end (delta: 30.7MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. * TraceAbstraction took 71922.63ms. Allocated memory was 121.6MB in the beginning and 736.1MB in the end (delta: 614.5MB). Free memory was 53.4MB in the beginning and 602.6MB in the end (delta: -549.2MB). Peak memory consumption was 412.5MB. Max. memory is 16.1GB. * Witness Printer took 88.89ms. Allocated memory is still 736.1MB. Free memory was 602.6MB in the beginning and 596.3MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 630]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 59 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 71.8s, OverallIterations: 12, TraceHistogramMax: 4, PathProgramHistogramMax: 3, EmptinessCheckTime: 0.1s, AutomataDifference: 9.6s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 4.3s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2929 SdHoareTripleChecker+Valid, 4.2s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2883 mSDsluCounter, 3071 SdHoareTripleChecker+Invalid, 3.4s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2716 mSDsCounter, 1451 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3993 IncrementalHoareTripleChecker+Invalid, 5444 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1451 mSolverCounterUnsat, 782 mSDtfsCounter, 3993 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1153 GetRequests, 800 SyntacticMatches, 8 SemanticMatches, 345 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10230 ImplicationChecksByTransitivity, 28.9s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=605occurred in iteration=11, InterpolantAutomatonStates: 200, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.5s AutomataMinimizationTime, 12 MinimizatonAttempts, 385 StatesRemovedByMinimization, 9 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 35 LocationsWithAnnotation, 1245 PreInvPairs, 1406 NumberOfFragments, 1068 HoareAnnotationTreeSize, 1245 FomulaSimplifications, 12552 FormulaSimplificationTreeSizeReduction, 0.8s HoareSimplificationTime, 35 FomulaSimplificationsInter, 27094 FormulaSimplificationTreeSizeReductionInter, 3.5s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.6s SatisfiabilityAnalysisTime, 8.0s InterpolantComputationTime, 959 NumberOfCodeBlocks, 847 NumberOfCodeBlocksAsserted, 19 NumberOfCheckSat, 1171 ConstructedInterpolants, 0 QuantifiedInterpolants, 4611 SizeOfPredicates, 46 NumberOfNonLiveVariables, 2175 ConjunctsInSsa, 109 ConjunctsInUnsatCore, 20 InterpolantComputations, 9 PerfectInterpolantSequences, 762/1007 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 131]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 258]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1)) && (!(\old(pumpRunning) == 0) || !(0 == systemActive))) && ((((\old(waterLevel) == waterLevel || (((!(\old(pumpRunning) == 0) && pumpRunning == 0) && 1 <= tmp) && waterLevel == 1)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 415]: Loop Invariant Derived loop invariant: pumpRunning == 0 && splverifierCounter == 0 - InvariantResult [Line: 99]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || tmp == 1)) && (((!(\old(pumpRunning) == 0) || 2 <= tmp) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((((((pumpRunning == 0 && 1 <= tmp) && tmp == waterLevel) && waterLevel == 1) || (\old(waterLevel) == waterLevel && tmp == waterLevel)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || tmp == 0) || !(\old(waterLevel) == 0)) || !(0 == systemActive)) - InvariantResult [Line: 132]: Loop Invariant Derived loop invariant: (((2 == waterLevel && splverifierCounter == 0) && !(0 == systemActive)) || ((pumpRunning == 0 && splverifierCounter == 0) && waterLevel == 1)) || ((pumpRunning == 0 && splverifierCounter == 0) && 0 == systemActive) - InvariantResult [Line: 200]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) && (((((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && !(0 == systemActive)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || ((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || 0 == systemActive) - InvariantResult [Line: 211]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1))) && ((((\old(waterLevel) == waterLevel || (((!(\old(pumpRunning) == 0) && pumpRunning == 0) && 1 <= tmp) && waterLevel == 1)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 236]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(2 == waterLevel)) || 0 == systemActive) && (((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || 0 == systemActive) - InvariantResult [Line: 630]: Loop Invariant Derived loop invariant: (((0 == systemActive || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && (!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 262]: Loop Invariant Derived loop invariant: (((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1))) && (((0 == systemActive || !(\old(waterLevel) <= 2)) || (((pumpRunning == 0 || waterLevel + 1 <= \old(waterLevel)) && (\old(waterLevel) == waterLevel || waterLevel == 1)) && (!(pumpRunning == 0) || 2 <= waterLevel))) || !(2 <= \old(waterLevel)))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 91]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || (pumpRunning == 0 && waterLevel == 1))) && ((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || tmp == 1)) && (((!(\old(pumpRunning) == 0) || 2 <= tmp) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((((((pumpRunning == 0 && 1 <= tmp) && tmp == waterLevel) && waterLevel == 1) || (\old(waterLevel) == waterLevel && tmp == waterLevel)) || 0 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 0)) || !(0 == systemActive)) || (tmp___0 == 0 && tmp == 0)) - InvariantResult [Line: 122]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 428]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 509]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 509]: Loop Invariant Derived loop invariant: ((tmp == 1 && pumpRunning == 0) && waterLevel == 1) && tmp == systemActive - InvariantResult [Line: 438]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 240]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && tmp == 1)) || !(2 <= waterLevel)) || !(waterLevel <= 2)) || 0 == systemActive) && (((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || 0 == systemActive) || (pumpRunning == 0 && tmp == 0)) RESULT: Ultimate proved your program to be correct! [2022-11-03 01:55:04,160 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_2598868e-eb7a-41cc-a81b-02ce23779274/bin/utaipan-7li7fVZpFI/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE