./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version e04fb08f Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0 --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash e7a194b3d6e079d2329a0d70eaa59b34ff3d58300de8b046ef1cd7cff7f67b94 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-e04fb08 [2022-11-16 19:35:55,701 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-16 19:35:55,703 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-16 19:35:55,722 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-16 19:35:55,722 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-16 19:35:55,723 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-16 19:35:55,724 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-16 19:35:55,726 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-16 19:35:55,728 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-16 19:35:55,729 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-16 19:35:55,730 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-16 19:35:55,731 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-16 19:35:55,731 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-16 19:35:55,733 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-16 19:35:55,734 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-16 19:35:55,735 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-16 19:35:55,736 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-16 19:35:55,737 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-16 19:35:55,738 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-16 19:35:55,740 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-16 19:35:55,741 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-16 19:35:55,742 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-16 19:35:55,743 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-16 19:35:55,744 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-16 19:35:55,747 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-16 19:35:55,748 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-16 19:35:55,748 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-16 19:35:55,749 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-16 19:35:55,750 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-16 19:35:55,750 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-16 19:35:55,751 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-16 19:35:55,751 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-16 19:35:55,752 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-16 19:35:55,753 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-16 19:35:55,754 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-16 19:35:55,754 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-16 19:35:55,755 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-16 19:35:55,755 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-16 19:35:55,756 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-16 19:35:55,756 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-16 19:35:55,757 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-16 19:35:55,758 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-16 19:35:55,780 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-16 19:35:55,780 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-16 19:35:55,780 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-16 19:35:55,790 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-16 19:35:55,791 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-16 19:35:55,791 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-16 19:35:55,792 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-16 19:35:55,792 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-16 19:35:55,792 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-16 19:35:55,792 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-16 19:35:55,793 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-16 19:35:55,794 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-16 19:35:55,794 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-16 19:35:55,794 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-16 19:35:55,794 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-16 19:35:55,795 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-16 19:35:55,795 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-16 19:35:55,795 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-16 19:35:55,796 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-16 19:35:55,796 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-16 19:35:55,796 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-16 19:35:55,797 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-16 19:35:55,797 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-16 19:35:55,797 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-16 19:35:55,798 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-16 19:35:55,798 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-16 19:35:55,798 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-16 19:35:55,798 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-16 19:35:55,799 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-16 19:35:55,799 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-16 19:35:55,799 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-16 19:35:55,800 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-16 19:35:55,800 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-16 19:35:55,800 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-16 19:35:55,800 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-16 19:35:55,801 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-16 19:35:55,801 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-16 19:35:55,802 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-16 19:35:55,802 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-16 19:35:55,802 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-16 19:35:55,802 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-16 19:35:55,803 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0 Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> e7a194b3d6e079d2329a0d70eaa59b34ff3d58300de8b046ef1cd7cff7f67b94 [2022-11-16 19:35:56,089 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-16 19:35:56,109 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-16 19:35:56,111 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-16 19:35:56,113 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-16 19:35:56,114 INFO L275 PluginConnector]: CDTParser initialized [2022-11-16 19:35:56,115 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/../../sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c [2022-11-16 19:35:56,169 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/data/721ba126c/d3038649f9ec474592de51ed94e7a63e/FLAG5965097c6 [2022-11-16 19:35:56,684 INFO L306 CDTParser]: Found 1 translation units. [2022-11-16 19:35:56,685 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c [2022-11-16 19:35:56,706 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/data/721ba126c/d3038649f9ec474592de51ed94e7a63e/FLAG5965097c6 [2022-11-16 19:35:56,984 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/data/721ba126c/d3038649f9ec474592de51ed94e7a63e [2022-11-16 19:35:56,988 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-16 19:35:56,993 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-16 19:35:56,998 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-16 19:35:56,998 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-16 19:35:57,002 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-16 19:35:57,002 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.11 07:35:56" (1/1) ... [2022-11-16 19:35:57,003 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@afe7f1f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57, skipping insertion in model container [2022-11-16 19:35:57,004 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.11 07:35:56" (1/1) ... [2022-11-16 19:35:57,011 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-16 19:35:57,063 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-16 19:35:57,393 WARN L229 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c[17915,17928] [2022-11-16 19:35:57,406 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-16 19:35:57,426 INFO L203 MainTranslator]: Completed pre-run [2022-11-16 19:35:57,510 WARN L229 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c[17915,17928] [2022-11-16 19:35:57,516 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-16 19:35:57,536 INFO L208 MainTranslator]: Completed translation [2022-11-16 19:35:57,537 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57 WrapperNode [2022-11-16 19:35:57,537 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-16 19:35:57,538 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-16 19:35:57,538 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-16 19:35:57,538 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-16 19:35:57,546 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,559 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,612 INFO L138 Inliner]: procedures = 58, calls = 161, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 286 [2022-11-16 19:35:57,619 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-16 19:35:57,620 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-16 19:35:57,620 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-16 19:35:57,620 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-16 19:35:57,633 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,634 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,649 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,649 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,654 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,674 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,675 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,677 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,679 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-16 19:35:57,680 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-16 19:35:57,680 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-16 19:35:57,681 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-16 19:35:57,681 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (1/1) ... [2022-11-16 19:35:57,697 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-16 19:35:57,709 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 [2022-11-16 19:35:57,727 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-16 19:35:57,752 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-16 19:35:57,768 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-16 19:35:57,769 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-16 19:35:57,769 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-16 19:35:57,769 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-16 19:35:57,769 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-16 19:35:57,769 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-16 19:35:57,770 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-16 19:35:57,770 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-16 19:35:57,770 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-16 19:35:57,770 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-16 19:35:57,770 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-16 19:35:57,771 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2022-11-16 19:35:57,771 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2022-11-16 19:35:57,771 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2022-11-16 19:35:57,771 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2022-11-16 19:35:57,771 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-16 19:35:57,771 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-16 19:35:57,772 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-16 19:35:57,772 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-16 19:35:57,772 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-16 19:35:57,772 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-16 19:35:57,772 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-16 19:35:57,885 INFO L235 CfgBuilder]: Building ICFG [2022-11-16 19:35:57,886 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-16 19:35:58,231 INFO L276 CfgBuilder]: Performing block encoding [2022-11-16 19:35:58,454 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-16 19:35:58,454 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-16 19:35:58,457 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 16.11 07:35:58 BoogieIcfgContainer [2022-11-16 19:35:58,458 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-16 19:35:58,461 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-16 19:35:58,461 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-16 19:35:58,465 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-16 19:35:58,466 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 16.11 07:35:56" (1/3) ... [2022-11-16 19:35:58,467 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1d017f57 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.11 07:35:58, skipping insertion in model container [2022-11-16 19:35:58,468 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:35:57" (2/3) ... [2022-11-16 19:35:58,468 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1d017f57 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.11 07:35:58, skipping insertion in model container [2022-11-16 19:35:58,468 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 16.11 07:35:58" (3/3) ... [2022-11-16 19:35:58,471 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product53.cil.c [2022-11-16 19:35:58,496 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-16 19:35:58,496 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-16 19:35:58,583 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-16 19:35:58,590 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@5f482814, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-16 19:35:58,591 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-16 19:35:58,595 INFO L276 IsEmpty]: Start isEmpty. Operand has 69 states, 42 states have (on average 1.4285714285714286) internal successors, (60), 52 states have internal predecessors, (60), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) [2022-11-16 19:35:58,605 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2022-11-16 19:35:58,605 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:35:58,606 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:35:58,606 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:35:58,612 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:35:58,612 INFO L85 PathProgramCache]: Analyzing trace with hash 1080362011, now seen corresponding path program 1 times [2022-11-16 19:35:58,623 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:35:58,623 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1638982015] [2022-11-16 19:35:58,624 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:35:58,624 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:35:58,764 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:35:58,901 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-16 19:35:58,902 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:35:58,902 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1638982015] [2022-11-16 19:35:58,903 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1638982015] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-16 19:35:58,903 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-16 19:35:58,903 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-16 19:35:58,906 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [713369628] [2022-11-16 19:35:58,907 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-16 19:35:58,913 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-16 19:35:58,914 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:35:58,949 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-16 19:35:58,951 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-16 19:35:58,953 INFO L87 Difference]: Start difference. First operand has 69 states, 42 states have (on average 1.4285714285714286) internal successors, (60), 52 states have internal predecessors, (60), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-16 19:35:59,070 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:35:59,070 INFO L93 Difference]: Finished difference Result 136 states and 185 transitions. [2022-11-16 19:35:59,073 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-16 19:35:59,075 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2022-11-16 19:35:59,075 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:35:59,087 INFO L225 Difference]: With dead ends: 136 [2022-11-16 19:35:59,088 INFO L226 Difference]: Without dead ends: 64 [2022-11-16 19:35:59,094 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-16 19:35:59,099 INFO L413 NwaCegarLoop]: 71 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 71 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-16 19:35:59,100 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 71 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-16 19:35:59,118 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 64 states. [2022-11-16 19:35:59,150 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 64 to 64. [2022-11-16 19:35:59,152 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 64 states, 39 states have (on average 1.3333333333333333) internal successors, (52), 48 states have internal predecessors, (52), 16 states have call successors, (16), 9 states have call predecessors, (16), 8 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2022-11-16 19:35:59,160 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 64 states to 64 states and 83 transitions. [2022-11-16 19:35:59,162 INFO L78 Accepts]: Start accepts. Automaton has 64 states and 83 transitions. Word has length 21 [2022-11-16 19:35:59,163 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:35:59,163 INFO L495 AbstractCegarLoop]: Abstraction has 64 states and 83 transitions. [2022-11-16 19:35:59,164 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-16 19:35:59,165 INFO L276 IsEmpty]: Start isEmpty. Operand 64 states and 83 transitions. [2022-11-16 19:35:59,172 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2022-11-16 19:35:59,172 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:35:59,173 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:35:59,173 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-16 19:35:59,173 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:35:59,175 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:35:59,175 INFO L85 PathProgramCache]: Analyzing trace with hash 1884563309, now seen corresponding path program 1 times [2022-11-16 19:35:59,176 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:35:59,176 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1253940915] [2022-11-16 19:35:59,176 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:35:59,177 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:35:59,226 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:35:59,363 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-16 19:35:59,364 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:35:59,365 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1253940915] [2022-11-16 19:35:59,365 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1253940915] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-16 19:35:59,365 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-16 19:35:59,365 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-16 19:35:59,367 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [406737168] [2022-11-16 19:35:59,367 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-16 19:35:59,371 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-16 19:35:59,374 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:35:59,375 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-16 19:35:59,375 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-16 19:35:59,375 INFO L87 Difference]: Start difference. First operand 64 states and 83 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-16 19:35:59,465 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:35:59,465 INFO L93 Difference]: Finished difference Result 126 states and 167 transitions. [2022-11-16 19:35:59,466 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-16 19:35:59,466 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 24 [2022-11-16 19:35:59,466 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:35:59,468 INFO L225 Difference]: With dead ends: 126 [2022-11-16 19:35:59,468 INFO L226 Difference]: Without dead ends: 64 [2022-11-16 19:35:59,469 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-16 19:35:59,470 INFO L413 NwaCegarLoop]: 65 mSDtfsCounter, 70 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 70 SdHoareTripleChecker+Valid, 65 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-16 19:35:59,470 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [70 Valid, 65 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-16 19:35:59,471 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 64 states. [2022-11-16 19:35:59,479 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 64 to 64. [2022-11-16 19:35:59,485 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 64 states, 39 states have (on average 1.3076923076923077) internal successors, (51), 48 states have internal predecessors, (51), 16 states have call successors, (16), 9 states have call predecessors, (16), 8 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2022-11-16 19:35:59,487 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 64 states to 64 states and 82 transitions. [2022-11-16 19:35:59,491 INFO L78 Accepts]: Start accepts. Automaton has 64 states and 82 transitions. Word has length 24 [2022-11-16 19:35:59,492 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:35:59,493 INFO L495 AbstractCegarLoop]: Abstraction has 64 states and 82 transitions. [2022-11-16 19:35:59,493 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-16 19:35:59,493 INFO L276 IsEmpty]: Start isEmpty. Operand 64 states and 82 transitions. [2022-11-16 19:35:59,495 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 31 [2022-11-16 19:35:59,497 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:35:59,497 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:35:59,497 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-16 19:35:59,498 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:35:59,498 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:35:59,504 INFO L85 PathProgramCache]: Analyzing trace with hash -250429362, now seen corresponding path program 1 times [2022-11-16 19:35:59,504 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:35:59,504 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [43974602] [2022-11-16 19:35:59,504 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:35:59,505 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:35:59,524 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:35:59,598 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-16 19:35:59,598 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:35:59,598 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [43974602] [2022-11-16 19:35:59,598 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [43974602] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-16 19:35:59,599 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-16 19:35:59,599 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-16 19:35:59,599 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1280982008] [2022-11-16 19:35:59,599 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-16 19:35:59,600 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-16 19:35:59,600 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:35:59,600 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-16 19:35:59,601 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-16 19:35:59,601 INFO L87 Difference]: Start difference. First operand 64 states and 82 transitions. Second operand has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-11-16 19:35:59,725 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:35:59,725 INFO L93 Difference]: Finished difference Result 175 states and 238 transitions. [2022-11-16 19:35:59,725 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-16 19:35:59,726 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 30 [2022-11-16 19:35:59,726 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:35:59,728 INFO L225 Difference]: With dead ends: 175 [2022-11-16 19:35:59,728 INFO L226 Difference]: Without dead ends: 113 [2022-11-16 19:35:59,729 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-16 19:35:59,730 INFO L413 NwaCegarLoop]: 93 mSDtfsCounter, 57 mSDsluCounter, 59 mSDsCounter, 0 mSdLazyCounter, 34 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 57 SdHoareTripleChecker+Valid, 152 SdHoareTripleChecker+Invalid, 40 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 34 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-16 19:35:59,731 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [57 Valid, 152 Invalid, 40 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 34 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-16 19:35:59,732 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 113 states. [2022-11-16 19:35:59,749 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 113 to 111. [2022-11-16 19:35:59,750 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 111 states, 71 states have (on average 1.2535211267605635) internal successors, (89), 79 states have internal predecessors, (89), 24 states have call successors, (24), 17 states have call predecessors, (24), 15 states have return successors, (32), 20 states have call predecessors, (32), 22 states have call successors, (32) [2022-11-16 19:35:59,752 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 111 states to 111 states and 145 transitions. [2022-11-16 19:35:59,752 INFO L78 Accepts]: Start accepts. Automaton has 111 states and 145 transitions. Word has length 30 [2022-11-16 19:35:59,752 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:35:59,753 INFO L495 AbstractCegarLoop]: Abstraction has 111 states and 145 transitions. [2022-11-16 19:35:59,753 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-11-16 19:35:59,753 INFO L276 IsEmpty]: Start isEmpty. Operand 111 states and 145 transitions. [2022-11-16 19:35:59,758 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2022-11-16 19:35:59,760 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:35:59,761 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:35:59,761 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-16 19:35:59,761 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:35:59,762 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:35:59,766 INFO L85 PathProgramCache]: Analyzing trace with hash 851485166, now seen corresponding path program 1 times [2022-11-16 19:35:59,766 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:35:59,766 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [239835061] [2022-11-16 19:35:59,766 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:35:59,767 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:35:59,780 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:35:59,885 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-16 19:35:59,885 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:35:59,885 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [239835061] [2022-11-16 19:35:59,886 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [239835061] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-16 19:35:59,886 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-16 19:35:59,886 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-16 19:35:59,886 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1650720655] [2022-11-16 19:35:59,887 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-16 19:35:59,888 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-16 19:35:59,889 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:35:59,889 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-16 19:35:59,889 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-16 19:35:59,890 INFO L87 Difference]: Start difference. First operand 111 states and 145 transitions. Second operand has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2022-11-16 19:35:59,966 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:35:59,966 INFO L93 Difference]: Finished difference Result 178 states and 228 transitions. [2022-11-16 19:35:59,967 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-16 19:35:59,967 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 35 [2022-11-16 19:35:59,967 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:35:59,968 INFO L225 Difference]: With dead ends: 178 [2022-11-16 19:35:59,969 INFO L226 Difference]: Without dead ends: 95 [2022-11-16 19:35:59,970 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-16 19:35:59,971 INFO L413 NwaCegarLoop]: 56 mSDtfsCounter, 7 mSDsluCounter, 47 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 103 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-16 19:35:59,972 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 103 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-16 19:35:59,973 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 95 states. [2022-11-16 19:35:59,985 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 95 to 95. [2022-11-16 19:35:59,986 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 95 states, 61 states have (on average 1.2622950819672132) internal successors, (77), 69 states have internal predecessors, (77), 18 states have call successors, (18), 15 states have call predecessors, (18), 15 states have return successors, (24), 16 states have call predecessors, (24), 18 states have call successors, (24) [2022-11-16 19:35:59,987 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 95 states to 95 states and 119 transitions. [2022-11-16 19:35:59,987 INFO L78 Accepts]: Start accepts. Automaton has 95 states and 119 transitions. Word has length 35 [2022-11-16 19:35:59,987 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:35:59,987 INFO L495 AbstractCegarLoop]: Abstraction has 95 states and 119 transitions. [2022-11-16 19:35:59,988 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2022-11-16 19:35:59,988 INFO L276 IsEmpty]: Start isEmpty. Operand 95 states and 119 transitions. [2022-11-16 19:35:59,989 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 38 [2022-11-16 19:35:59,989 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:35:59,989 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:35:59,989 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-16 19:35:59,990 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:35:59,990 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:35:59,990 INFO L85 PathProgramCache]: Analyzing trace with hash 1402126779, now seen corresponding path program 1 times [2022-11-16 19:35:59,991 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:35:59,991 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1608510608] [2022-11-16 19:35:59,991 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:35:59,991 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:36:00,008 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:00,318 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-16 19:36:00,318 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:36:00,319 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1608510608] [2022-11-16 19:36:00,319 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1608510608] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-16 19:36:00,319 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-16 19:36:00,319 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-11-16 19:36:00,320 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1588884870] [2022-11-16 19:36:00,320 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-16 19:36:00,320 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-16 19:36:00,320 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:36:00,321 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-16 19:36:00,321 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2022-11-16 19:36:00,321 INFO L87 Difference]: Start difference. First operand 95 states and 119 transitions. Second operand has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2022-11-16 19:36:00,497 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:36:00,498 INFO L93 Difference]: Finished difference Result 277 states and 346 transitions. [2022-11-16 19:36:00,498 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-11-16 19:36:00,499 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 37 [2022-11-16 19:36:00,499 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:36:00,500 INFO L225 Difference]: With dead ends: 277 [2022-11-16 19:36:00,501 INFO L226 Difference]: Without dead ends: 184 [2022-11-16 19:36:00,501 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2022-11-16 19:36:00,503 INFO L413 NwaCegarLoop]: 91 mSDtfsCounter, 109 mSDsluCounter, 142 mSDsCounter, 0 mSdLazyCounter, 131 mSolverCounterSat, 25 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 110 SdHoareTripleChecker+Valid, 233 SdHoareTripleChecker+Invalid, 156 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 25 IncrementalHoareTripleChecker+Valid, 131 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-16 19:36:00,503 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [110 Valid, 233 Invalid, 156 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [25 Valid, 131 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-16 19:36:00,504 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 184 states. [2022-11-16 19:36:00,529 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 184 to 176. [2022-11-16 19:36:00,529 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 176 states, 113 states have (on average 1.238938053097345) internal successors, (140), 125 states have internal predecessors, (140), 33 states have call successors, (33), 28 states have call predecessors, (33), 29 states have return successors, (45), 30 states have call predecessors, (45), 33 states have call successors, (45) [2022-11-16 19:36:00,531 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 176 states to 176 states and 218 transitions. [2022-11-16 19:36:00,531 INFO L78 Accepts]: Start accepts. Automaton has 176 states and 218 transitions. Word has length 37 [2022-11-16 19:36:00,532 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:36:00,532 INFO L495 AbstractCegarLoop]: Abstraction has 176 states and 218 transitions. [2022-11-16 19:36:00,532 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2022-11-16 19:36:00,532 INFO L276 IsEmpty]: Start isEmpty. Operand 176 states and 218 transitions. [2022-11-16 19:36:00,533 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2022-11-16 19:36:00,533 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:36:00,534 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:36:00,534 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-16 19:36:00,534 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:36:00,534 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:36:00,535 INFO L85 PathProgramCache]: Analyzing trace with hash 775405151, now seen corresponding path program 1 times [2022-11-16 19:36:00,535 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:36:00,535 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1953430536] [2022-11-16 19:36:00,535 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:00,536 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:36:00,555 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:00,950 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-16 19:36:00,950 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:36:00,950 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1953430536] [2022-11-16 19:36:00,950 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1953430536] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-16 19:36:00,951 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-16 19:36:00,951 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-11-16 19:36:00,951 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [16151933] [2022-11-16 19:36:00,951 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-16 19:36:00,952 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-11-16 19:36:00,952 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:36:00,953 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-11-16 19:36:00,953 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-11-16 19:36:00,954 INFO L87 Difference]: Start difference. First operand 176 states and 218 transitions. Second operand has 8 states, 7 states have (on average 4.0) internal successors, (28), 7 states have internal predecessors, (28), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-16 19:36:01,649 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:36:01,649 INFO L93 Difference]: Finished difference Result 424 states and 540 transitions. [2022-11-16 19:36:01,650 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-16 19:36:01,650 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 4.0) internal successors, (28), 7 states have internal predecessors, (28), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) Word has length 40 [2022-11-16 19:36:01,651 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:36:01,658 INFO L225 Difference]: With dead ends: 424 [2022-11-16 19:36:01,658 INFO L226 Difference]: Without dead ends: 304 [2022-11-16 19:36:01,659 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 4 SyntacticMatches, 1 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 30 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=67, Invalid=143, Unknown=0, NotChecked=0, Total=210 [2022-11-16 19:36:01,667 INFO L413 NwaCegarLoop]: 76 mSDtfsCounter, 179 mSDsluCounter, 213 mSDsCounter, 0 mSdLazyCounter, 455 mSolverCounterSat, 67 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 187 SdHoareTripleChecker+Valid, 289 SdHoareTripleChecker+Invalid, 522 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 67 IncrementalHoareTripleChecker+Valid, 455 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-16 19:36:01,670 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [187 Valid, 289 Invalid, 522 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [67 Valid, 455 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2022-11-16 19:36:01,671 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 304 states. [2022-11-16 19:36:01,744 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 304 to 261. [2022-11-16 19:36:01,746 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 261 states, 172 states have (on average 1.244186046511628) internal successors, (214), 189 states have internal predecessors, (214), 46 states have call successors, (46), 35 states have call predecessors, (46), 42 states have return successors, (65), 47 states have call predecessors, (65), 46 states have call successors, (65) [2022-11-16 19:36:01,748 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 261 states to 261 states and 325 transitions. [2022-11-16 19:36:01,748 INFO L78 Accepts]: Start accepts. Automaton has 261 states and 325 transitions. Word has length 40 [2022-11-16 19:36:01,750 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:36:01,750 INFO L495 AbstractCegarLoop]: Abstraction has 261 states and 325 transitions. [2022-11-16 19:36:01,751 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 4.0) internal successors, (28), 7 states have internal predecessors, (28), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-16 19:36:01,751 INFO L276 IsEmpty]: Start isEmpty. Operand 261 states and 325 transitions. [2022-11-16 19:36:01,755 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2022-11-16 19:36:01,755 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:36:01,756 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:36:01,756 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-16 19:36:01,756 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:36:01,756 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:36:01,757 INFO L85 PathProgramCache]: Analyzing trace with hash 1685826622, now seen corresponding path program 1 times [2022-11-16 19:36:01,757 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:36:01,757 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1623520828] [2022-11-16 19:36:01,757 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:01,758 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:36:01,787 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:01,947 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-16 19:36:01,948 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:36:01,948 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1623520828] [2022-11-16 19:36:01,948 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1623520828] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-16 19:36:01,948 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-16 19:36:01,948 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-11-16 19:36:01,949 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [101738217] [2022-11-16 19:36:01,949 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-16 19:36:01,949 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2022-11-16 19:36:01,949 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:36:01,950 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2022-11-16 19:36:01,950 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2022-11-16 19:36:01,950 INFO L87 Difference]: Start difference. First operand 261 states and 325 transitions. Second operand has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-16 19:36:02,278 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:36:02,278 INFO L93 Difference]: Finished difference Result 555 states and 698 transitions. [2022-11-16 19:36:02,278 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-11-16 19:36:02,279 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) Word has length 40 [2022-11-16 19:36:02,279 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:36:02,283 INFO L225 Difference]: With dead ends: 555 [2022-11-16 19:36:02,283 INFO L226 Difference]: Without dead ends: 296 [2022-11-16 19:36:02,284 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 20 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 22 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=53, Invalid=157, Unknown=0, NotChecked=0, Total=210 [2022-11-16 19:36:02,290 INFO L413 NwaCegarLoop]: 61 mSDtfsCounter, 69 mSDsluCounter, 215 mSDsCounter, 0 mSdLazyCounter, 267 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 75 SdHoareTripleChecker+Valid, 276 SdHoareTripleChecker+Invalid, 306 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 267 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-16 19:36:02,290 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [75 Valid, 276 Invalid, 306 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 267 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-16 19:36:02,292 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 296 states. [2022-11-16 19:36:02,345 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 296 to 268. [2022-11-16 19:36:02,347 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 268 states, 176 states have (on average 1.2102272727272727) internal successors, (213), 193 states have internal predecessors, (213), 47 states have call successors, (47), 35 states have call predecessors, (47), 44 states have return successors, (70), 50 states have call predecessors, (70), 47 states have call successors, (70) [2022-11-16 19:36:02,350 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 268 states to 268 states and 330 transitions. [2022-11-16 19:36:02,350 INFO L78 Accepts]: Start accepts. Automaton has 268 states and 330 transitions. Word has length 40 [2022-11-16 19:36:02,351 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:36:02,351 INFO L495 AbstractCegarLoop]: Abstraction has 268 states and 330 transitions. [2022-11-16 19:36:02,351 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-16 19:36:02,351 INFO L276 IsEmpty]: Start isEmpty. Operand 268 states and 330 transitions. [2022-11-16 19:36:02,353 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 71 [2022-11-16 19:36:02,353 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:36:02,354 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:36:02,354 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-16 19:36:02,354 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:36:02,354 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:36:02,354 INFO L85 PathProgramCache]: Analyzing trace with hash 1803947791, now seen corresponding path program 1 times [2022-11-16 19:36:02,355 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:36:02,355 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2142628098] [2022-11-16 19:36:02,355 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:02,355 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:36:02,388 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:02,510 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 8 proven. 12 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-16 19:36:02,511 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:36:02,511 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2142628098] [2022-11-16 19:36:02,511 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2142628098] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-16 19:36:02,511 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [314627378] [2022-11-16 19:36:02,511 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:02,512 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-16 19:36:02,513 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 [2022-11-16 19:36:02,518 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-16 19:36:02,548 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-16 19:36:02,660 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:02,663 INFO L263 TraceCheckSpWp]: Trace formula consists of 460 conjuncts, 4 conjunts are in the unsatisfiable core [2022-11-16 19:36:02,677 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-16 19:36:02,808 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 32 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-16 19:36:02,808 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-16 19:36:02,809 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [314627378] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-16 19:36:02,809 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-16 19:36:02,809 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [7] total 8 [2022-11-16 19:36:02,809 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [70816534] [2022-11-16 19:36:02,809 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-16 19:36:02,810 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-16 19:36:02,810 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:36:02,810 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-16 19:36:02,822 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2022-11-16 19:36:02,822 INFO L87 Difference]: Start difference. First operand 268 states and 330 transitions. Second operand has 3 states, 3 states have (on average 17.0) internal successors, (51), 3 states have internal predecessors, (51), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) [2022-11-16 19:36:02,916 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:36:02,916 INFO L93 Difference]: Finished difference Result 405 states and 503 transitions. [2022-11-16 19:36:02,916 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-16 19:36:02,916 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 17.0) internal successors, (51), 3 states have internal predecessors, (51), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) Word has length 70 [2022-11-16 19:36:02,917 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:36:02,918 INFO L225 Difference]: With dead ends: 405 [2022-11-16 19:36:02,918 INFO L226 Difference]: Without dead ends: 258 [2022-11-16 19:36:02,919 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 77 GetRequests, 71 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 8 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2022-11-16 19:36:02,919 INFO L413 NwaCegarLoop]: 80 mSDtfsCounter, 35 mSDsluCounter, 39 mSDsCounter, 0 mSdLazyCounter, 36 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 35 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 38 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 36 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-16 19:36:02,920 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [35 Valid, 119 Invalid, 38 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 36 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-16 19:36:02,921 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 258 states. [2022-11-16 19:36:02,954 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 258 to 258. [2022-11-16 19:36:02,955 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 258 states, 169 states have (on average 1.1775147928994083) internal successors, (199), 185 states have internal predecessors, (199), 45 states have call successors, (45), 35 states have call predecessors, (45), 43 states have return successors, (56), 48 states have call predecessors, (56), 45 states have call successors, (56) [2022-11-16 19:36:02,956 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 258 states to 258 states and 300 transitions. [2022-11-16 19:36:02,957 INFO L78 Accepts]: Start accepts. Automaton has 258 states and 300 transitions. Word has length 70 [2022-11-16 19:36:02,959 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:36:02,959 INFO L495 AbstractCegarLoop]: Abstraction has 258 states and 300 transitions. [2022-11-16 19:36:02,959 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 17.0) internal successors, (51), 3 states have internal predecessors, (51), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) [2022-11-16 19:36:02,960 INFO L276 IsEmpty]: Start isEmpty. Operand 258 states and 300 transitions. [2022-11-16 19:36:02,961 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 75 [2022-11-16 19:36:02,961 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:36:02,961 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:36:02,972 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2022-11-16 19:36:03,167 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable7 [2022-11-16 19:36:03,167 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:36:03,168 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:36:03,168 INFO L85 PathProgramCache]: Analyzing trace with hash -925446459, now seen corresponding path program 1 times [2022-11-16 19:36:03,168 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:36:03,168 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1614124077] [2022-11-16 19:36:03,168 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:03,168 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:36:03,194 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:03,402 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 5 proven. 16 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-11-16 19:36:03,403 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:36:03,403 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1614124077] [2022-11-16 19:36:03,403 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1614124077] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-16 19:36:03,403 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1898266808] [2022-11-16 19:36:03,403 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:03,404 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-16 19:36:03,404 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 [2022-11-16 19:36:03,406 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-16 19:36:03,438 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-16 19:36:03,543 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:03,545 INFO L263 TraceCheckSpWp]: Trace formula consists of 480 conjuncts, 8 conjunts are in the unsatisfiable core [2022-11-16 19:36:03,551 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-16 19:36:03,717 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 20 proven. 9 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-16 19:36:03,718 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-16 19:36:03,948 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 13 proven. 8 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-11-16 19:36:03,948 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1898266808] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-16 19:36:03,948 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [430364218] [2022-11-16 19:36:03,969 INFO L159 IcfgInterpreter]: Started Sifa with 48 locations of interest [2022-11-16 19:36:03,970 INFO L166 IcfgInterpreter]: Building call graph [2022-11-16 19:36:03,974 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-16 19:36:03,979 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-16 19:36:03,979 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-16 19:36:10,414 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 50 for LOIs [2022-11-16 19:36:10,423 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 29 for LOIs [2022-11-16 19:36:10,751 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 65 for LOIs [2022-11-16 19:36:11,381 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 57 for LOIs [2022-11-16 19:36:11,464 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 53 for LOIs [2022-11-16 19:36:11,475 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 39 for LOIs [2022-11-16 19:36:11,481 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-16 19:36:18,768 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6317#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (= ~methaneLevelCritical~0 0) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (= ~head~0.offset 0) (<= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 2147483647) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 0)) (<= |old(~pumpRunning~0)| 2147483647) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (= 1 ~systemActive~0) (<= 0 (+ |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 2147483648)) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| 2)) (<= 0 (+ 2147483648 |timeShift_getWaterLevel_#res#1|)) (<= |timeShift_getWaterLevel_#res#1| 2147483647) (= ~head~0.base 0) (= |#NULL.offset| 0) (= ~switchedOnBeforeTS~0 0) (<= 0 |#StackHeapBarrier|) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-16 19:36:18,769 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-16 19:36:18,769 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-16 19:36:18,769 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 6, 6] total 15 [2022-11-16 19:36:18,769 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1290835109] [2022-11-16 19:36:18,770 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-16 19:36:18,770 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2022-11-16 19:36:18,770 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:36:18,771 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2022-11-16 19:36:18,772 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=293, Invalid=1963, Unknown=0, NotChecked=0, Total=2256 [2022-11-16 19:36:18,772 INFO L87 Difference]: Start difference. First operand 258 states and 300 transitions. Second operand has 15 states, 12 states have (on average 7.916666666666667) internal successors, (95), 13 states have internal predecessors, (95), 7 states have call successors, (23), 4 states have call predecessors, (23), 8 states have return successors, (22), 10 states have call predecessors, (22), 7 states have call successors, (22) [2022-11-16 19:36:19,598 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:36:19,598 INFO L93 Difference]: Finished difference Result 338 states and 403 transitions. [2022-11-16 19:36:19,598 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2022-11-16 19:36:19,599 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 12 states have (on average 7.916666666666667) internal successors, (95), 13 states have internal predecessors, (95), 7 states have call successors, (23), 4 states have call predecessors, (23), 8 states have return successors, (22), 10 states have call predecessors, (22), 7 states have call successors, (22) Word has length 74 [2022-11-16 19:36:19,599 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:36:19,601 INFO L225 Difference]: With dead ends: 338 [2022-11-16 19:36:19,601 INFO L226 Difference]: Without dead ends: 336 [2022-11-16 19:36:19,603 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 250 GetRequests, 175 SyntacticMatches, 15 SemanticMatches, 60 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1565 ImplicationChecksByTransitivity, 7.7s TimeCoverageRelationStatistics Valid=466, Invalid=3316, Unknown=0, NotChecked=0, Total=3782 [2022-11-16 19:36:19,607 INFO L413 NwaCegarLoop]: 118 mSDtfsCounter, 174 mSDsluCounter, 545 mSDsCounter, 0 mSdLazyCounter, 524 mSolverCounterSat, 123 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 663 SdHoareTripleChecker+Invalid, 647 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 123 IncrementalHoareTripleChecker+Valid, 524 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-16 19:36:19,607 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 663 Invalid, 647 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [123 Valid, 524 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-16 19:36:19,608 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 336 states. [2022-11-16 19:36:19,647 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 336 to 294. [2022-11-16 19:36:19,649 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 294 states, 190 states have (on average 1.168421052631579) internal successors, (222), 211 states have internal predecessors, (222), 53 states have call successors, (53), 43 states have call predecessors, (53), 50 states have return successors, (68), 54 states have call predecessors, (68), 53 states have call successors, (68) [2022-11-16 19:36:19,651 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 294 states to 294 states and 343 transitions. [2022-11-16 19:36:19,652 INFO L78 Accepts]: Start accepts. Automaton has 294 states and 343 transitions. Word has length 74 [2022-11-16 19:36:19,652 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:36:19,652 INFO L495 AbstractCegarLoop]: Abstraction has 294 states and 343 transitions. [2022-11-16 19:36:19,653 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 12 states have (on average 7.916666666666667) internal successors, (95), 13 states have internal predecessors, (95), 7 states have call successors, (23), 4 states have call predecessors, (23), 8 states have return successors, (22), 10 states have call predecessors, (22), 7 states have call successors, (22) [2022-11-16 19:36:19,653 INFO L276 IsEmpty]: Start isEmpty. Operand 294 states and 343 transitions. [2022-11-16 19:36:19,655 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 94 [2022-11-16 19:36:19,655 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:36:19,655 INFO L195 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:36:19,662 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-16 19:36:19,861 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-16 19:36:19,861 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:36:19,862 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:36:19,862 INFO L85 PathProgramCache]: Analyzing trace with hash 979712234, now seen corresponding path program 1 times [2022-11-16 19:36:19,862 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:36:19,862 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [182948540] [2022-11-16 19:36:19,862 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:19,863 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:36:19,880 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:20,157 INFO L134 CoverageAnalysis]: Checked inductivity of 70 backedges. 33 proven. 3 refuted. 0 times theorem prover too weak. 34 trivial. 0 not checked. [2022-11-16 19:36:20,157 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:36:20,157 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [182948540] [2022-11-16 19:36:20,157 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [182948540] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-16 19:36:20,157 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1078184448] [2022-11-16 19:36:20,158 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:20,158 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-16 19:36:20,158 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 [2022-11-16 19:36:20,159 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-16 19:36:20,178 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-16 19:36:20,282 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:20,285 INFO L263 TraceCheckSpWp]: Trace formula consists of 545 conjuncts, 18 conjunts are in the unsatisfiable core [2022-11-16 19:36:20,288 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-16 19:36:20,501 INFO L134 CoverageAnalysis]: Checked inductivity of 70 backedges. 63 proven. 3 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-16 19:36:20,501 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-16 19:36:20,852 INFO L134 CoverageAnalysis]: Checked inductivity of 70 backedges. 45 proven. 3 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2022-11-16 19:36:20,852 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1078184448] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-16 19:36:20,852 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1904784861] [2022-11-16 19:36:20,855 INFO L159 IcfgInterpreter]: Started Sifa with 45 locations of interest [2022-11-16 19:36:20,855 INFO L166 IcfgInterpreter]: Building call graph [2022-11-16 19:36:20,856 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-16 19:36:20,856 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-16 19:36:20,856 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-16 19:36:25,866 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 53 for LOIs [2022-11-16 19:36:25,875 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 49 for LOIs [2022-11-16 19:36:26,447 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 29 for LOIs [2022-11-16 19:36:26,489 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 26 for LOIs [2022-11-16 19:36:26,510 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 42 for LOIs [2022-11-16 19:36:26,515 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-16 19:36:33,118 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7923#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (= ~methaneLevelCritical~0 0) (= ~head~0.offset 0) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| 2)) (= |old(~waterLevel~0)| ~waterLevel~0) (<= |timeShift_getWaterLevel_#res#1| 2147483647) (<= 2 |timeShift_getWaterLevel_#res#1|) (= ~head~0.base 0) (= |#NULL.offset| 0) (= ~switchedOnBeforeTS~0 0) (<= 0 |#StackHeapBarrier|) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|) (= ~pumpRunning~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-16 19:36:33,119 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-16 19:36:33,119 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-16 19:36:33,119 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 9, 9] total 20 [2022-11-16 19:36:33,119 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1131215382] [2022-11-16 19:36:33,119 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-16 19:36:33,120 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2022-11-16 19:36:33,120 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:36:33,120 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2022-11-16 19:36:33,121 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=271, Invalid=1891, Unknown=0, NotChecked=0, Total=2162 [2022-11-16 19:36:33,122 INFO L87 Difference]: Start difference. First operand 294 states and 343 transitions. Second operand has 20 states, 20 states have (on average 5.4) internal successors, (108), 20 states have internal predecessors, (108), 9 states have call successors, (23), 5 states have call predecessors, (23), 8 states have return successors, (24), 10 states have call predecessors, (24), 9 states have call successors, (24) [2022-11-16 19:36:34,835 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:36:34,835 INFO L93 Difference]: Finished difference Result 859 states and 1094 transitions. [2022-11-16 19:36:34,836 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 32 states. [2022-11-16 19:36:34,836 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 5.4) internal successors, (108), 20 states have internal predecessors, (108), 9 states have call successors, (23), 5 states have call predecessors, (23), 8 states have return successors, (24), 10 states have call predecessors, (24), 9 states have call successors, (24) Word has length 93 [2022-11-16 19:36:34,837 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:36:34,844 INFO L225 Difference]: With dead ends: 859 [2022-11-16 19:36:34,845 INFO L226 Difference]: Without dead ends: 559 [2022-11-16 19:36:34,848 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 332 GetRequests, 249 SyntacticMatches, 11 SemanticMatches, 72 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2118 ImplicationChecksByTransitivity, 7.5s TimeCoverageRelationStatistics Valid=647, Invalid=4755, Unknown=0, NotChecked=0, Total=5402 [2022-11-16 19:36:34,849 INFO L413 NwaCegarLoop]: 60 mSDtfsCounter, 523 mSDsluCounter, 314 mSDsCounter, 0 mSdLazyCounter, 1075 mSolverCounterSat, 372 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 526 SdHoareTripleChecker+Valid, 374 SdHoareTripleChecker+Invalid, 1447 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 372 IncrementalHoareTripleChecker+Valid, 1075 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2022-11-16 19:36:34,849 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [526 Valid, 374 Invalid, 1447 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [372 Valid, 1075 Invalid, 0 Unknown, 0 Unchecked, 0.9s Time] [2022-11-16 19:36:34,850 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 559 states. [2022-11-16 19:36:34,893 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 559 to 368. [2022-11-16 19:36:34,894 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 368 states, 238 states have (on average 1.1302521008403361) internal successors, (269), 261 states have internal predecessors, (269), 63 states have call successors, (63), 56 states have call predecessors, (63), 66 states have return successors, (83), 67 states have call predecessors, (83), 63 states have call successors, (83) [2022-11-16 19:36:34,896 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 368 states to 368 states and 415 transitions. [2022-11-16 19:36:34,896 INFO L78 Accepts]: Start accepts. Automaton has 368 states and 415 transitions. Word has length 93 [2022-11-16 19:36:34,896 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:36:34,897 INFO L495 AbstractCegarLoop]: Abstraction has 368 states and 415 transitions. [2022-11-16 19:36:34,897 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 20 states have (on average 5.4) internal successors, (108), 20 states have internal predecessors, (108), 9 states have call successors, (23), 5 states have call predecessors, (23), 8 states have return successors, (24), 10 states have call predecessors, (24), 9 states have call successors, (24) [2022-11-16 19:36:34,897 INFO L276 IsEmpty]: Start isEmpty. Operand 368 states and 415 transitions. [2022-11-16 19:36:34,899 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 99 [2022-11-16 19:36:34,899 INFO L187 NwaCegarLoop]: Found error trace [2022-11-16 19:36:34,899 INFO L195 NwaCegarLoop]: trace histogram [5, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:36:34,915 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-16 19:36:35,106 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-16 19:36:35,106 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-16 19:36:35,107 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-16 19:36:35,107 INFO L85 PathProgramCache]: Analyzing trace with hash 72161971, now seen corresponding path program 1 times [2022-11-16 19:36:35,107 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-16 19:36:35,107 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2057112886] [2022-11-16 19:36:35,107 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:35,107 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-16 19:36:35,127 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:36,218 INFO L134 CoverageAnalysis]: Checked inductivity of 81 backedges. 17 proven. 39 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2022-11-16 19:36:36,218 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-16 19:36:36,218 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2057112886] [2022-11-16 19:36:36,218 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2057112886] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-16 19:36:36,218 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [997749483] [2022-11-16 19:36:36,219 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-16 19:36:36,219 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-16 19:36:36,219 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 [2022-11-16 19:36:36,222 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-16 19:36:36,242 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-16 19:36:36,346 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-16 19:36:36,349 INFO L263 TraceCheckSpWp]: Trace formula consists of 559 conjuncts, 34 conjunts are in the unsatisfiable core [2022-11-16 19:36:36,353 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-16 19:36:36,816 INFO L134 CoverageAnalysis]: Checked inductivity of 81 backedges. 25 proven. 54 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-16 19:36:36,816 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-16 19:36:37,756 INFO L134 CoverageAnalysis]: Checked inductivity of 81 backedges. 51 proven. 5 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2022-11-16 19:36:37,757 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [997749483] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-16 19:36:37,757 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1569867937] [2022-11-16 19:36:37,759 INFO L159 IcfgInterpreter]: Started Sifa with 45 locations of interest [2022-11-16 19:36:37,759 INFO L166 IcfgInterpreter]: Building call graph [2022-11-16 19:36:37,759 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-16 19:36:37,760 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-16 19:36:37,760 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-16 19:36:42,576 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 35 for LOIs [2022-11-16 19:36:42,581 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 30 for LOIs [2022-11-16 19:36:42,714 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 26 for LOIs [2022-11-16 19:36:42,750 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 26 for LOIs [2022-11-16 19:36:42,768 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 56 for LOIs [2022-11-16 19:36:42,779 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-16 19:36:48,350 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10515#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (= ~methaneLevelCritical~0 0) (= ~head~0.offset 0) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (= 1 ~systemActive~0) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| 2)) (= |old(~waterLevel~0)| ~waterLevel~0) (<= |timeShift_getWaterLevel_#res#1| 2147483647) (<= 2 |timeShift_getWaterLevel_#res#1|) (= ~head~0.base 0) (= |#NULL.offset| 0) (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|) (= ~switchedOnBeforeTS~0 0) (<= 0 |#StackHeapBarrier|) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|) (= ~pumpRunning~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-16 19:36:48,351 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-16 19:36:48,351 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-16 19:36:48,351 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 13, 11] total 36 [2022-11-16 19:36:48,351 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1669948045] [2022-11-16 19:36:48,351 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-16 19:36:48,352 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 36 states [2022-11-16 19:36:48,352 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-16 19:36:48,353 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 36 interpolants. [2022-11-16 19:36:48,354 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=510, Invalid=3396, Unknown=0, NotChecked=0, Total=3906 [2022-11-16 19:36:48,355 INFO L87 Difference]: Start difference. First operand 368 states and 415 transitions. Second operand has 36 states, 35 states have (on average 4.885714285714286) internal successors, (171), 36 states have internal predecessors, (171), 19 states have call successors, (37), 9 states have call predecessors, (37), 13 states have return successors, (36), 21 states have call predecessors, (36), 18 states have call successors, (36) [2022-11-16 19:36:51,715 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-16 19:36:51,715 INFO L93 Difference]: Finished difference Result 901 states and 1050 transitions. [2022-11-16 19:36:51,716 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 44 states. [2022-11-16 19:36:51,716 INFO L78 Accepts]: Start accepts. Automaton has has 36 states, 35 states have (on average 4.885714285714286) internal successors, (171), 36 states have internal predecessors, (171), 19 states have call successors, (37), 9 states have call predecessors, (37), 13 states have return successors, (36), 21 states have call predecessors, (36), 18 states have call successors, (36) Word has length 98 [2022-11-16 19:36:51,717 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-16 19:36:51,717 INFO L225 Difference]: With dead ends: 901 [2022-11-16 19:36:51,718 INFO L226 Difference]: Without dead ends: 0 [2022-11-16 19:36:51,722 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 382 GetRequests, 268 SyntacticMatches, 11 SemanticMatches, 103 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4103 ImplicationChecksByTransitivity, 7.7s TimeCoverageRelationStatistics Valid=1520, Invalid=9400, Unknown=0, NotChecked=0, Total=10920 [2022-11-16 19:36:51,723 INFO L413 NwaCegarLoop]: 101 mSDtfsCounter, 1757 mSDsluCounter, 508 mSDsCounter, 0 mSdLazyCounter, 1864 mSolverCounterSat, 1412 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1757 SdHoareTripleChecker+Valid, 609 SdHoareTripleChecker+Invalid, 3276 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1412 IncrementalHoareTripleChecker+Valid, 1864 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.6s IncrementalHoareTripleChecker+Time [2022-11-16 19:36:51,723 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1757 Valid, 609 Invalid, 3276 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1412 Valid, 1864 Invalid, 0 Unknown, 0 Unchecked, 1.6s Time] [2022-11-16 19:36:51,724 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-16 19:36:51,724 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-16 19:36:51,724 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-16 19:36:51,724 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-16 19:36:51,725 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 98 [2022-11-16 19:36:51,725 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-16 19:36:51,725 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-16 19:36:51,725 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 36 states, 35 states have (on average 4.885714285714286) internal successors, (171), 36 states have internal predecessors, (171), 19 states have call successors, (37), 9 states have call predecessors, (37), 13 states have return successors, (36), 21 states have call predecessors, (36), 18 states have call successors, (36) [2022-11-16 19:36:51,726 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-16 19:36:51,726 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-16 19:36:51,728 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-16 19:36:51,737 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-16 19:36:51,935 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-16 19:36:51,936 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-16 19:36:57,976 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 551 558) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-16 19:36:57,976 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 551 558) no Hoare annotation was computed. [2022-11-16 19:36:57,976 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 458 464) no Hoare annotation was computed. [2022-11-16 19:36:57,976 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 458 464) the Hoare annotation is: true [2022-11-16 19:36:57,977 INFO L902 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 943 954) the Hoare annotation is: true [2022-11-16 19:36:57,977 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 943 954) no Hoare annotation was computed. [2022-11-16 19:36:57,977 INFO L899 garLoopResultBuilder]: For program point L833(line 833) no Hoare annotation was computed. [2022-11-16 19:36:57,977 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 812 841) no Hoare annotation was computed. [2022-11-16 19:36:57,977 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 812 841) the Hoare annotation is: true [2022-11-16 19:36:57,977 INFO L899 garLoopResultBuilder]: For program point L826(lines 826 830) no Hoare annotation was computed. [2022-11-16 19:36:57,978 INFO L902 garLoopResultBuilder]: At program point L826-1(lines 826 830) the Hoare annotation is: true [2022-11-16 19:36:57,978 INFO L902 garLoopResultBuilder]: At program point L822-2(lines 822 836) the Hoare annotation is: true [2022-11-16 19:36:57,978 INFO L902 garLoopResultBuilder]: At program point L818(line 818) the Hoare annotation is: true [2022-11-16 19:36:57,978 INFO L899 garLoopResultBuilder]: For program point L818-1(line 818) no Hoare annotation was computed. [2022-11-16 19:36:57,978 INFO L902 garLoopResultBuilder]: At program point L837(lines 812 841) the Hoare annotation is: true [2022-11-16 19:36:57,979 INFO L895 garLoopResultBuilder]: At program point L791(line 791) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse6 (= ~pumpRunning~0 1)) (.cse7 (not (= |old(~pumpRunning~0)| 1))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| ~waterLevel~0)) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse5 (<= 1 ~switchedOnBeforeTS~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (and .cse1 (<= ~waterLevel~0 1) .cse2 .cse3) (not (< |old(~waterLevel~0)| 3))) (let ((.cse4 (= ~waterLevel~0 1))) (or .cse0 (and .cse2 .cse4 .cse5 .cse6) .cse7 (and .cse1 .cse2 .cse4 .cse5) (not (= |old(~waterLevel~0)| 2)))) (let ((.cse9 (< 0 |old(~waterLevel~0)|))) (let ((.cse8 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse9))) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 (and (<= ~waterLevel~0 0) .cse2 (or .cse8 .cse3) .cse5 .cse6) .cse7 (and .cse1 .cse2 (or (and (not .cse9) .cse3) .cse8) .cse5) (not (<= 1 |old(~switchedOnBeforeTS~0)|))))))) [2022-11-16 19:36:57,979 INFO L899 garLoopResultBuilder]: For program point L791-1(line 791) no Hoare annotation was computed. [2022-11-16 19:36:57,979 INFO L895 garLoopResultBuilder]: At program point L445-1(lines 445 451) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse4 (= ~pumpRunning~0 1)) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (and (let ((.cse2 (= ~waterLevel~0 1))) (or .cse0 .cse1 (and .cse2 .cse3 .cse4) (not (= |old(~waterLevel~0)| 2)) (and .cse5 .cse2 .cse3))) (or (and (= 2 ~waterLevel~0) .cse6 .cse4) (not (= |old(~pumpRunning~0)| 0)) (and .cse5 .cse6) .cse0 (not (< |old(~waterLevel~0)| 3))) (let ((.cse8 (< 0 |old(~waterLevel~0)|))) (let ((.cse7 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse8))) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 (and (<= ~waterLevel~0 0) (or .cse7 .cse6) .cse3 .cse4) (not (<= 1 |old(~switchedOnBeforeTS~0)|)) (and .cse5 (or (and (not .cse8) .cse6) .cse7) .cse3)))))) [2022-11-16 19:36:57,980 INFO L895 garLoopResultBuilder]: At program point L532(line 532) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= ~pumpRunning~0 1)) (.cse4 (not (<= 1 |old(~switchedOnBeforeTS~0)|))) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 (and (= ~waterLevel~0 1) .cse2 .cse3) (not (= |old(~waterLevel~0)| 2))) (or (not (= |old(~waterLevel~0)| 1)) .cse0 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse2 .cse3) .cse1 .cse4) (or .cse0 .cse1 (and (= |old(~waterLevel~0)| ~waterLevel~0) .cse2 .cse3) (not (<= |old(~waterLevel~0)| 0)) .cse4) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< |old(~waterLevel~0)| 3))))) [2022-11-16 19:36:57,980 INFO L895 garLoopResultBuilder]: At program point L528(line 528) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= ~pumpRunning~0 1)) (.cse4 (not (<= 1 |old(~switchedOnBeforeTS~0)|))) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 (and (= ~waterLevel~0 1) .cse2 .cse3) (not (= |old(~waterLevel~0)| 2))) (or (not (= |old(~waterLevel~0)| 1)) .cse0 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse2 .cse3) .cse1 .cse4) (or .cse0 .cse1 (and (= |old(~waterLevel~0)| ~waterLevel~0) .cse2 .cse3) (not (<= |old(~waterLevel~0)| 0)) .cse4) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< |old(~waterLevel~0)| 3))))) [2022-11-16 19:36:57,980 INFO L895 garLoopResultBuilder]: At program point L912(line 912) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not (< |old(~waterLevel~0)| 3)))) (and (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2))) (or .cse0 .cse1 (not (<= 1 |old(~switchedOnBeforeTS~0)|)) .cse2) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse2))) [2022-11-16 19:36:57,981 INFO L895 garLoopResultBuilder]: At program point L776(line 776) the Hoare annotation is: (let ((.cse7 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse6 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (not (<= 1 |old(~switchedOnBeforeTS~0)|))) (.cse5 (not (< |old(~waterLevel~0)| 3))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (and .cse7 (= ~pumpRunning~0 1)))) (and (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse1 .cse4 .cse3 .cse5) (or .cse6 (and (= ~pumpRunning~0 0) .cse7) .cse0 .cse5) (or .cse6 .cse0 .cse4 .cse3 .cse5) (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2)) .cse2)))) [2022-11-16 19:36:57,981 INFO L895 garLoopResultBuilder]: At program point L776-1(line 776) the Hoare annotation is: (let ((.cse0 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse4 (= 1 ~systemActive~0))) (let ((.cse1 (not .cse4)) (.cse2 (and (<= 1 |timeShift___utac_acc__Specification5_spec__2_#t~ret46#1|) .cse4 .cse0 (< ~waterLevel~0 3) (= ~pumpRunning~0 1))) (.cse3 (not (= |old(~pumpRunning~0)| 1)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) .cse0) .cse1 (not (< |old(~waterLevel~0)| 3))) (or .cse1 .cse2 .cse3 (not (= |old(~waterLevel~0)| 2))) (or (not (<= |old(~waterLevel~0)| 1)) .cse1 .cse2 .cse3 (not (<= 1 |old(~switchedOnBeforeTS~0)|)))))) [2022-11-16 19:36:57,981 INFO L895 garLoopResultBuilder]: At program point L537(line 537) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not (< |old(~waterLevel~0)| 3)))) (and (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2))) (or .cse0 .cse1 (not (<= 1 |old(~switchedOnBeforeTS~0)|)) .cse2) (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse0 .cse2))) [2022-11-16 19:36:57,982 INFO L899 garLoopResultBuilder]: For program point L793(lines 793 803) no Hoare annotation was computed. [2022-11-16 19:36:57,982 INFO L895 garLoopResultBuilder]: At program point L537-1(lines 518 542) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse4 (= ~pumpRunning~0 1)) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (and (let ((.cse2 (= ~waterLevel~0 1))) (or .cse0 .cse1 (and .cse2 .cse3 .cse4) (not (= |old(~waterLevel~0)| 2)) (and .cse5 .cse2 .cse3))) (or (and (= 2 ~waterLevel~0) .cse6 .cse4) (not (= |old(~pumpRunning~0)| 0)) (and .cse5 .cse6) .cse0 (not (< |old(~waterLevel~0)| 3))) (let ((.cse8 (< 0 |old(~waterLevel~0)|))) (let ((.cse7 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse8))) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 (and (<= ~waterLevel~0 0) (or .cse7 .cse6) .cse3 .cse4) (not (<= 1 |old(~switchedOnBeforeTS~0)|)) (and .cse5 (or (and (not .cse8) .cse6) .cse7) .cse3)))))) [2022-11-16 19:36:57,982 INFO L899 garLoopResultBuilder]: For program point L789(lines 789 806) no Hoare annotation was computed. [2022-11-16 19:36:57,982 INFO L899 garLoopResultBuilder]: For program point L438-2(lines 434 456) no Hoare annotation was computed. [2022-11-16 19:36:57,983 INFO L895 garLoopResultBuilder]: At program point L789-1(lines 781 809) the Hoare annotation is: (let ((.cse5 (= 1 ~systemActive~0))) (let ((.cse4 (= ~pumpRunning~0 0)) (.cse3 (not .cse5)) (.cse0 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| ~waterLevel~0)) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (<= 1 ~switchedOnBeforeTS~0)) (.cse2 (= ~pumpRunning~0 1)) (.cse8 (not (= |old(~pumpRunning~0)| 1)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and .cse0 .cse1 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| 2) .cse2) .cse3 (and .cse4 .cse5 .cse0 .cse1) (not (< |old(~waterLevel~0)| 3))) (let ((.cse6 (= ~waterLevel~0 1))) (or (and .cse4 .cse5 .cse0 .cse6 .cse7) .cse3 (and .cse0 .cse6 .cse7 .cse2) .cse8 (not (= |old(~waterLevel~0)| 2)))) (let ((.cse9 (< 0 |old(~waterLevel~0)|))) (let ((.cse10 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse9))) (or (and .cse4 .cse5 .cse0 (or (and (not .cse9) .cse1) .cse10) .cse7) (not (<= |old(~waterLevel~0)| 1)) .cse3 (and (<= ~waterLevel~0 0) .cse0 (or .cse10 .cse1) .cse7 .cse2) .cse8 (not (<= 1 |old(~switchedOnBeforeTS~0)|)))))))) [2022-11-16 19:36:57,983 INFO L899 garLoopResultBuilder]: For program point L794(lines 794 800) no Hoare annotation was computed. [2022-11-16 19:36:57,983 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 431 457) the Hoare annotation is: (let ((.cse7 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse6 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (not (<= 1 |old(~switchedOnBeforeTS~0)|))) (.cse5 (not (< |old(~waterLevel~0)| 3))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (and .cse7 (= ~pumpRunning~0 1)))) (and (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse1 .cse4 .cse3 .cse5) (or .cse6 (and (= ~pumpRunning~0 0) .cse7) .cse0 .cse5) (or .cse6 .cse0 .cse4 .cse3 .cse5) (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2)) .cse2)))) [2022-11-16 19:36:57,984 INFO L899 garLoopResultBuilder]: For program point L526(lines 526 534) no Hoare annotation was computed. [2022-11-16 19:36:57,984 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 431 457) no Hoare annotation was computed. [2022-11-16 19:36:57,984 INFO L895 garLoopResultBuilder]: At program point L522(lines 522 539) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse4 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= ~pumpRunning~0 1))) (and (or .cse0 .cse1 (and (= ~waterLevel~0 1) .cse2 .cse3) (not (= |old(~waterLevel~0)| 2))) (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) .cse4) .cse0 (not (< |old(~waterLevel~0)| 3))) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 (and (<= ~waterLevel~0 0) (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (< 0 |old(~waterLevel~0)|)) .cse4) .cse2 .cse3) (not (<= 1 |old(~switchedOnBeforeTS~0)|))))) [2022-11-16 19:36:57,984 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 912) no Hoare annotation was computed. [2022-11-16 19:36:57,985 INFO L895 garLoopResultBuilder]: At program point L894(lines 894 901) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2022-11-16 19:36:57,985 INFO L902 garLoopResultBuilder]: At program point L894-2(lines 894 901) the Hoare annotation is: true [2022-11-16 19:36:57,985 INFO L899 garLoopResultBuilder]: For program point L725(lines 725 731) no Hoare annotation was computed. [2022-11-16 19:36:57,985 INFO L899 garLoopResultBuilder]: For program point L725-1(lines 725 731) no Hoare annotation was computed. [2022-11-16 19:36:57,985 INFO L902 garLoopResultBuilder]: At program point L754(lines 695 758) the Hoare annotation is: true [2022-11-16 19:36:57,985 INFO L895 garLoopResultBuilder]: At program point L717(line 717) the Hoare annotation is: (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse2 (= ~pumpRunning~0 1))) (or (and .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) (< ~waterLevel~0 3) .cse2) (and (= ~pumpRunning~0 0) .cse0 .cse1 (<= ~waterLevel~0 2)) (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse2))) [2022-11-16 19:36:57,986 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-16 19:36:57,986 INFO L895 garLoopResultBuilder]: At program point L751(lines 704 752) the Hoare annotation is: false [2022-11-16 19:36:57,986 INFO L899 garLoopResultBuilder]: For program point L706(lines 705 750) no Hoare annotation was computed. [2022-11-16 19:36:57,986 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-16 19:36:57,986 INFO L895 garLoopResultBuilder]: At program point L727(line 727) the Hoare annotation is: (let ((.cse2 (< ~waterLevel~0 3)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2) (and .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2 .cse3) (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse3))) [2022-11-16 19:36:57,987 INFO L895 garLoopResultBuilder]: At program point L748(lines 705 750) the Hoare annotation is: (let ((.cse2 (< ~waterLevel~0 3)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2) (and .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2 .cse3) (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse3))) [2022-11-16 19:36:57,987 INFO L899 garLoopResultBuilder]: For program point L715(lines 715 721) no Hoare annotation was computed. [2022-11-16 19:36:57,987 INFO L899 garLoopResultBuilder]: For program point L715-1(lines 715 721) no Hoare annotation was computed. [2022-11-16 19:36:57,987 INFO L895 garLoopResultBuilder]: At program point L741-2(lines 735 746) the Hoare annotation is: (let ((.cse2 (< ~waterLevel~0 3)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2) (and .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2 .cse3) (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse3))) [2022-11-16 19:36:57,987 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 466 490) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-16 19:36:57,988 INFO L895 garLoopResultBuilder]: At program point L480(line 480) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (or (<= 2 ~waterLevel~0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~3#1| 0))) .cse0 (not (< ~waterLevel~0 3))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2))) [2022-11-16 19:36:57,988 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 466 490) no Hoare annotation was computed. [2022-11-16 19:36:57,988 INFO L895 garLoopResultBuilder]: At program point L474(lines 474 482) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (or (<= 2 ~waterLevel~0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~3#1| 0))) .cse0 (not (< ~waterLevel~0 3))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2))) [2022-11-16 19:36:57,989 INFO L895 garLoopResultBuilder]: At program point L470(lines 470 487) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-16 19:36:57,989 INFO L895 garLoopResultBuilder]: At program point L485(line 485) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-16 19:36:57,989 INFO L899 garLoopResultBuilder]: For program point L485-1(lines 466 490) no Hoare annotation was computed. [2022-11-16 19:36:57,989 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 931 942) no Hoare annotation was computed. [2022-11-16 19:36:57,989 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 931 942) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse3 (not (= ~pumpRunning~0 1))) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (not (< |old(~waterLevel~0)| 3)))) (and (or (not (= ~pumpRunning~0 0)) .cse0 .cse1 .cse2) (or .cse0 .cse3 (not (= |old(~waterLevel~0)| 2)) .cse1) (or .cse0 .cse3 .cse1 (not (<= 1 ~switchedOnBeforeTS~0)) .cse2))) [2022-11-16 19:36:57,990 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__lowWaterSensorENTRY(lines 492 516) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-16 19:36:57,990 INFO L895 garLoopResultBuilder]: At program point L506(line 506) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-16 19:36:57,990 INFO L895 garLoopResultBuilder]: At program point L502(line 502) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-16 19:36:57,991 INFO L899 garLoopResultBuilder]: For program point L500(lines 500 508) no Hoare annotation was computed. [2022-11-16 19:36:57,991 INFO L895 garLoopResultBuilder]: At program point L496(lines 496 513) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-16 19:36:57,991 INFO L895 garLoopResultBuilder]: At program point L511(line 511) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2))) [2022-11-16 19:36:57,991 INFO L899 garLoopResultBuilder]: For program point L511-1(lines 492 516) no Hoare annotation was computed. [2022-11-16 19:36:57,991 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__lowWaterSensorEXIT(lines 492 516) no Hoare annotation was computed. [2022-11-16 19:36:57,992 INFO L899 garLoopResultBuilder]: For program point isPumpRunningEXIT(lines 570 578) no Hoare annotation was computed. [2022-11-16 19:36:57,992 INFO L902 garLoopResultBuilder]: At program point isPumpRunningENTRY(lines 570 578) the Hoare annotation is: true [2022-11-16 19:36:57,995 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-16 19:36:57,998 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-16 19:36:58,025 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 16.11 07:36:58 BoogieIcfgContainer [2022-11-16 19:36:58,025 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-16 19:36:58,026 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-16 19:36:58,026 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-16 19:36:58,026 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-16 19:36:58,027 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 16.11 07:35:58" (3/4) ... [2022-11-16 19:36:58,030 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-16 19:36:58,035 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-16 19:36:58,035 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-16 19:36:58,036 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-16 19:36:58,036 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-16 19:36:58,036 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-16 19:36:58,036 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-16 19:36:58,036 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-16 19:36:58,037 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2022-11-16 19:36:58,037 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2022-11-16 19:36:58,044 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 82 nodes and edges [2022-11-16 19:36:58,044 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 28 nodes and edges [2022-11-16 19:36:58,045 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2022-11-16 19:36:58,046 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-11-16 19:36:58,046 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 2 nodes and edges [2022-11-16 19:36:58,047 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-16 19:36:58,047 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-16 19:36:58,072 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3)) && (((!(1 == systemActive) || ((((1 <= aux-isPumpRunning()-aux && 1 == systemActive) && \old(waterLevel) == waterLevel) && waterLevel < 3) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || ((((1 <= aux-isPumpRunning()-aux && 1 == systemActive) && \old(waterLevel) == waterLevel) && waterLevel < 3) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) [2022-11-16 19:36:58,073 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == 0 && waterLevel == 1) && 1 <= switchedOnBeforeTS)) && ((((((2 == waterLevel && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(\old(pumpRunning) == 0)) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && (((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) || ((pumpRunning == 0 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS)) [2022-11-16 19:36:58,073 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(\old(pumpRunning) == 0) || (((tmp == waterLevel && \old(waterLevel) == waterLevel) && tmp == 2) && pumpRunning == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && \old(waterLevel) == waterLevel)) || !(\old(waterLevel) < 3)) && ((((((((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && waterLevel == 1) && 1 <= switchedOnBeforeTS) || !(1 == systemActive)) || (((tmp == waterLevel && waterLevel == 1) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && (((((((((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) || ((((waterLevel <= 0 && tmp == waterLevel) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) [2022-11-16 19:36:58,073 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) && (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) [2022-11-16 19:36:58,074 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) || !(\old(waterLevel) < 3))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) < 3)) [2022-11-16 19:36:58,074 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == 0 && waterLevel == 1) && 1 <= switchedOnBeforeTS)) && ((((((2 == waterLevel && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(\old(pumpRunning) == 0)) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && (((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) || ((pumpRunning == 0 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS)) [2022-11-16 19:36:58,074 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel < 3)) && ((((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1)) && ((((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1) [2022-11-16 19:36:58,074 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel < 3)) && ((((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1)) && ((((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1) [2022-11-16 19:36:58,076 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && (2 <= waterLevel || tmp == 0))) || !(1 == systemActive)) || !(waterLevel < 3)) && (((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS))) && (((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) [2022-11-16 19:36:58,120 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/witness.graphml [2022-11-16 19:36:58,120 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-16 19:36:58,121 INFO L158 Benchmark]: Toolchain (without parser) took 61128.54ms. Allocated memory was 115.3MB in the beginning and 610.3MB in the end (delta: 494.9MB). Free memory was 72.5MB in the beginning and 488.3MB in the end (delta: -415.8MB). Peak memory consumption was 78.3MB. Max. memory is 16.1GB. [2022-11-16 19:36:58,121 INFO L158 Benchmark]: CDTParser took 0.25ms. Allocated memory is still 115.3MB. Free memory is still 89.7MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-16 19:36:58,122 INFO L158 Benchmark]: CACSL2BoogieTranslator took 539.53ms. Allocated memory is still 115.3MB. Free memory was 72.3MB in the beginning and 83.4MB in the end (delta: -11.1MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-16 19:36:58,122 INFO L158 Benchmark]: Boogie Procedure Inliner took 81.70ms. Allocated memory is still 115.3MB. Free memory was 83.1MB in the beginning and 80.4MB in the end (delta: 2.7MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2022-11-16 19:36:58,122 INFO L158 Benchmark]: Boogie Preprocessor took 59.55ms. Allocated memory is still 115.3MB. Free memory was 80.4MB in the beginning and 78.9MB in the end (delta: 1.5MB). There was no memory consumed. Max. memory is 16.1GB. [2022-11-16 19:36:58,123 INFO L158 Benchmark]: RCFGBuilder took 777.77ms. Allocated memory is still 115.3MB. Free memory was 78.4MB in the beginning and 46.5MB in the end (delta: 31.9MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. [2022-11-16 19:36:58,123 INFO L158 Benchmark]: TraceAbstraction took 59564.42ms. Allocated memory was 115.3MB in the beginning and 610.3MB in the end (delta: 494.9MB). Free memory was 45.6MB in the beginning and 494.6MB in the end (delta: -448.9MB). Peak memory consumption was 329.3MB. Max. memory is 16.1GB. [2022-11-16 19:36:58,124 INFO L158 Benchmark]: Witness Printer took 94.74ms. Allocated memory is still 610.3MB. Free memory was 494.6MB in the beginning and 488.3MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-16 19:36:58,127 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.25ms. Allocated memory is still 115.3MB. Free memory is still 89.7MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 539.53ms. Allocated memory is still 115.3MB. Free memory was 72.3MB in the beginning and 83.4MB in the end (delta: -11.1MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 81.70ms. Allocated memory is still 115.3MB. Free memory was 83.1MB in the beginning and 80.4MB in the end (delta: 2.7MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Boogie Preprocessor took 59.55ms. Allocated memory is still 115.3MB. Free memory was 80.4MB in the beginning and 78.9MB in the end (delta: 1.5MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 777.77ms. Allocated memory is still 115.3MB. Free memory was 78.4MB in the beginning and 46.5MB in the end (delta: 31.9MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. * TraceAbstraction took 59564.42ms. Allocated memory was 115.3MB in the beginning and 610.3MB in the end (delta: 494.9MB). Free memory was 45.6MB in the beginning and 494.6MB in the end (delta: -448.9MB). Peak memory consumption was 329.3MB. Max. memory is 16.1GB. * Witness Printer took 94.74ms. Allocated memory is still 610.3MB. Free memory was 494.6MB in the beginning and 488.3MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 912]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 10 procedures, 69 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 59.4s, OverallIterations: 11, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 7.8s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 6.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3003 SdHoareTripleChecker+Valid, 4.1s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2980 mSDsluCounter, 2954 SdHoareTripleChecker+Invalid, 3.3s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2082 mSDsCounter, 2047 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 4448 IncrementalHoareTripleChecker+Invalid, 6495 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 2047 mSolverCounterUnsat, 872 mSDtfsCounter, 4448 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1100 GetRequests, 787 SyntacticMatches, 38 SemanticMatches, 275 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 7848 ImplicationChecksByTransitivity, 23.3s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=368occurred in iteration=10, InterpolantAutomatonStates: 141, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.4s AutomataMinimizationTime, 11 MinimizatonAttempts, 314 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 41 LocationsWithAnnotation, 1400 PreInvPairs, 1588 NumberOfFragments, 2056 HoareAnnotationTreeSize, 1400 FomulaSimplifications, 5681 FormulaSimplificationTreeSizeReduction, 0.6s HoareSimplificationTime, 41 FomulaSimplificationsInter, 24906 FormulaSimplificationTreeSizeReductionInter, 5.4s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.5s SatisfiabilityAnalysisTime, 5.5s InterpolantComputationTime, 897 NumberOfCodeBlocks, 897 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 1144 ConstructedInterpolants, 0 QuantifiedInterpolants, 3385 SizeOfPredicates, 29 NumberOfNonLiveVariables, 2044 ConjunctsInSsa, 64 ConjunctsInUnsatCore, 18 InterpolantComputations, 8 PerfectInterpolantSequences, 466/618 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 518]: Loop Invariant Derived loop invariant: (((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == 0 && waterLevel == 1) && 1 <= switchedOnBeforeTS)) && ((((((2 == waterLevel && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(\old(pumpRunning) == 0)) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && (((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) || ((pumpRunning == 0 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS)) - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 812]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 695]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 705]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0 && 1 == systemActive) && splverifierCounter == 0) && waterLevel < 3) || ((((1 == systemActive && splverifierCounter == 0) && 1 <= switchedOnBeforeTS) && waterLevel < 3) && pumpRunning == 1)) || (((2 == waterLevel && 1 == systemActive) && splverifierCounter == 0) && pumpRunning == 1) - InvariantResult [Line: 445]: Loop Invariant Derived loop invariant: (((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == 0 && waterLevel == 1) && 1 <= switchedOnBeforeTS)) && ((((((2 == waterLevel && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(\old(pumpRunning) == 0)) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && (((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) || ((pumpRunning == 0 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS)) - InvariantResult [Line: 704]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 496]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel < 3)) && ((((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1)) && ((((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1) - InvariantResult [Line: 781]: Loop Invariant Derived loop invariant: (((((!(\old(pumpRunning) == 0) || (((tmp == waterLevel && \old(waterLevel) == waterLevel) && tmp == 2) && pumpRunning == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && \old(waterLevel) == waterLevel)) || !(\old(waterLevel) < 3)) && ((((((((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && waterLevel == 1) && 1 <= switchedOnBeforeTS) || !(1 == systemActive)) || (((tmp == waterLevel && waterLevel == 1) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && (((((((((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) || ((((waterLevel <= 0 && tmp == waterLevel) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) - InvariantResult [Line: 912]: Loop Invariant Derived loop invariant: (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) || !(\old(waterLevel) < 3))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) < 3)) - InvariantResult [Line: 776]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3)) && (((!(1 == systemActive) || ((((1 <= aux-isPumpRunning()-aux && 1 == systemActive) && \old(waterLevel) == waterLevel) && waterLevel < 3) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || ((((1 <= aux-isPumpRunning()-aux && 1 == systemActive) && \old(waterLevel) == waterLevel) && waterLevel < 3) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) - InvariantResult [Line: 470]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel < 3)) && ((((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1)) && ((((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1) - InvariantResult [Line: 822]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 894]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 522]: Loop Invariant Derived loop invariant: ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) && (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) - InvariantResult [Line: 894]: Loop Invariant Derived loop invariant: (pumpRunning == 0 && 1 == systemActive) && waterLevel == 1 - InvariantResult [Line: 474]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && (2 <= waterLevel || tmp == 0))) || !(1 == systemActive)) || !(waterLevel < 3)) && (((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS))) && (((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) RESULT: Ultimate proved your program to be correct! [2022-11-16 19:36:58,182 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f1c58bf2-4f48-4017-83f5-fc784d543d6e/bin/utaipan-Xvt2sAort0/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE