./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec2_product57.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 8393723b Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec2_product57.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 909de5fe3a7d5a638d67615e2b4d48b563eefeab07033d1b2a29843c731be596 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-8393723 [2022-11-19 07:07:34,038 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-19 07:07:34,041 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-19 07:07:34,068 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-19 07:07:34,069 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-19 07:07:34,070 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-19 07:07:34,071 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-19 07:07:34,073 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-19 07:07:34,078 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-19 07:07:34,087 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-19 07:07:34,088 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-19 07:07:34,089 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-19 07:07:34,089 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-19 07:07:34,090 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-19 07:07:34,091 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-19 07:07:34,092 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-19 07:07:34,093 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-19 07:07:34,094 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-19 07:07:34,096 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-19 07:07:34,097 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-19 07:07:34,102 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-19 07:07:34,105 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-19 07:07:34,109 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-19 07:07:34,110 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-19 07:07:34,125 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-19 07:07:34,127 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-19 07:07:34,128 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-19 07:07:34,130 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-19 07:07:34,130 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-19 07:07:34,131 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-19 07:07:34,132 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-19 07:07:34,133 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-19 07:07:34,135 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-19 07:07:34,137 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-19 07:07:34,139 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-19 07:07:34,139 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-19 07:07:34,140 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-19 07:07:34,141 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-19 07:07:34,141 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-19 07:07:34,142 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-19 07:07:34,142 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-19 07:07:34,143 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-19 07:07:34,188 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-19 07:07:34,192 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-19 07:07:34,193 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-19 07:07:34,193 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-19 07:07:34,194 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-19 07:07:34,194 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-19 07:07:34,195 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-19 07:07:34,195 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-19 07:07:34,195 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-19 07:07:34,195 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-19 07:07:34,196 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-19 07:07:34,197 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-19 07:07:34,197 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-19 07:07:34,197 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-19 07:07:34,197 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-19 07:07:34,198 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-19 07:07:34,198 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-19 07:07:34,198 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-19 07:07:34,199 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-19 07:07:34,199 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-19 07:07:34,199 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-19 07:07:34,200 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-19 07:07:34,200 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-19 07:07:34,200 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-19 07:07:34,200 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-19 07:07:34,201 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-19 07:07:34,201 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-19 07:07:34,201 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-19 07:07:34,201 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-19 07:07:34,202 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-19 07:07:34,202 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-19 07:07:34,202 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-19 07:07:34,202 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-19 07:07:34,203 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-19 07:07:34,203 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-19 07:07:34,203 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-19 07:07:34,203 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-19 07:07:34,204 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-19 07:07:34,204 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-19 07:07:34,204 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-19 07:07:34,204 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-19 07:07:34,205 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 909de5fe3a7d5a638d67615e2b4d48b563eefeab07033d1b2a29843c731be596 [2022-11-19 07:07:34,491 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-19 07:07:34,513 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-19 07:07:34,516 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-19 07:07:34,518 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-19 07:07:34,518 INFO L275 PluginConnector]: CDTParser initialized [2022-11-19 07:07:34,520 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/../../sv-benchmarks/c/product-lines/minepump_spec2_product57.cil.c [2022-11-19 07:07:34,591 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/data/7b1eb5d80/d77ecfd46cdc4bc5a5432070a8466cf8/FLAG4577e77a3 [2022-11-19 07:07:35,222 INFO L306 CDTParser]: Found 1 translation units. [2022-11-19 07:07:35,223 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/sv-benchmarks/c/product-lines/minepump_spec2_product57.cil.c [2022-11-19 07:07:35,235 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/data/7b1eb5d80/d77ecfd46cdc4bc5a5432070a8466cf8/FLAG4577e77a3 [2022-11-19 07:07:35,504 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/data/7b1eb5d80/d77ecfd46cdc4bc5a5432070a8466cf8 [2022-11-19 07:07:35,507 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-19 07:07:35,510 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-19 07:07:35,514 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-19 07:07:35,515 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-19 07:07:35,518 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-19 07:07:35,519 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 19.11 07:07:35" (1/1) ... [2022-11-19 07:07:35,520 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@44c27f6c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:35, skipping insertion in model container [2022-11-19 07:07:35,521 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 19.11 07:07:35" (1/1) ... [2022-11-19 07:07:35,528 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-19 07:07:35,586 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-19 07:07:35,985 WARN L234 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/sv-benchmarks/c/product-lines/minepump_spec2_product57.cil.c[19040,19053] [2022-11-19 07:07:35,992 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-19 07:07:36,007 INFO L203 MainTranslator]: Completed pre-run [2022-11-19 07:07:36,108 WARN L234 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/sv-benchmarks/c/product-lines/minepump_spec2_product57.cil.c[19040,19053] [2022-11-19 07:07:36,108 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-19 07:07:36,129 INFO L208 MainTranslator]: Completed translation [2022-11-19 07:07:36,129 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36 WrapperNode [2022-11-19 07:07:36,129 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-19 07:07:36,130 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-19 07:07:36,131 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-19 07:07:36,131 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-19 07:07:36,138 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,162 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,205 INFO L138 Inliner]: procedures = 57, calls = 101, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 220 [2022-11-19 07:07:36,206 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-19 07:07:36,207 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-19 07:07:36,207 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-19 07:07:36,207 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-19 07:07:36,216 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,217 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,229 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,229 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,233 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,237 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,239 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,256 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,258 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-19 07:07:36,259 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-19 07:07:36,259 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-19 07:07:36,259 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-19 07:07:36,260 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (1/1) ... [2022-11-19 07:07:36,272 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-19 07:07:36,288 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 07:07:36,307 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-19 07:07:36,335 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-19 07:07:36,354 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-19 07:07:36,355 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-19 07:07:36,355 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-19 07:07:36,355 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-19 07:07:36,355 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-19 07:07:36,356 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-19 07:07:36,356 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-19 07:07:36,356 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2022-11-19 07:07:36,356 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2022-11-19 07:07:36,356 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 07:07:36,357 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 07:07:36,357 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-19 07:07:36,357 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-19 07:07:36,357 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-19 07:07:36,357 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-19 07:07:36,358 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-19 07:07:36,358 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-19 07:07:36,358 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-19 07:07:36,474 INFO L235 CfgBuilder]: Building ICFG [2022-11-19 07:07:36,476 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-19 07:07:36,842 INFO L276 CfgBuilder]: Performing block encoding [2022-11-19 07:07:37,033 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-19 07:07:37,039 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-19 07:07:37,041 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 07:07:37 BoogieIcfgContainer [2022-11-19 07:07:37,041 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-19 07:07:37,044 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-19 07:07:37,044 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-19 07:07:37,048 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-19 07:07:37,048 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 19.11 07:07:35" (1/3) ... [2022-11-19 07:07:37,049 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@146700c3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 19.11 07:07:37, skipping insertion in model container [2022-11-19 07:07:37,049 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 07:07:36" (2/3) ... [2022-11-19 07:07:37,050 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@146700c3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 19.11 07:07:37, skipping insertion in model container [2022-11-19 07:07:37,050 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 07:07:37" (3/3) ... [2022-11-19 07:07:37,051 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product57.cil.c [2022-11-19 07:07:37,071 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-19 07:07:37,072 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-19 07:07:37,125 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-19 07:07:37,133 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@6cf4d66e, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-19 07:07:37,133 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-19 07:07:37,137 INFO L276 IsEmpty]: Start isEmpty. Operand has 58 states, 37 states have (on average 1.4324324324324325) internal successors, (53), 45 states have internal predecessors, (53), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-19 07:07:37,146 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2022-11-19 07:07:37,147 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:37,147 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:37,148 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:37,153 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:37,154 INFO L85 PathProgramCache]: Analyzing trace with hash 1271470515, now seen corresponding path program 1 times [2022-11-19 07:07:37,163 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:37,163 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [917975485] [2022-11-19 07:07:37,164 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:37,164 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:37,266 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:37,371 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 07:07:37,371 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:37,372 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [917975485] [2022-11-19 07:07:37,373 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [917975485] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 07:07:37,373 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 07:07:37,373 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-19 07:07:37,375 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [779613769] [2022-11-19 07:07:37,376 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 07:07:37,380 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-19 07:07:37,382 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:37,412 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-19 07:07:37,413 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-19 07:07:37,415 INFO L87 Difference]: Start difference. First operand has 58 states, 37 states have (on average 1.4324324324324325) internal successors, (53), 45 states have internal predecessors, (53), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 07:07:37,481 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:37,482 INFO L93 Difference]: Finished difference Result 114 states and 155 transitions. [2022-11-19 07:07:37,483 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-19 07:07:37,484 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2022-11-19 07:07:37,485 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:37,494 INFO L225 Difference]: With dead ends: 114 [2022-11-19 07:07:37,494 INFO L226 Difference]: Without dead ends: 53 [2022-11-19 07:07:37,497 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-19 07:07:37,501 INFO L413 NwaCegarLoop]: 57 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 57 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:37,502 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 57 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-19 07:07:37,519 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 53 states. [2022-11-19 07:07:37,543 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 53 to 53. [2022-11-19 07:07:37,544 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 53 states, 34 states have (on average 1.3235294117647058) internal successors, (45), 41 states have internal predecessors, (45), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-19 07:07:37,546 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 53 states to 53 states and 68 transitions. [2022-11-19 07:07:37,548 INFO L78 Accepts]: Start accepts. Automaton has 53 states and 68 transitions. Word has length 17 [2022-11-19 07:07:37,548 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:37,548 INFO L495 AbstractCegarLoop]: Abstraction has 53 states and 68 transitions. [2022-11-19 07:07:37,549 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 07:07:37,549 INFO L276 IsEmpty]: Start isEmpty. Operand 53 states and 68 transitions. [2022-11-19 07:07:37,554 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2022-11-19 07:07:37,555 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:37,556 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:37,556 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-19 07:07:37,557 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:37,558 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:37,560 INFO L85 PathProgramCache]: Analyzing trace with hash -1930877448, now seen corresponding path program 1 times [2022-11-19 07:07:37,560 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:37,561 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1854491829] [2022-11-19 07:07:37,561 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:37,561 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:37,597 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:37,728 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 07:07:37,728 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:37,729 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1854491829] [2022-11-19 07:07:37,729 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1854491829] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 07:07:37,729 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 07:07:37,729 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-19 07:07:37,730 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2095163073] [2022-11-19 07:07:37,730 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 07:07:37,731 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-19 07:07:37,732 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:37,734 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-19 07:07:37,735 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 07:07:37,735 INFO L87 Difference]: Start difference. First operand 53 states and 68 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 07:07:37,811 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:37,811 INFO L93 Difference]: Finished difference Result 83 states and 107 transitions. [2022-11-19 07:07:37,812 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-19 07:07:37,812 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2022-11-19 07:07:37,813 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:37,816 INFO L225 Difference]: With dead ends: 83 [2022-11-19 07:07:37,817 INFO L226 Difference]: Without dead ends: 45 [2022-11-19 07:07:37,822 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 07:07:37,823 INFO L413 NwaCegarLoop]: 43 mSDtfsCounter, 7 mSDsluCounter, 34 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 77 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:37,824 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 77 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-19 07:07:37,824 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 45 states. [2022-11-19 07:07:37,838 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 45 to 45. [2022-11-19 07:07:37,839 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 45 states, 29 states have (on average 1.3448275862068966) internal successors, (39), 36 states have internal predecessors, (39), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-19 07:07:37,840 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 45 states to 45 states and 57 transitions. [2022-11-19 07:07:37,840 INFO L78 Accepts]: Start accepts. Automaton has 45 states and 57 transitions. Word has length 18 [2022-11-19 07:07:37,840 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:37,840 INFO L495 AbstractCegarLoop]: Abstraction has 45 states and 57 transitions. [2022-11-19 07:07:37,840 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 07:07:37,841 INFO L276 IsEmpty]: Start isEmpty. Operand 45 states and 57 transitions. [2022-11-19 07:07:37,841 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2022-11-19 07:07:37,842 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:37,842 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:37,842 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-19 07:07:37,842 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:37,843 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:37,843 INFO L85 PathProgramCache]: Analyzing trace with hash -869841070, now seen corresponding path program 1 times [2022-11-19 07:07:37,843 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:37,843 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [490816244] [2022-11-19 07:07:37,843 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:37,844 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:37,875 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:38,068 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 07:07:38,068 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:38,068 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [490816244] [2022-11-19 07:07:38,068 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [490816244] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 07:07:38,068 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 07:07:38,069 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-19 07:07:38,069 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [645757400] [2022-11-19 07:07:38,069 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 07:07:38,069 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-19 07:07:38,070 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:38,070 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-19 07:07:38,070 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 07:07:38,070 INFO L87 Difference]: Start difference. First operand 45 states and 57 transitions. Second operand has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 07:07:38,205 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:38,205 INFO L93 Difference]: Finished difference Result 88 states and 113 transitions. [2022-11-19 07:07:38,206 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-19 07:07:38,206 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2022-11-19 07:07:38,207 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:38,207 INFO L225 Difference]: With dead ends: 88 [2022-11-19 07:07:38,207 INFO L226 Difference]: Without dead ends: 45 [2022-11-19 07:07:38,208 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-19 07:07:38,209 INFO L413 NwaCegarLoop]: 38 mSDtfsCounter, 53 mSDsluCounter, 17 mSDsCounter, 0 mSdLazyCounter, 44 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 53 SdHoareTripleChecker+Valid, 55 SdHoareTripleChecker+Invalid, 50 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 44 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:38,210 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [53 Valid, 55 Invalid, 50 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 44 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 07:07:38,210 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 45 states. [2022-11-19 07:07:38,217 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 45 to 45. [2022-11-19 07:07:38,217 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 45 states, 29 states have (on average 1.3103448275862069) internal successors, (38), 36 states have internal predecessors, (38), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-19 07:07:38,218 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 45 states to 45 states and 56 transitions. [2022-11-19 07:07:38,218 INFO L78 Accepts]: Start accepts. Automaton has 45 states and 56 transitions. Word has length 20 [2022-11-19 07:07:38,218 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:38,218 INFO L495 AbstractCegarLoop]: Abstraction has 45 states and 56 transitions. [2022-11-19 07:07:38,219 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 07:07:38,223 INFO L276 IsEmpty]: Start isEmpty. Operand 45 states and 56 transitions. [2022-11-19 07:07:38,229 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2022-11-19 07:07:38,229 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:38,229 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:38,229 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-19 07:07:38,230 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:38,231 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:38,231 INFO L85 PathProgramCache]: Analyzing trace with hash -416116077, now seen corresponding path program 1 times [2022-11-19 07:07:38,231 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:38,232 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [354500359] [2022-11-19 07:07:38,232 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:38,233 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:38,270 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:38,370 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 07:07:38,370 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:38,370 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [354500359] [2022-11-19 07:07:38,370 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [354500359] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 07:07:38,371 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 07:07:38,371 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-11-19 07:07:38,371 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1869580285] [2022-11-19 07:07:38,371 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 07:07:38,371 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-19 07:07:38,372 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:38,372 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-19 07:07:38,372 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2022-11-19 07:07:38,373 INFO L87 Difference]: Start difference. First operand 45 states and 56 transitions. Second operand has 6 states, 5 states have (on average 4.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 07:07:38,521 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:38,521 INFO L93 Difference]: Finished difference Result 128 states and 162 transitions. [2022-11-19 07:07:38,521 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-11-19 07:07:38,522 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 4.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2022-11-19 07:07:38,522 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:38,523 INFO L225 Difference]: With dead ends: 128 [2022-11-19 07:07:38,523 INFO L226 Difference]: Without dead ends: 85 [2022-11-19 07:07:38,524 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2022-11-19 07:07:38,525 INFO L413 NwaCegarLoop]: 49 mSDtfsCounter, 33 mSDsluCounter, 165 mSDsCounter, 0 mSdLazyCounter, 98 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 36 SdHoareTripleChecker+Valid, 214 SdHoareTripleChecker+Invalid, 99 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 98 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:38,526 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [36 Valid, 214 Invalid, 99 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 98 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 07:07:38,526 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 85 states. [2022-11-19 07:07:38,541 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 85 to 81. [2022-11-19 07:07:38,542 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 81 states, 52 states have (on average 1.2884615384615385) internal successors, (67), 64 states have internal predecessors, (67), 17 states have call successors, (17), 11 states have call predecessors, (17), 11 states have return successors, (17), 13 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-19 07:07:38,543 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 81 states to 81 states and 101 transitions. [2022-11-19 07:07:38,544 INFO L78 Accepts]: Start accepts. Automaton has 81 states and 101 transitions. Word has length 23 [2022-11-19 07:07:38,544 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:38,544 INFO L495 AbstractCegarLoop]: Abstraction has 81 states and 101 transitions. [2022-11-19 07:07:38,544 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 4.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 07:07:38,545 INFO L276 IsEmpty]: Start isEmpty. Operand 81 states and 101 transitions. [2022-11-19 07:07:38,545 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2022-11-19 07:07:38,546 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:38,546 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:38,546 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-19 07:07:38,546 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:38,547 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:38,547 INFO L85 PathProgramCache]: Analyzing trace with hash -321008265, now seen corresponding path program 1 times [2022-11-19 07:07:38,547 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:38,547 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [229187255] [2022-11-19 07:07:38,547 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:38,548 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:38,562 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:38,664 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 07:07:38,664 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:38,664 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [229187255] [2022-11-19 07:07:38,664 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [229187255] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 07:07:38,665 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 07:07:38,665 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-19 07:07:38,666 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1640137772] [2022-11-19 07:07:38,667 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 07:07:38,672 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-19 07:07:38,672 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:38,672 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-19 07:07:38,673 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 07:07:38,673 INFO L87 Difference]: Start difference. First operand 81 states and 101 transitions. Second operand has 4 states, 4 states have (on average 5.25) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-19 07:07:38,775 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:38,775 INFO L93 Difference]: Finished difference Result 224 states and 286 transitions. [2022-11-19 07:07:38,775 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-19 07:07:38,775 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 5.25) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 26 [2022-11-19 07:07:38,776 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:38,788 INFO L225 Difference]: With dead ends: 224 [2022-11-19 07:07:38,788 INFO L226 Difference]: Without dead ends: 145 [2022-11-19 07:07:38,789 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-19 07:07:38,790 INFO L413 NwaCegarLoop]: 52 mSDtfsCounter, 41 mSDsluCounter, 85 mSDsCounter, 0 mSdLazyCounter, 50 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 41 SdHoareTripleChecker+Valid, 137 SdHoareTripleChecker+Invalid, 56 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 50 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:38,791 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [41 Valid, 137 Invalid, 56 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 50 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 07:07:38,792 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 145 states. [2022-11-19 07:07:38,819 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 145 to 141. [2022-11-19 07:07:38,820 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 141 states, 94 states have (on average 1.2127659574468086) internal successors, (114), 105 states have internal predecessors, (114), 24 states have call successors, (24), 22 states have call predecessors, (24), 22 states have return successors, (32), 24 states have call predecessors, (32), 24 states have call successors, (32) [2022-11-19 07:07:38,821 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 141 states to 141 states and 170 transitions. [2022-11-19 07:07:38,822 INFO L78 Accepts]: Start accepts. Automaton has 141 states and 170 transitions. Word has length 26 [2022-11-19 07:07:38,822 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:38,822 INFO L495 AbstractCegarLoop]: Abstraction has 141 states and 170 transitions. [2022-11-19 07:07:38,822 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 5.25) internal successors, (21), 4 states have internal predecessors, (21), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-19 07:07:38,823 INFO L276 IsEmpty]: Start isEmpty. Operand 141 states and 170 transitions. [2022-11-19 07:07:38,823 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2022-11-19 07:07:38,824 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:38,824 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:38,824 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-19 07:07:38,824 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:38,825 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:38,825 INFO L85 PathProgramCache]: Analyzing trace with hash 566959656, now seen corresponding path program 1 times [2022-11-19 07:07:38,825 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:38,825 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1892619315] [2022-11-19 07:07:38,825 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:38,825 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:38,841 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:38,909 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-19 07:07:38,909 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:38,909 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1892619315] [2022-11-19 07:07:38,909 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1892619315] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 07:07:38,909 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 07:07:38,909 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-19 07:07:38,910 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [714939948] [2022-11-19 07:07:38,910 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 07:07:38,910 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-19 07:07:38,911 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:38,912 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-19 07:07:38,912 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 07:07:38,912 INFO L87 Difference]: Start difference. First operand 141 states and 170 transitions. Second operand has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2022-11-19 07:07:38,995 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:38,995 INFO L93 Difference]: Finished difference Result 198 states and 243 transitions. [2022-11-19 07:07:38,996 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-19 07:07:38,996 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 35 [2022-11-19 07:07:38,997 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:39,005 INFO L225 Difference]: With dead ends: 198 [2022-11-19 07:07:39,005 INFO L226 Difference]: Without dead ends: 196 [2022-11-19 07:07:39,006 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 07:07:39,009 INFO L413 NwaCegarLoop]: 50 mSDtfsCounter, 32 mSDsluCounter, 39 mSDsCounter, 0 mSdLazyCounter, 29 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 32 SdHoareTripleChecker+Valid, 89 SdHoareTripleChecker+Invalid, 34 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 29 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:39,011 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [32 Valid, 89 Invalid, 34 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 29 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-19 07:07:39,014 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 196 states. [2022-11-19 07:07:39,069 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 196 to 193. [2022-11-19 07:07:39,071 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 193 states, 127 states have (on average 1.220472440944882) internal successors, (155), 143 states have internal predecessors, (155), 34 states have call successors, (34), 31 states have call predecessors, (34), 31 states have return successors, (48), 33 states have call predecessors, (48), 34 states have call successors, (48) [2022-11-19 07:07:39,076 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 193 states to 193 states and 237 transitions. [2022-11-19 07:07:39,076 INFO L78 Accepts]: Start accepts. Automaton has 193 states and 237 transitions. Word has length 35 [2022-11-19 07:07:39,076 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:39,076 INFO L495 AbstractCegarLoop]: Abstraction has 193 states and 237 transitions. [2022-11-19 07:07:39,077 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2022-11-19 07:07:39,077 INFO L276 IsEmpty]: Start isEmpty. Operand 193 states and 237 transitions. [2022-11-19 07:07:39,082 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 66 [2022-11-19 07:07:39,083 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:39,083 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:39,083 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-19 07:07:39,084 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:39,084 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:39,084 INFO L85 PathProgramCache]: Analyzing trace with hash 510088418, now seen corresponding path program 1 times [2022-11-19 07:07:39,084 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:39,084 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1442865250] [2022-11-19 07:07:39,085 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:39,085 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:39,123 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:39,660 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 10 proven. 13 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-19 07:07:39,660 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:39,660 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1442865250] [2022-11-19 07:07:39,661 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1442865250] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 07:07:39,661 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [170900020] [2022-11-19 07:07:39,661 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:39,661 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 07:07:39,662 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 07:07:39,667 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 07:07:39,686 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-19 07:07:39,795 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:39,799 INFO L263 TraceCheckSpWp]: Trace formula consists of 315 conjuncts, 29 conjunts are in the unsatisfiable core [2022-11-19 07:07:39,808 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 07:07:40,263 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 25 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 07:07:40,264 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-19 07:07:40,890 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 17 proven. 5 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2022-11-19 07:07:40,891 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [170900020] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-19 07:07:40,891 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [383465074] [2022-11-19 07:07:40,911 INFO L159 IcfgInterpreter]: Started Sifa with 41 locations of interest [2022-11-19 07:07:40,911 INFO L166 IcfgInterpreter]: Building call graph [2022-11-19 07:07:40,915 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-19 07:07:40,925 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-19 07:07:40,926 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-19 07:07:43,825 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 31 for LOIs [2022-11-19 07:07:44,085 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 60 for LOIs [2022-11-19 07:07:44,550 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 50 for LOIs [2022-11-19 07:07:44,561 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 32 for LOIs [2022-11-19 07:07:44,565 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 36 for LOIs [2022-11-19 07:07:44,567 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-19 07:07:50,090 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2679#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~8#1|) (<= 0 (+ |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 2147483648)) (= ~head~0.offset 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1|) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~8#1|) (<= 0 ~methAndRunningLastTime~0) (<= 0 |old(~methAndRunningLastTime~0)|) (<= 0 ~methaneLevelCritical~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| 1) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 0)) (not (= ~methAndRunningLastTime~0 0)) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 2147483647) (<= 0 |#StackHeapBarrier|) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| 0)) (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| ~methaneLevelCritical~0) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-19 07:07:50,090 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-19 07:07:50,091 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-19 07:07:50,091 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 10, 9] total 25 [2022-11-19 07:07:50,091 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1686475652] [2022-11-19 07:07:50,091 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-19 07:07:50,092 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2022-11-19 07:07:50,092 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:50,093 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2022-11-19 07:07:50,094 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=316, Invalid=2546, Unknown=0, NotChecked=0, Total=2862 [2022-11-19 07:07:50,094 INFO L87 Difference]: Start difference. First operand 193 states and 237 transitions. Second operand has 25 states, 19 states have (on average 4.526315789473684) internal successors, (86), 19 states have internal predecessors, (86), 9 states have call successors, (19), 6 states have call predecessors, (19), 14 states have return successors, (20), 12 states have call predecessors, (20), 9 states have call successors, (20) [2022-11-19 07:07:52,740 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:52,740 INFO L93 Difference]: Finished difference Result 743 states and 998 transitions. [2022-11-19 07:07:52,741 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 42 states. [2022-11-19 07:07:52,741 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 19 states have (on average 4.526315789473684) internal successors, (86), 19 states have internal predecessors, (86), 9 states have call successors, (19), 6 states have call predecessors, (19), 14 states have return successors, (20), 12 states have call predecessors, (20), 9 states have call successors, (20) Word has length 65 [2022-11-19 07:07:52,741 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:52,745 INFO L225 Difference]: With dead ends: 743 [2022-11-19 07:07:52,745 INFO L226 Difference]: Without dead ends: 552 [2022-11-19 07:07:52,750 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 257 GetRequests, 165 SyntacticMatches, 2 SemanticMatches, 90 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2823 ImplicationChecksByTransitivity, 6.9s TimeCoverageRelationStatistics Valid=915, Invalid=7457, Unknown=0, NotChecked=0, Total=8372 [2022-11-19 07:07:52,751 INFO L413 NwaCegarLoop]: 46 mSDtfsCounter, 759 mSDsluCounter, 348 mSDsCounter, 0 mSdLazyCounter, 2005 mSolverCounterSat, 418 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 768 SdHoareTripleChecker+Valid, 394 SdHoareTripleChecker+Invalid, 2423 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 418 IncrementalHoareTripleChecker+Valid, 2005 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:52,751 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [768 Valid, 394 Invalid, 2423 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [418 Valid, 2005 Invalid, 0 Unknown, 0 Unchecked, 1.4s Time] [2022-11-19 07:07:52,752 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 552 states. [2022-11-19 07:07:52,824 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 552 to 450. [2022-11-19 07:07:52,826 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 450 states, 299 states have (on average 1.1806020066889633) internal successors, (353), 327 states have internal predecessors, (353), 76 states have call successors, (76), 64 states have call predecessors, (76), 74 states have return successors, (114), 75 states have call predecessors, (114), 76 states have call successors, (114) [2022-11-19 07:07:52,828 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 450 states to 450 states and 543 transitions. [2022-11-19 07:07:52,829 INFO L78 Accepts]: Start accepts. Automaton has 450 states and 543 transitions. Word has length 65 [2022-11-19 07:07:52,829 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:52,830 INFO L495 AbstractCegarLoop]: Abstraction has 450 states and 543 transitions. [2022-11-19 07:07:52,830 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 19 states have (on average 4.526315789473684) internal successors, (86), 19 states have internal predecessors, (86), 9 states have call successors, (19), 6 states have call predecessors, (19), 14 states have return successors, (20), 12 states have call predecessors, (20), 9 states have call successors, (20) [2022-11-19 07:07:52,830 INFO L276 IsEmpty]: Start isEmpty. Operand 450 states and 543 transitions. [2022-11-19 07:07:52,832 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2022-11-19 07:07:52,832 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:52,832 INFO L195 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:52,840 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-19 07:07:53,037 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2022-11-19 07:07:53,038 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:53,038 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:53,038 INFO L85 PathProgramCache]: Analyzing trace with hash 1361903642, now seen corresponding path program 1 times [2022-11-19 07:07:53,039 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:53,039 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1765238163] [2022-11-19 07:07:53,039 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:53,039 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:53,053 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:53,150 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 18 proven. 0 refuted. 0 times theorem prover too weak. 19 trivial. 0 not checked. [2022-11-19 07:07:53,151 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:53,151 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1765238163] [2022-11-19 07:07:53,151 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1765238163] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 07:07:53,151 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 07:07:53,151 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-19 07:07:53,151 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1339671972] [2022-11-19 07:07:53,151 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 07:07:53,153 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-19 07:07:53,153 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:53,153 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-19 07:07:53,154 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 07:07:53,154 INFO L87 Difference]: Start difference. First operand 450 states and 543 transitions. Second operand has 4 states, 4 states have (on average 10.25) internal successors, (41), 4 states have internal predecessors, (41), 3 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-11-19 07:07:53,302 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:53,302 INFO L93 Difference]: Finished difference Result 837 states and 1031 transitions. [2022-11-19 07:07:53,302 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-19 07:07:53,303 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 10.25) internal successors, (41), 4 states have internal predecessors, (41), 3 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) Word has length 66 [2022-11-19 07:07:53,303 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:53,307 INFO L225 Difference]: With dead ends: 837 [2022-11-19 07:07:53,308 INFO L226 Difference]: Without dead ends: 407 [2022-11-19 07:07:53,309 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-19 07:07:53,310 INFO L413 NwaCegarLoop]: 65 mSDtfsCounter, 34 mSDsluCounter, 73 mSDsCounter, 0 mSdLazyCounter, 88 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 34 SdHoareTripleChecker+Valid, 138 SdHoareTripleChecker+Invalid, 90 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 88 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:53,310 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [34 Valid, 138 Invalid, 90 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 88 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 07:07:53,311 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 407 states. [2022-11-19 07:07:53,357 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 407 to 388. [2022-11-19 07:07:53,359 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 388 states, 259 states have (on average 1.1467181467181466) internal successors, (297), 280 states have internal predecessors, (297), 64 states have call successors, (64), 58 states have call predecessors, (64), 64 states have return successors, (80), 64 states have call predecessors, (80), 64 states have call successors, (80) [2022-11-19 07:07:53,361 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 388 states to 388 states and 441 transitions. [2022-11-19 07:07:53,361 INFO L78 Accepts]: Start accepts. Automaton has 388 states and 441 transitions. Word has length 66 [2022-11-19 07:07:53,361 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:53,362 INFO L495 AbstractCegarLoop]: Abstraction has 388 states and 441 transitions. [2022-11-19 07:07:53,362 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 10.25) internal successors, (41), 4 states have internal predecessors, (41), 3 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-11-19 07:07:53,362 INFO L276 IsEmpty]: Start isEmpty. Operand 388 states and 441 transitions. [2022-11-19 07:07:53,364 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 94 [2022-11-19 07:07:53,364 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:53,364 INFO L195 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:53,364 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2022-11-19 07:07:53,365 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:53,365 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:53,365 INFO L85 PathProgramCache]: Analyzing trace with hash -749793150, now seen corresponding path program 1 times [2022-11-19 07:07:53,365 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:53,366 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1204524043] [2022-11-19 07:07:53,366 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:53,366 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:53,407 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:53,802 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 34 proven. 14 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2022-11-19 07:07:53,802 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:53,802 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1204524043] [2022-11-19 07:07:53,802 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1204524043] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 07:07:53,803 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1954906224] [2022-11-19 07:07:53,803 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:53,803 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 07:07:53,803 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 07:07:53,804 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 07:07:53,815 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-19 07:07:53,929 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:53,931 INFO L263 TraceCheckSpWp]: Trace formula consists of 404 conjuncts, 20 conjunts are in the unsatisfiable core [2022-11-19 07:07:53,935 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 07:07:54,289 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 48 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2022-11-19 07:07:54,290 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-19 07:07:54,290 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1954906224] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 07:07:54,290 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-19 07:07:54,290 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [9] total 16 [2022-11-19 07:07:54,290 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1791853425] [2022-11-19 07:07:54,291 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 07:07:54,291 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-19 07:07:54,291 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:07:54,291 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-19 07:07:54,292 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=54, Invalid=186, Unknown=0, NotChecked=0, Total=240 [2022-11-19 07:07:54,292 INFO L87 Difference]: Start difference. First operand 388 states and 441 transitions. Second operand has 9 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (9), 4 states have call predecessors, (9), 3 states have return successors, (9), 3 states have call predecessors, (9), 5 states have call successors, (9) [2022-11-19 07:07:54,820 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:07:54,820 INFO L93 Difference]: Finished difference Result 868 states and 1003 transitions. [2022-11-19 07:07:54,821 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-19 07:07:54,821 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (9), 4 states have call predecessors, (9), 3 states have return successors, (9), 3 states have call predecessors, (9), 5 states have call successors, (9) Word has length 93 [2022-11-19 07:07:54,822 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:07:54,824 INFO L225 Difference]: With dead ends: 868 [2022-11-19 07:07:54,824 INFO L226 Difference]: Without dead ends: 482 [2022-11-19 07:07:54,826 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 109 GetRequests, 88 SyntacticMatches, 0 SemanticMatches, 21 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 93 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=115, Invalid=391, Unknown=0, NotChecked=0, Total=506 [2022-11-19 07:07:54,829 INFO L413 NwaCegarLoop]: 41 mSDtfsCounter, 223 mSDsluCounter, 88 mSDsCounter, 0 mSdLazyCounter, 257 mSolverCounterSat, 96 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 233 SdHoareTripleChecker+Valid, 129 SdHoareTripleChecker+Invalid, 353 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 96 IncrementalHoareTripleChecker+Valid, 257 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-19 07:07:54,829 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [233 Valid, 129 Invalid, 353 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [96 Valid, 257 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-19 07:07:54,830 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 482 states. [2022-11-19 07:07:54,898 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 482 to 443. [2022-11-19 07:07:54,899 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 443 states, 301 states have (on average 1.1461794019933556) internal successors, (345), 319 states have internal predecessors, (345), 70 states have call successors, (70), 70 states have call predecessors, (70), 71 states have return successors, (88), 70 states have call predecessors, (88), 70 states have call successors, (88) [2022-11-19 07:07:54,902 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 443 states to 443 states and 503 transitions. [2022-11-19 07:07:54,903 INFO L78 Accepts]: Start accepts. Automaton has 443 states and 503 transitions. Word has length 93 [2022-11-19 07:07:54,904 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:07:54,904 INFO L495 AbstractCegarLoop]: Abstraction has 443 states and 503 transitions. [2022-11-19 07:07:54,904 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 5.333333333333333) internal successors, (48), 8 states have internal predecessors, (48), 5 states have call successors, (9), 4 states have call predecessors, (9), 3 states have return successors, (9), 3 states have call predecessors, (9), 5 states have call successors, (9) [2022-11-19 07:07:54,904 INFO L276 IsEmpty]: Start isEmpty. Operand 443 states and 503 transitions. [2022-11-19 07:07:54,908 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 97 [2022-11-19 07:07:54,908 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:07:54,909 INFO L195 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:07:54,919 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2022-11-19 07:07:55,114 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 07:07:55,114 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:07:55,115 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:07:55,115 INFO L85 PathProgramCache]: Analyzing trace with hash 1873478361, now seen corresponding path program 1 times [2022-11-19 07:07:55,115 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:07:55,115 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1392605743] [2022-11-19 07:07:55,115 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:55,115 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:07:55,130 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:55,729 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 34 proven. 12 refuted. 0 times theorem prover too weak. 32 trivial. 0 not checked. [2022-11-19 07:07:55,730 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:07:55,730 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1392605743] [2022-11-19 07:07:55,730 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1392605743] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 07:07:55,730 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [183009131] [2022-11-19 07:07:55,730 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:07:55,731 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 07:07:55,731 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 07:07:55,732 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 07:07:55,759 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-19 07:07:55,852 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:07:55,855 INFO L263 TraceCheckSpWp]: Trace formula consists of 410 conjuncts, 34 conjunts are in the unsatisfiable core [2022-11-19 07:07:55,858 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 07:07:56,395 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 51 proven. 25 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-19 07:07:56,396 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-19 07:07:57,143 INFO L134 CoverageAnalysis]: Checked inductivity of 78 backedges. 41 proven. 10 refuted. 0 times theorem prover too weak. 27 trivial. 0 not checked. [2022-11-19 07:07:57,146 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [183009131] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-19 07:07:57,146 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [729217507] [2022-11-19 07:07:57,152 INFO L159 IcfgInterpreter]: Started Sifa with 44 locations of interest [2022-11-19 07:07:57,153 INFO L166 IcfgInterpreter]: Building call graph [2022-11-19 07:07:57,153 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-19 07:07:57,153 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-19 07:07:57,154 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-19 07:08:00,329 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 45 for LOIs [2022-11-19 07:08:00,357 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 31 for LOIs [2022-11-19 07:08:00,583 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 60 for LOIs [2022-11-19 07:08:00,995 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 50 for LOIs [2022-11-19 07:08:01,005 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 43 for LOIs [2022-11-19 07:08:01,013 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 36 for LOIs [2022-11-19 07:08:01,015 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-19 07:08:06,589 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '9420#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~8#1|) (<= 0 (+ |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 2147483648)) (= ~head~0.offset 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1|) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~8#1|) (<= 0 ~methAndRunningLastTime~0) (<= 0 |old(~methAndRunningLastTime~0)|) (<= 0 ~methaneLevelCritical~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| 1) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 0)) (not (= ~methAndRunningLastTime~0 0)) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 2147483647) (<= 0 |#StackHeapBarrier|) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| 0)) (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| ~methaneLevelCritical~0) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-19 07:08:06,589 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-19 07:08:06,590 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-19 07:08:06,590 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 14, 15] total 34 [2022-11-19 07:08:06,590 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1343214827] [2022-11-19 07:08:06,590 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-19 07:08:06,591 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 34 states [2022-11-19 07:08:06,591 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:08:06,591 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 34 interpolants. [2022-11-19 07:08:06,593 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=530, Invalid=3760, Unknown=0, NotChecked=0, Total=4290 [2022-11-19 07:08:06,594 INFO L87 Difference]: Start difference. First operand 443 states and 503 transitions. Second operand has 34 states, 31 states have (on average 4.0) internal successors, (124), 28 states have internal predecessors, (124), 15 states have call successors, (30), 13 states have call predecessors, (30), 13 states have return successors, (29), 12 states have call predecessors, (29), 15 states have call successors, (29) [2022-11-19 07:08:08,971 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:08:08,972 INFO L93 Difference]: Finished difference Result 1515 states and 1774 transitions. [2022-11-19 07:08:08,972 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 37 states. [2022-11-19 07:08:08,972 INFO L78 Accepts]: Start accepts. Automaton has has 34 states, 31 states have (on average 4.0) internal successors, (124), 28 states have internal predecessors, (124), 15 states have call successors, (30), 13 states have call predecessors, (30), 13 states have return successors, (29), 12 states have call predecessors, (29), 15 states have call successors, (29) Word has length 96 [2022-11-19 07:08:08,973 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:08:08,979 INFO L225 Difference]: With dead ends: 1515 [2022-11-19 07:08:08,979 INFO L226 Difference]: Without dead ends: 1074 [2022-11-19 07:08:08,983 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 335 GetRequests, 236 SyntacticMatches, 5 SemanticMatches, 94 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3667 ImplicationChecksByTransitivity, 7.4s TimeCoverageRelationStatistics Valid=1176, Invalid=7944, Unknown=0, NotChecked=0, Total=9120 [2022-11-19 07:08:08,984 INFO L413 NwaCegarLoop]: 70 mSDtfsCounter, 908 mSDsluCounter, 402 mSDsCounter, 0 mSdLazyCounter, 859 mSolverCounterSat, 567 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 912 SdHoareTripleChecker+Valid, 472 SdHoareTripleChecker+Invalid, 1426 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 567 IncrementalHoareTripleChecker+Valid, 859 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2022-11-19 07:08:08,984 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [912 Valid, 472 Invalid, 1426 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [567 Valid, 859 Invalid, 0 Unknown, 0 Unchecked, 0.9s Time] [2022-11-19 07:08:08,986 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1074 states. [2022-11-19 07:08:09,099 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1074 to 846. [2022-11-19 07:08:09,101 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 846 states, 590 states have (on average 1.1355932203389831) internal successors, (670), 618 states have internal predecessors, (670), 136 states have call successors, (136), 118 states have call predecessors, (136), 119 states have return successors, (165), 124 states have call predecessors, (165), 136 states have call successors, (165) [2022-11-19 07:08:09,105 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 846 states to 846 states and 971 transitions. [2022-11-19 07:08:09,106 INFO L78 Accepts]: Start accepts. Automaton has 846 states and 971 transitions. Word has length 96 [2022-11-19 07:08:09,106 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:08:09,106 INFO L495 AbstractCegarLoop]: Abstraction has 846 states and 971 transitions. [2022-11-19 07:08:09,107 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 34 states, 31 states have (on average 4.0) internal successors, (124), 28 states have internal predecessors, (124), 15 states have call successors, (30), 13 states have call predecessors, (30), 13 states have return successors, (29), 12 states have call predecessors, (29), 15 states have call successors, (29) [2022-11-19 07:08:09,107 INFO L276 IsEmpty]: Start isEmpty. Operand 846 states and 971 transitions. [2022-11-19 07:08:09,110 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 146 [2022-11-19 07:08:09,110 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 07:08:09,111 INFO L195 NwaCegarLoop]: trace histogram [7, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 4, 4, 4, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:08:09,117 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-19 07:08:09,317 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-19 07:08:09,317 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 07:08:09,318 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 07:08:09,318 INFO L85 PathProgramCache]: Analyzing trace with hash -2009431574, now seen corresponding path program 1 times [2022-11-19 07:08:09,318 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 07:08:09,318 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2084368285] [2022-11-19 07:08:09,318 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:08:09,318 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 07:08:09,349 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:08:10,424 INFO L134 CoverageAnalysis]: Checked inductivity of 241 backedges. 86 proven. 78 refuted. 0 times theorem prover too weak. 77 trivial. 0 not checked. [2022-11-19 07:08:10,424 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 07:08:10,424 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2084368285] [2022-11-19 07:08:10,424 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2084368285] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 07:08:10,424 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [532707346] [2022-11-19 07:08:10,425 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 07:08:10,425 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 07:08:10,425 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 07:08:10,426 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 07:08:10,460 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-19 07:08:10,571 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 07:08:10,575 INFO L263 TraceCheckSpWp]: Trace formula consists of 588 conjuncts, 39 conjunts are in the unsatisfiable core [2022-11-19 07:08:10,580 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 07:08:11,297 INFO L134 CoverageAnalysis]: Checked inductivity of 241 backedges. 138 proven. 71 refuted. 0 times theorem prover too weak. 32 trivial. 0 not checked. [2022-11-19 07:08:11,297 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-19 07:08:12,430 INFO L134 CoverageAnalysis]: Checked inductivity of 241 backedges. 106 proven. 65 refuted. 0 times theorem prover too weak. 70 trivial. 0 not checked. [2022-11-19 07:08:12,430 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [532707346] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-19 07:08:12,430 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [730867293] [2022-11-19 07:08:12,438 INFO L159 IcfgInterpreter]: Started Sifa with 44 locations of interest [2022-11-19 07:08:12,438 INFO L166 IcfgInterpreter]: Building call graph [2022-11-19 07:08:12,440 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-19 07:08:12,440 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-19 07:08:12,440 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-19 07:08:15,272 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 45 for LOIs [2022-11-19 07:08:15,282 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 31 for LOIs [2022-11-19 07:08:15,572 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 60 for LOIs [2022-11-19 07:08:15,970 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 50 for LOIs [2022-11-19 07:08:15,981 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 43 for LOIs [2022-11-19 07:08:15,988 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 36 for LOIs [2022-11-19 07:08:15,990 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-19 07:08:22,035 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14036#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~8#1|) (<= 0 (+ |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 2147483648)) (= ~head~0.offset 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1|) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~8#1|) (<= 0 ~methAndRunningLastTime~0) (<= 0 |old(~methAndRunningLastTime~0)|) (<= 0 ~methaneLevelCritical~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| 1) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 0)) (not (= ~methAndRunningLastTime~0 0)) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 2147483647) (<= 0 |#StackHeapBarrier|) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| 0)) (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| ~methaneLevelCritical~0) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-19 07:08:22,035 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-19 07:08:22,035 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-19 07:08:22,035 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17, 18, 17] total 42 [2022-11-19 07:08:22,035 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [370145379] [2022-11-19 07:08:22,035 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-19 07:08:22,037 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 42 states [2022-11-19 07:08:22,037 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 07:08:22,038 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 42 interpolants. [2022-11-19 07:08:22,040 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=650, Invalid=4752, Unknown=0, NotChecked=0, Total=5402 [2022-11-19 07:08:22,040 INFO L87 Difference]: Start difference. First operand 846 states and 971 transitions. Second operand has 42 states, 40 states have (on average 4.675) internal successors, (187), 39 states have internal predecessors, (187), 24 states have call successors, (42), 12 states have call predecessors, (42), 16 states have return successors, (43), 20 states have call predecessors, (43), 24 states have call successors, (43) [2022-11-19 07:08:23,121 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 07:08:23,122 INFO L93 Difference]: Finished difference Result 1159 states and 1339 transitions. [2022-11-19 07:08:23,122 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2022-11-19 07:08:23,123 INFO L78 Accepts]: Start accepts. Automaton has has 42 states, 40 states have (on average 4.675) internal successors, (187), 39 states have internal predecessors, (187), 24 states have call successors, (42), 12 states have call predecessors, (42), 16 states have return successors, (43), 20 states have call predecessors, (43), 24 states have call successors, (43) Word has length 145 [2022-11-19 07:08:23,123 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 07:08:23,124 INFO L225 Difference]: With dead ends: 1159 [2022-11-19 07:08:23,124 INFO L226 Difference]: Without dead ends: 0 [2022-11-19 07:08:23,129 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 475 GetRequests, 380 SyntacticMatches, 9 SemanticMatches, 86 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3397 ImplicationChecksByTransitivity, 7.3s TimeCoverageRelationStatistics Valid=1057, Invalid=6599, Unknown=0, NotChecked=0, Total=7656 [2022-11-19 07:08:23,131 INFO L413 NwaCegarLoop]: 38 mSDtfsCounter, 495 mSDsluCounter, 229 mSDsCounter, 0 mSdLazyCounter, 521 mSolverCounterSat, 299 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 496 SdHoareTripleChecker+Valid, 267 SdHoareTripleChecker+Invalid, 820 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 299 IncrementalHoareTripleChecker+Valid, 521 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-19 07:08:23,131 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [496 Valid, 267 Invalid, 820 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [299 Valid, 521 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-19 07:08:23,131 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-19 07:08:23,132 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-19 07:08:23,132 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 07:08:23,132 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-19 07:08:23,132 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 145 [2022-11-19 07:08:23,133 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 07:08:23,133 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-19 07:08:23,133 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 42 states, 40 states have (on average 4.675) internal successors, (187), 39 states have internal predecessors, (187), 24 states have call successors, (42), 12 states have call predecessors, (42), 16 states have return successors, (43), 20 states have call predecessors, (43), 24 states have call successors, (43) [2022-11-19 07:08:23,133 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-19 07:08:23,134 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-19 07:08:23,136 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-19 07:08:23,143 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-19 07:08:23,343 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 07:08:23,345 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-19 07:08:30,447 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 370 376) no Hoare annotation was computed. [2022-11-19 07:08:30,447 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 370 376) the Hoare annotation is: true [2022-11-19 07:08:30,448 INFO L895 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 122 133) the Hoare annotation is: (let ((.cse10 (= ~pumpRunning~0 0)) (.cse9 (= ~methAndRunningLastTime~0 0)) (.cse3 (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0))) (let ((.cse0 (not (= |old(~methaneLevelCritical~0)| 0))) (.cse5 (not (= ~waterLevel~0 1))) (.cse7 (and .cse10 .cse9 .cse3 (= ~methaneLevelCritical~0 1))) (.cse6 (not .cse10)) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (= 2 ~waterLevel~0))) (.cse8 (not (= |old(~methaneLevelCritical~0)| 1))) (.cse4 (not .cse9))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse5 .cse0 .cse6 .cse1 .cse3 .cse4) (or .cse5 .cse7 .cse6 .cse1 .cse8 .cse4) (or .cse7 .cse6 .cse1 .cse2 .cse8 .cse4)))) [2022-11-19 07:08:30,448 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 122 133) no Hoare annotation was computed. [2022-11-19 07:08:30,448 INFO L895 garLoopResultBuilder]: At program point L993(line 993) the Hoare annotation is: (let ((.cse6 (not (= ~methaneLevelCritical~0 1))) (.cse5 (not (= |old(~waterLevel~0)| 1))) (.cse4 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse3 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 (not (= |old(~pumpRunning~0)| 1)) .cse3) (or .cse4 .cse0 .cse5 .cse1 .cse6) (or .cse0 .cse1 .cse6 .cse3) (or .cse4 .cse0 .cse5 .cse1 .cse2) (or .cse4 .cse0 .cse1 .cse2 .cse3))) [2022-11-19 07:08:30,449 INFO L899 garLoopResultBuilder]: For program point L350-1(lines 349 368) no Hoare annotation was computed. [2022-11-19 07:08:30,449 INFO L895 garLoopResultBuilder]: At program point L317(line 317) the Hoare annotation is: (let ((.cse12 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse13 (= ~methaneLevelCritical~0 1))) (let ((.cse5 (not (= |old(~waterLevel~0)| 1))) (.cse9 (and .cse12 .cse1 .cse2 .cse13 (<= ~waterLevel~0 |old(~waterLevel~0)|) (<= |old(~waterLevel~0)| ~waterLevel~0))) (.cse10 (not .cse13)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse6 (not (= 1 ~systemActive~0))) (.cse8 (= |timeShift_processEnvironment_~tmp~3#1| 1)) (.cse3 (= ~waterLevel~0 1)) (.cse7 (not (= ~methaneLevelCritical~0 0))) (.cse11 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 (and .cse1 .cse2 .cse3) .cse4 .cse5 .cse6 .cse7) (or .cse4 .cse6 (and .cse1 .cse8 .cse3) .cse9 .cse10 .cse11) (or .cse0 .cse4 .cse5 .cse6 (and .cse12 .cse1 .cse2 .cse13 .cse3) .cse10) (or .cse0 .cse4 .cse6 .cse9 .cse10 .cse11) (or .cse0 .cse4 .cse6 .cse7 (and .cse2 (= |old(~waterLevel~0)| ~waterLevel~0) (= ~pumpRunning~0 1)) .cse11) (or .cse4 .cse6 (and .cse1 .cse2 .cse8 .cse3) .cse7 (not (= |old(~pumpRunning~0)| 1)) .cse11)))) [2022-11-19 07:08:30,450 INFO L895 garLoopResultBuilder]: At program point L412(lines 412 420) the Hoare annotation is: (let ((.cse4 (= ~methAndRunningLastTime~0 0)) (.cse5 (= |timeShift_processEnvironment_~tmp~3#1| 1)) (.cse6 (= ~waterLevel~0 1)) (.cse7 (not (= ~methaneLevelCritical~0 1))) (.cse9 (not (= |old(~waterLevel~0)| 1))) (.cse8 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse3 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 (not (= |old(~pumpRunning~0)| 1)) .cse3 (and .cse4 .cse5 .cse6 (= ~pumpRunning~0 1))) (or .cse0 .cse1 .cse7 .cse3 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse4 (not (= ~pumpRunning~0 0)) .cse5 .cse6)) (or .cse8 .cse0 .cse9 .cse1 .cse7) (or .cse8 .cse0 .cse9 .cse1 .cse2) (or .cse8 .cse0 .cse1 .cse2 .cse3))) [2022-11-19 07:08:30,450 INFO L899 garLoopResultBuilder]: For program point L317-1(line 317) no Hoare annotation was computed. [2022-11-19 07:08:30,450 INFO L895 garLoopResultBuilder]: At program point L408(lines 408 425) the Hoare annotation is: (let ((.cse7 (= ~pumpRunning~0 0)) (.cse8 (= ~methAndRunningLastTime~0 0))) (let ((.cse2 (not (= |old(~waterLevel~0)| 1))) (.cse4 (and .cse7 .cse8 (<= ~waterLevel~0 |old(~waterLevel~0)|) (= ~waterLevel~0 1))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse5 (not (= ~methaneLevelCritical~0 0))) (.cse1 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse3 (not (= 1 ~systemActive~0))) (.cse6 (not (= ~methaneLevelCritical~0 1))) (.cse10 (not (= |old(~waterLevel~0)| 2))) (.cse9 (or (and .cse7 (= |old(~waterLevel~0)| ~waterLevel~0)) (and (not .cse7) (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)))))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse6) (or .cse0 .cse1 .cse3 (and .cse7 .cse8 .cse9) .cse5 .cse10) (or .cse1 .cse3 .cse5 (not (= |old(~pumpRunning~0)| 1)) .cse10 (and .cse8 .cse9 (= ~pumpRunning~0 1))) (or .cse1 .cse3 .cse6 .cse10 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse8 .cse9))))) [2022-11-19 07:08:30,450 INFO L899 garLoopResultBuilder]: For program point L323(lines 323 333) no Hoare annotation was computed. [2022-11-19 07:08:30,451 INFO L895 garLoopResultBuilder]: At program point L418(line 418) the Hoare annotation is: (let ((.cse6 (not (= ~methaneLevelCritical~0 1))) (.cse5 (not (= |old(~waterLevel~0)| 1))) (.cse4 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse3 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 (not (= |old(~pumpRunning~0)| 1)) .cse3) (or .cse4 .cse0 .cse5 .cse1 .cse6) (or .cse0 .cse1 .cse6 .cse3) (or .cse4 .cse0 .cse5 .cse1 .cse2) (or .cse4 .cse0 .cse1 .cse2 .cse3))) [2022-11-19 07:08:30,451 INFO L895 garLoopResultBuilder]: At program point L319(lines 319 336) the Hoare annotation is: (let ((.cse16 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse7 (= ~pumpRunning~0 0)) (.cse17 (= ~methaneLevelCritical~0 1)) (.cse14 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse13 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| ~methaneLevelCritical~0))) (let ((.cse5 (and .cse16 .cse7 .cse17 .cse14 .cse13)) (.cse10 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| 0)) (.cse8 (= ~methAndRunningLastTime~0 0)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse6 (not (= |old(~waterLevel~0)| 1))) (.cse3 (not .cse17)) (.cse1 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse2 (not (= 1 ~systemActive~0))) (.cse11 (not (= ~methaneLevelCritical~0 0))) (.cse15 (not (= |old(~pumpRunning~0)| 1))) (.cse12 (= |timeShift_processEnvironment_~tmp~3#1| 1)) (.cse9 (= ~waterLevel~0 1)) (.cse4 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse0 .cse1 .cse6 .cse2 (and .cse7 .cse8 .cse9 .cse10) .cse11) (or .cse1 .cse2 (and .cse7 .cse12 .cse9 .cse13) .cse3 .cse4 .cse5) (or .cse0 .cse1 (and .cse14 .cse13 (= ~pumpRunning~0 1)) .cse2 .cse11 .cse4) (or .cse1 .cse2 (and .cse8 .cse10) .cse11 .cse15 .cse4) (or .cse0 .cse1 .cse8 .cse2 .cse11 .cse4) (or .cse0 .cse1 .cse6 (and .cse16 .cse7 .cse17 .cse9 .cse13) .cse2 .cse3) (or .cse1 .cse2 .cse11 .cse15 (and .cse7 .cse12 .cse9) .cse4)))) [2022-11-19 07:08:30,452 INFO L895 garLoopResultBuilder]: At program point L319-1(lines 311 339) the Hoare annotation is: (let ((.cse13 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse2 (= ~pumpRunning~0 0)) (.cse3 (= ~methAndRunningLastTime~0 0)) (.cse5 (or (= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1| 0) (= ~pumpRunning~0 |timeShift___utac_acc__Specification2_spec__2_~tmp___0~0#1|))) (.cse7 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| ~methaneLevelCritical~0)) (.cse14 (= ~methaneLevelCritical~0 1))) (let ((.cse12 (not (= |old(~waterLevel~0)| 1))) (.cse4 (= |timeShift_processEnvironment_~tmp~3#1| 1)) (.cse6 (= ~waterLevel~0 1)) (.cse15 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~1#1| 0)) (.cse8 (not .cse14)) (.cse10 (and .cse13 .cse2 .cse3 .cse14 .cse5 (= |old(~waterLevel~0)| ~waterLevel~0) .cse7)) (.cse11 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse16 (not (= ~methaneLevelCritical~0 0))) (.cse9 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 (and .cse2 .cse3 .cse4 .cse5 .cse6 .cse7) .cse8 .cse9 .cse10) (or .cse11 .cse0 .cse12 .cse1 (and .cse13 .cse2 .cse3 .cse14 .cse5 .cse6 .cse7) .cse8) (or .cse11 .cse0 .cse12 .cse1 (and .cse2 .cse3 .cse6 .cse15) .cse16) (or .cse0 .cse1 (and .cse2 .cse3 .cse4 .cse6 .cse15) .cse16 (not (= |old(~pumpRunning~0)| 1)) .cse9) (or .cse11 .cse0 .cse1 .cse8 .cse9 .cse10) (or .cse11 (and .cse3 (<= ~waterLevel~0 |old(~waterLevel~0)|) (<= |old(~waterLevel~0)| ~waterLevel~0) .cse7 (= ~pumpRunning~0 1)) .cse0 .cse1 .cse16 .cse9)))) [2022-11-19 07:08:30,452 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 346 369) the Hoare annotation is: (let ((.cse10 (= ~pumpRunning~0 0)) (.cse7 (= ~methAndRunningLastTime~0 0))) (let ((.cse1 (and .cse10 .cse7 (= ~waterLevel~0 1))) (.cse3 (not (= |old(~waterLevel~0)| 1))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse5 (not (= ~methaneLevelCritical~0 0))) (.cse8 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse4 (not (= 1 ~systemActive~0))) (.cse6 (not (= ~methaneLevelCritical~0 1))) (.cse9 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse6) (or .cse2 .cse4 .cse5 (not (= |old(~pumpRunning~0)| 1)) (and .cse7 .cse8 (= ~pumpRunning~0 1)) .cse9) (or .cse0 .cse2 .cse4 (and .cse10 .cse7 .cse8) .cse5 .cse9) (or (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse7 .cse8) .cse2 .cse4 .cse6 .cse9)))) [2022-11-19 07:08:30,452 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 346 369) no Hoare annotation was computed. [2022-11-19 07:08:30,453 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 993) no Hoare annotation was computed. [2022-11-19 07:08:30,453 INFO L895 garLoopResultBuilder]: At program point L423(line 423) the Hoare annotation is: (let ((.cse7 (= ~pumpRunning~0 0))) (let ((.cse8 (= ~methAndRunningLastTime~0 0)) (.cse9 (let ((.cse11 (<= ~waterLevel~0 |old(~waterLevel~0)|))) (or (and (not (< 0 ~waterLevel~0)) .cse11) (and .cse7 .cse11))))) (let ((.cse4 (not (= ~methaneLevelCritical~0 0))) (.cse6 (not (= |old(~waterLevel~0)| 2))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse2 (not (= |old(~waterLevel~0)| 1))) (.cse3 (not (= 1 ~systemActive~0))) (.cse5 (and .cse8 .cse9 (= ~waterLevel~0 1))) (.cse10 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse1 .cse3 .cse4 (not (= |old(~pumpRunning~0)| 1)) .cse6) (or .cse0 .cse1 .cse3 (and .cse7 .cse8 (= |old(~waterLevel~0)| ~waterLevel~0)) .cse4 .cse6) (or .cse1 .cse3 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse8 .cse9 (<= |old(~waterLevel~0)| ~waterLevel~0)) .cse10 .cse6) (or .cse0 .cse1 .cse2 .cse3 .cse5 .cse10))))) [2022-11-19 07:08:30,453 INFO L895 garLoopResultBuilder]: At program point L423-1(lines 404 428) the Hoare annotation is: (let ((.cse12 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse13 (= ~methaneLevelCritical~0 1))) (let ((.cse5 (not (= |old(~waterLevel~0)| 1))) (.cse9 (and .cse12 .cse1 .cse2 .cse13 (<= ~waterLevel~0 |old(~waterLevel~0)|) (<= |old(~waterLevel~0)| ~waterLevel~0))) (.cse10 (not .cse13)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse6 (not (= 1 ~systemActive~0))) (.cse8 (= |timeShift_processEnvironment_~tmp~3#1| 1)) (.cse3 (= ~waterLevel~0 1)) (.cse7 (not (= ~methaneLevelCritical~0 0))) (.cse11 (not (= |old(~waterLevel~0)| 2)))) (and (or .cse0 (and .cse1 .cse2 .cse3) .cse4 .cse5 .cse6 .cse7) (or .cse4 .cse6 (and .cse1 .cse8 .cse3) .cse9 .cse10 .cse11) (or .cse0 .cse4 .cse5 .cse6 (and .cse12 .cse1 .cse2 .cse13 .cse3) .cse10) (or .cse0 .cse4 .cse6 .cse9 .cse10 .cse11) (or .cse0 .cse4 .cse6 .cse7 (and .cse2 (= |old(~waterLevel~0)| ~waterLevel~0) (= ~pumpRunning~0 1)) .cse11) (or .cse4 .cse6 (and .cse1 .cse2 .cse8 .cse3) .cse7 (not (= |old(~pumpRunning~0)| 1)) .cse11)))) [2022-11-19 07:08:30,454 INFO L899 garLoopResultBuilder]: For program point L357-1(lines 357 363) no Hoare annotation was computed. [2022-11-19 07:08:30,454 INFO L899 garLoopResultBuilder]: For program point L324(lines 324 330) no Hoare annotation was computed. [2022-11-19 07:08:30,454 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 201 230) no Hoare annotation was computed. [2022-11-19 07:08:30,454 INFO L899 garLoopResultBuilder]: For program point L222(line 222) no Hoare annotation was computed. [2022-11-19 07:08:30,455 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 201 230) the Hoare annotation is: true [2022-11-19 07:08:30,455 INFO L899 garLoopResultBuilder]: For program point L215(lines 215 219) no Hoare annotation was computed. [2022-11-19 07:08:30,455 INFO L902 garLoopResultBuilder]: At program point L215-1(lines 215 219) the Hoare annotation is: true [2022-11-19 07:08:30,455 INFO L902 garLoopResultBuilder]: At program point L211-2(lines 211 225) the Hoare annotation is: true [2022-11-19 07:08:30,455 INFO L902 garLoopResultBuilder]: At program point L207(line 207) the Hoare annotation is: true [2022-11-19 07:08:30,455 INFO L899 garLoopResultBuilder]: For program point L207-1(line 207) no Hoare annotation was computed. [2022-11-19 07:08:30,456 INFO L902 garLoopResultBuilder]: At program point L226(lines 201 230) the Hoare annotation is: true [2022-11-19 07:08:30,456 INFO L902 garLoopResultBuilder]: At program point isMethaneLevelCriticalENTRY(lines 134 142) the Hoare annotation is: true [2022-11-19 07:08:30,456 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 134 142) no Hoare annotation was computed. [2022-11-19 07:08:30,456 INFO L895 garLoopResultBuilder]: At program point L614(lines 567 615) the Hoare annotation is: false [2022-11-19 07:08:30,456 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-19 07:08:30,456 INFO L899 garLoopResultBuilder]: For program point L569(lines 568 613) no Hoare annotation was computed. [2022-11-19 07:08:30,457 INFO L895 garLoopResultBuilder]: At program point L590(line 590) the Hoare annotation is: (let ((.cse6 (= ~waterLevel~0 1)) (.cse3 (= ~methaneLevelCritical~0 0)) (.cse0 (= |ULTIMATE.start_main_~tmp~0#1| ~systemActive~0)) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse9 (= 2 ~waterLevel~0)) (.cse4 (= 1 ~systemActive~0)) (.cse8 (= ~methaneLevelCritical~0 1)) (.cse5 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse7 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5 .cse6 .cse7) (and .cse0 .cse1 .cse2 .cse4 .cse8 .cse5 .cse6 .cse7) (and .cse0 .cse2 .cse9 .cse3 .cse4 .cse5 .cse7) (and .cse0 .cse1 .cse2 .cse9 .cse4 .cse8 .cse5 .cse7))) [2022-11-19 07:08:30,457 INFO L895 garLoopResultBuilder]: At program point L611(lines 568 613) the Hoare annotation is: (let ((.cse2 (= 2 ~waterLevel~0)) (.cse7 (= ~methaneLevelCritical~0 1)) (.cse0 (= |ULTIMATE.start_main_~tmp~0#1| ~systemActive~0)) (.cse6 (= ~pumpRunning~0 0)) (.cse1 (= ~methAndRunningLastTime~0 0)) (.cse3 (= ~methaneLevelCritical~0 0)) (.cse4 (= 1 ~systemActive~0)) (.cse5 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse8 (= ~waterLevel~0 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5 (= ~pumpRunning~0 1)) (and .cse0 .cse6 .cse1 .cse2 .cse4 .cse7 .cse5) (and .cse0 .cse6 .cse1 .cse4 .cse7 .cse5 .cse8) (and .cse0 .cse6 .cse1 .cse3 .cse4 .cse5 .cse8))) [2022-11-19 07:08:30,457 INFO L899 garLoopResultBuilder]: For program point L578(lines 578 584) no Hoare annotation was computed. [2022-11-19 07:08:30,457 INFO L899 garLoopResultBuilder]: For program point L578-1(lines 578 584) no Hoare annotation was computed. [2022-11-19 07:08:30,458 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-19 07:08:30,458 INFO L895 garLoopResultBuilder]: At program point L286(lines 286 293) the Hoare annotation is: (and (= |ULTIMATE.start_main_~tmp~0#1| ~systemActive~0) (= ~pumpRunning~0 0) (= ~methAndRunningLastTime~0 0) (= ~methaneLevelCritical~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2022-11-19 07:08:30,458 INFO L902 garLoopResultBuilder]: At program point L286-2(lines 286 293) the Hoare annotation is: true [2022-11-19 07:08:30,458 INFO L895 garLoopResultBuilder]: At program point L604-2(lines 598 609) the Hoare annotation is: (let ((.cse6 (= ~methaneLevelCritical~0 1)) (.cse2 (= 2 ~waterLevel~0)) (.cse0 (= |ULTIMATE.start_main_~tmp~0#1| ~systemActive~0)) (.cse7 (= ~pumpRunning~0 0)) (.cse1 (= ~methAndRunningLastTime~0 0)) (.cse3 (= ~methaneLevelCritical~0 0)) (.cse4 (= 1 ~systemActive~0)) (.cse5 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse8 (= ~waterLevel~0 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5 (= ~pumpRunning~0 1)) (and .cse0 .cse1 .cse2 .cse4 .cse6 .cse5) (and .cse0 .cse7 .cse1 .cse4 .cse6 .cse5 .cse8) (and .cse0 .cse7 .cse1 .cse2 .cse3 .cse4 .cse5) (and .cse0 .cse7 .cse1 .cse3 .cse4 .cse5 .cse8))) [2022-11-19 07:08:30,458 INFO L899 garLoopResultBuilder]: For program point L588(lines 588 594) no Hoare annotation was computed. [2022-11-19 07:08:30,459 INFO L899 garLoopResultBuilder]: For program point L588-1(lines 588 594) no Hoare annotation was computed. [2022-11-19 07:08:30,459 INFO L902 garLoopResultBuilder]: At program point L617(lines 558 621) the Hoare annotation is: true [2022-11-19 07:08:30,459 INFO L895 garLoopResultBuilder]: At program point L580(line 580) the Hoare annotation is: (let ((.cse8 (= 2 ~waterLevel~0)) (.cse3 (< 0 ~waterLevel~0)) (.cse5 (= ~methaneLevelCritical~0 1)) (.cse0 (= |ULTIMATE.start_main_~tmp~0#1| ~systemActive~0)) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse9 (= ~methaneLevelCritical~0 0)) (.cse4 (= 1 ~systemActive~0)) (.cse6 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse7 (= ~waterLevel~0 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5 .cse6 .cse7) (and .cse0 .cse2 .cse8 .cse9 .cse4 .cse6 (= ~pumpRunning~0 1)) (and .cse0 .cse1 .cse2 .cse8 .cse3 .cse4 .cse5 .cse6) (and .cse0 .cse1 .cse2 .cse9 .cse4 .cse6 .cse7))) [2022-11-19 07:08:30,459 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 378 402) the Hoare annotation is: (let ((.cse4 (not (= ~methaneLevelCritical~0 1))) (.cse3 (not (= 2 ~waterLevel~0))) (.cse6 (not (= ~waterLevel~0 1))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= 1 ~systemActive~0))) (.cse7 (not (= ~methaneLevelCritical~0 0))) (.cse5 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse6 .cse0 .cse1 .cse2 .cse4 .cse5) (or .cse0 .cse1 .cse2 .cse3 .cse7 .cse5) (or .cse6 .cse0 .cse1 .cse2 .cse7 .cse5))) [2022-11-19 07:08:30,459 INFO L895 garLoopResultBuilder]: At program point L382(lines 382 399) the Hoare annotation is: (let ((.cse4 (not (= ~methaneLevelCritical~0 1))) (.cse3 (not (= 2 ~waterLevel~0))) (.cse6 (not (= ~waterLevel~0 1))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= 1 ~systemActive~0))) (.cse7 (not (= ~methaneLevelCritical~0 0))) (.cse5 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse6 .cse0 .cse1 .cse2 .cse4 .cse5) (or .cse0 .cse1 .cse2 .cse3 .cse7 .cse5) (or .cse6 .cse0 .cse1 .cse2 .cse7 .cse5))) [2022-11-19 07:08:30,460 INFO L895 garLoopResultBuilder]: At program point L397(line 397) the Hoare annotation is: (let ((.cse2 (not (= 2 ~waterLevel~0))) (.cse5 (not (= ~methaneLevelCritical~0 0))) (.cse6 (not (= ~waterLevel~0 1))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse3 (not (= ~methaneLevelCritical~0 1))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse0 .cse1 .cse2 .cse5 .cse4) (or .cse6 .cse0 .cse1 .cse5 .cse4) (or .cse6 .cse0 .cse1 .cse3 .cse4))) [2022-11-19 07:08:30,460 INFO L899 garLoopResultBuilder]: For program point L397-1(lines 378 402) no Hoare annotation was computed. [2022-11-19 07:08:30,460 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 378 402) no Hoare annotation was computed. [2022-11-19 07:08:30,460 INFO L895 garLoopResultBuilder]: At program point L468(line 468) the Hoare annotation is: (let ((.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse0 (not (= ~waterLevel~0 1))) (.cse1 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (not (= 1 ~systemActive~0))) (.cse5 (not (= 2 ~waterLevel~0))) (.cse6 (and (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 1))) (.cse7 (not (= ~methaneLevelCritical~0 1))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse1 .cse2 .cse5 .cse6 .cse3 .cse4) (or .cse0 .cse1 .cse2 .cse7 .cse4) (or .cse1 .cse2 .cse5 .cse6 .cse7 .cse4))) [2022-11-19 07:08:30,461 INFO L895 garLoopResultBuilder]: At program point L468-1(line 468) the Hoare annotation is: (let ((.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse0 (not (= ~waterLevel~0 1))) (.cse1 (not (= |old(~pumpRunning~0)| 0))) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 1)) (.cse2 (not (= 1 ~systemActive~0))) (.cse7 (not (= 2 ~waterLevel~0))) (.cse8 (not (= ~methaneLevelCritical~0 1))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or (and (= |processEnvironment__wrappee__highWaterSensor_isMethaneAlarm_#t~ret16#1| ~methaneLevelCritical~0) .cse5 .cse6) .cse1 .cse2 .cse7 .cse3 .cse4) (or .cse0 .cse1 .cse2 .cse8 .cse4) (or .cse1 (and .cse5 (= |processEnvironment__wrappee__highWaterSensor_isMethaneAlarm_#t~ret16#1| 1) .cse6) .cse2 .cse7 .cse8 .cse4))) [2022-11-19 07:08:30,461 INFO L895 garLoopResultBuilder]: At program point L392(line 392) the Hoare annotation is: (let ((.cse8 (= ~waterLevel~0 1))) (let ((.cse2 (not (= 2 ~waterLevel~0))) (.cse5 (not (= ~methaneLevelCritical~0 0))) (.cse6 (not .cse8)) (.cse7 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 0) .cse8)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse3 (not (= ~methaneLevelCritical~0 1))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse0 .cse1 .cse2 .cse5 .cse4) (or .cse6 .cse7 .cse0 .cse1 .cse5 .cse4) (or .cse6 .cse7 .cse0 .cse1 .cse3 .cse4)))) [2022-11-19 07:08:30,461 INFO L899 garLoopResultBuilder]: For program point L386(lines 386 394) no Hoare annotation was computed. [2022-11-19 07:08:30,461 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 110 121) no Hoare annotation was computed. [2022-11-19 07:08:30,462 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 110 121) the Hoare annotation is: (let ((.cse10 (= ~methAndRunningLastTime~0 0)) (.cse11 (= ~methaneLevelCritical~0 1)) (.cse4 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse13 (= 1 ~systemActive~0)) (.cse12 (= ~pumpRunning~0 0))) (let ((.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse1 (not (= |old(~waterLevel~0)| 1))) (.cse0 (not .cse12)) (.cse2 (not .cse13)) (.cse7 (and .cse12 .cse10 (< 0 ~waterLevel~0) .cse13 .cse11 .cse4)) (.cse8 (not (< 0 |old(~waterLevel~0)|))) (.cse9 (not .cse11)) (.cse6 (not (= |old(~waterLevel~0)| 2))) (.cse5 (not .cse10))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse2 .cse3 (not (= ~pumpRunning~0 1)) .cse6 .cse4 .cse5) (or .cse0 .cse1 .cse2 .cse7 .cse8 .cse9 .cse5) (or .cse0 .cse2 .cse7 .cse8 .cse9 .cse6 .cse5)))) [2022-11-19 07:08:30,465 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 07:08:30,467 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-19 07:08:30,500 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 19.11 07:08:30 BoogieIcfgContainer [2022-11-19 07:08:30,501 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-19 07:08:30,501 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-19 07:08:30,501 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-19 07:08:30,502 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-19 07:08:30,502 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 07:07:37" (3/4) ... [2022-11-19 07:08:30,505 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-19 07:08:30,511 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-19 07:08:30,511 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-19 07:08:30,511 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-19 07:08:30,511 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-19 07:08:30,511 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2022-11-19 07:08:30,512 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 07:08:30,512 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-19 07:08:30,519 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 53 nodes and edges [2022-11-19 07:08:30,519 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 11 nodes and edges [2022-11-19 07:08:30,520 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 6 nodes and edges [2022-11-19 07:08:30,520 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-19 07:08:30,521 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-19 07:08:30,545 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1)) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) && (((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1)) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || ((methAndRunningLastTime == 0 && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && \old(waterLevel) == waterLevel)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2))) && ((((((pumpRunning == \old(pumpRunning) && methAndRunningLastTime == 0) && \old(waterLevel) == waterLevel) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) [2022-11-19 07:08:30,546 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= \old(waterLevel)) && waterLevel == 1)) || !(methaneLevelCritical == 0)) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= \old(waterLevel)) && waterLevel == 1)) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1)))) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) || ((methAndRunningLastTime == 0 && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1))) && pumpRunning == 1))) && ((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == \old(pumpRunning) && methAndRunningLastTime == 0) && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1)))) [2022-11-19 07:08:30,547 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1)) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == 1) && waterLevel == 1)) || (((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && waterLevel <= \old(waterLevel)) && \old(waterLevel) <= waterLevel)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && waterLevel == 1)) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || (((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && waterLevel <= \old(waterLevel)) && \old(waterLevel) <= waterLevel)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || ((methAndRunningLastTime == 0 && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && waterLevel == 1)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) [2022-11-19 07:08:30,547 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(2 == waterLevel)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0)) && (((((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(2 == waterLevel)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0))) && (((((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) [2022-11-19 07:08:30,547 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methaneLevelCritical == 1) && \old(waterLevel) == waterLevel) && tmp == methaneLevelCritical)) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1) && tmp == 0)) || !(methaneLevelCritical == 0))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || (((pumpRunning == 0 && tmp == 1) && waterLevel == 1) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methaneLevelCritical == 1) && \old(waterLevel) == waterLevel) && tmp == methaneLevelCritical))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || ((\old(waterLevel) == waterLevel && tmp == methaneLevelCritical) && pumpRunning == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || (methAndRunningLastTime == 0 && tmp == 0)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || ((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methaneLevelCritical == 1) && waterLevel == 1) && tmp == methaneLevelCritical)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || ((pumpRunning == 0 && tmp == 1) && waterLevel == 1)) || !(\old(waterLevel) == 2)) [2022-11-19 07:08:30,548 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || (((((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && (tmp___0 == 0 || pumpRunning == tmp___0)) && waterLevel == 1) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && (tmp___0 == 0 || pumpRunning == tmp___0)) && \old(waterLevel) == waterLevel) && tmp == methaneLevelCritical)) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && (tmp___0 == 0 || pumpRunning == tmp___0)) && waterLevel == 1) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1) && tmp == 0)) || !(methaneLevelCritical == 0))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || ((((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && waterLevel == 1) && tmp == 0)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && (tmp___0 == 0 || pumpRunning == tmp___0)) && \old(waterLevel) == waterLevel) && tmp == methaneLevelCritical))) && (((((!(\old(pumpRunning) == 0) || ((((methAndRunningLastTime == 0 && waterLevel <= \old(waterLevel)) && \old(waterLevel) <= waterLevel) && tmp == methaneLevelCritical) && pumpRunning == 1)) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2)) [2022-11-19 07:08:30,548 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) && (((((((aux-isMethaneLevelCritical()-aux == methaneLevelCritical && pumpRunning == 0) && tmp == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || !(2 == waterLevel)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0))) && ((((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && (((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && aux-isMethaneLevelCritical()-aux == 1) && tmp == 1)) || !(1 == systemActive)) || !(2 == waterLevel)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0)) [2022-11-19 07:08:30,549 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2)) [2022-11-19 07:08:30,549 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) || (((methAndRunningLastTime == 0 && tmp == 1) && waterLevel == 1) && pumpRunning == 1)) && ((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((pumpRunning == \old(pumpRunning) && methAndRunningLastTime == 0) && !(pumpRunning == 0)) && tmp == 1) && waterLevel == 1))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2)) [2022-11-19 07:08:30,578 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/witness.graphml [2022-11-19 07:08:30,579 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-19 07:08:30,579 INFO L158 Benchmark]: Toolchain (without parser) took 55069.65ms. Allocated memory was 109.1MB in the beginning and 539.0MB in the end (delta: 429.9MB). Free memory was 78.7MB in the beginning and 291.7MB in the end (delta: -213.0MB). Peak memory consumption was 217.4MB. Max. memory is 16.1GB. [2022-11-19 07:08:30,580 INFO L158 Benchmark]: CDTParser took 0.26ms. Allocated memory is still 109.1MB. Free memory is still 61.4MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-19 07:08:30,580 INFO L158 Benchmark]: CACSL2BoogieTranslator took 615.47ms. Allocated memory is still 109.1MB. Free memory was 78.4MB in the beginning and 75.3MB in the end (delta: 3.1MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. [2022-11-19 07:08:30,581 INFO L158 Benchmark]: Boogie Procedure Inliner took 75.64ms. Allocated memory is still 109.1MB. Free memory was 75.3MB in the beginning and 73.0MB in the end (delta: 2.3MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-19 07:08:30,581 INFO L158 Benchmark]: Boogie Preprocessor took 51.63ms. Allocated memory is still 109.1MB. Free memory was 73.0MB in the beginning and 71.5MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-19 07:08:30,582 INFO L158 Benchmark]: RCFGBuilder took 782.44ms. Allocated memory was 109.1MB in the beginning and 132.1MB in the end (delta: 23.1MB). Free memory was 71.5MB in the beginning and 103.4MB in the end (delta: -31.9MB). Peak memory consumption was 30.1MB. Max. memory is 16.1GB. [2022-11-19 07:08:30,582 INFO L158 Benchmark]: TraceAbstraction took 53456.60ms. Allocated memory was 132.1MB in the beginning and 539.0MB in the end (delta: 406.8MB). Free memory was 102.7MB in the beginning and 296.9MB in the end (delta: -194.2MB). Peak memory consumption was 324.8MB. Max. memory is 16.1GB. [2022-11-19 07:08:30,583 INFO L158 Benchmark]: Witness Printer took 77.73ms. Allocated memory is still 539.0MB. Free memory was 296.9MB in the beginning and 291.7MB in the end (delta: 5.2MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-19 07:08:30,585 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.26ms. Allocated memory is still 109.1MB. Free memory is still 61.4MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 615.47ms. Allocated memory is still 109.1MB. Free memory was 78.4MB in the beginning and 75.3MB in the end (delta: 3.1MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 75.64ms. Allocated memory is still 109.1MB. Free memory was 75.3MB in the beginning and 73.0MB in the end (delta: 2.3MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 51.63ms. Allocated memory is still 109.1MB. Free memory was 73.0MB in the beginning and 71.5MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 782.44ms. Allocated memory was 109.1MB in the beginning and 132.1MB in the end (delta: 23.1MB). Free memory was 71.5MB in the beginning and 103.4MB in the end (delta: -31.9MB). Peak memory consumption was 30.1MB. Max. memory is 16.1GB. * TraceAbstraction took 53456.60ms. Allocated memory was 132.1MB in the beginning and 539.0MB in the end (delta: 406.8MB). Free memory was 102.7MB in the beginning and 296.9MB in the end (delta: -194.2MB). Peak memory consumption was 324.8MB. Max. memory is 16.1GB. * Witness Printer took 77.73ms. Allocated memory is still 539.0MB. Free memory was 296.9MB in the beginning and 291.7MB in the end (delta: 5.2MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 993]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 58 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 53.4s, OverallIterations: 11, TraceHistogramMax: 7, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 7.6s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 7.1s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2615 SdHoareTripleChecker+Valid, 3.5s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2585 mSDsluCounter, 2029 SdHoareTripleChecker+Invalid, 2.8s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1480 mSDsCounter, 1401 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3993 IncrementalHoareTripleChecker+Invalid, 5394 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1401 mSolverCounterUnsat, 549 mSDtfsCounter, 3993 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1210 GetRequests, 885 SyntacticMatches, 16 SemanticMatches, 309 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 9983 ImplicationChecksByTransitivity, 22.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=846occurred in iteration=10, InterpolantAutomatonStates: 141, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.5s AutomataMinimizationTime, 11 MinimizatonAttempts, 399 StatesRemovedByMinimization, 7 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 34 LocationsWithAnnotation, 1772 PreInvPairs, 1883 NumberOfFragments, 3121 HoareAnnotationTreeSize, 1772 FomulaSimplifications, 4862 FormulaSimplificationTreeSizeReduction, 0.6s HoareSimplificationTime, 34 FomulaSimplificationsInter, 23875 FormulaSimplificationTreeSizeReductionInter, 6.4s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 8.0s InterpolantComputationTime, 1003 NumberOfCodeBlocks, 1003 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 1291 ConstructedInterpolants, 0 QuantifiedInterpolants, 4447 SizeOfPredicates, 43 NumberOfNonLiveVariables, 1717 ConjunctsInSsa, 122 ConjunctsInUnsatCore, 18 InterpolantComputations, 8 PerfectInterpolantSequences, 938/1233 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 319]: Loop Invariant Derived loop invariant: (((((((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methaneLevelCritical == 1) && \old(waterLevel) == waterLevel) && tmp == methaneLevelCritical)) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1) && tmp == 0)) || !(methaneLevelCritical == 0))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || (((pumpRunning == 0 && tmp == 1) && waterLevel == 1) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methaneLevelCritical == 1) && \old(waterLevel) == waterLevel) && tmp == methaneLevelCritical))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || ((\old(waterLevel) == waterLevel && tmp == methaneLevelCritical) && pumpRunning == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || (methAndRunningLastTime == 0 && tmp == 0)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || ((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methaneLevelCritical == 1) && waterLevel == 1) && tmp == methaneLevelCritical)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || ((pumpRunning == 0 && tmp == 1) && waterLevel == 1)) || !(\old(waterLevel) == 2)) - InvariantResult [Line: 567]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 211]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 346]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1)) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) && (((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1)) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || ((methAndRunningLastTime == 0 && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && \old(waterLevel) == waterLevel)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2))) && ((((((pumpRunning == \old(pumpRunning) && methAndRunningLastTime == 0) && \old(waterLevel) == waterLevel) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) - InvariantResult [Line: 404]: Loop Invariant Derived loop invariant: (((((((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1)) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == 1) && waterLevel == 1)) || (((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && waterLevel <= \old(waterLevel)) && \old(waterLevel) <= waterLevel)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && waterLevel == 1)) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || (((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && waterLevel <= \old(waterLevel)) && \old(waterLevel) <= waterLevel)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || ((methAndRunningLastTime == 0 && \old(waterLevel) == waterLevel) && pumpRunning == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && waterLevel == 1)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) - InvariantResult [Line: 311]: Loop Invariant Derived loop invariant: (((((((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || (((((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && (tmp___0 == 0 || pumpRunning == tmp___0)) && waterLevel == 1) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && (tmp___0 == 0 || pumpRunning == tmp___0)) && \old(waterLevel) == waterLevel) && tmp == methaneLevelCritical)) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && (tmp___0 == 0 || pumpRunning == tmp___0)) && waterLevel == 1) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel == 1) && tmp == 0)) || !(methaneLevelCritical == 0))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || ((((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 1) && waterLevel == 1) && tmp == 0)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((((pumpRunning == \old(pumpRunning) && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 1) && (tmp___0 == 0 || pumpRunning == tmp___0)) && \old(waterLevel) == waterLevel) && tmp == methaneLevelCritical))) && (((((!(\old(pumpRunning) == 0) || ((((methAndRunningLastTime == 0 && waterLevel <= \old(waterLevel)) && \old(waterLevel) <= waterLevel) && tmp == methaneLevelCritical) && pumpRunning == 1)) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2)) - InvariantResult [Line: 286]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 412]: Loop Invariant Derived loop invariant: ((((((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) || (((methAndRunningLastTime == 0 && tmp == 1) && waterLevel == 1) && pumpRunning == 1)) && ((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((((pumpRunning == \old(pumpRunning) && methAndRunningLastTime == 0) && !(pumpRunning == 0)) && tmp == 1) && waterLevel == 1))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2)) - InvariantResult [Line: 408]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= \old(waterLevel)) && waterLevel == 1)) || !(methaneLevelCritical == 0)) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && waterLevel <= \old(waterLevel)) && waterLevel == 1)) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1)))) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2))) && (((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) || ((methAndRunningLastTime == 0 && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1))) && pumpRunning == 1))) && ((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == \old(pumpRunning) && methAndRunningLastTime == 0) && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1)))) - InvariantResult [Line: 468]: Loop Invariant Derived loop invariant: ((((((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) && (((((((aux-isMethaneLevelCritical()-aux == methaneLevelCritical && pumpRunning == 0) && tmp == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || !(2 == waterLevel)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0))) && ((((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && (((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && aux-isMethaneLevelCritical()-aux == 1) && tmp == 1)) || !(1 == systemActive)) || !(2 == waterLevel)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0)) - InvariantResult [Line: 993]: Loop Invariant Derived loop invariant: (((((((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((!(\old(methAndRunningLastTime) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(\old(waterLevel) == 2))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(\old(waterLevel) == 2)) - InvariantResult [Line: 568]: Loop Invariant Derived loop invariant: ((((((((tmp == systemActive && methAndRunningLastTime == 0) && 2 == waterLevel) && methaneLevelCritical == 0) && 1 == systemActive) && splverifierCounter == 0) && pumpRunning == 1) || ((((((tmp == systemActive && pumpRunning == 0) && methAndRunningLastTime == 0) && 2 == waterLevel) && 1 == systemActive) && methaneLevelCritical == 1) && splverifierCounter == 0)) || ((((((tmp == systemActive && pumpRunning == 0) && methAndRunningLastTime == 0) && 1 == systemActive) && methaneLevelCritical == 1) && splverifierCounter == 0) && waterLevel == 1)) || ((((((tmp == systemActive && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 0) && 1 == systemActive) && splverifierCounter == 0) && waterLevel == 1) - InvariantResult [Line: 558]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 201]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 382]: Loop Invariant Derived loop invariant: (((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(2 == waterLevel)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0)) && (((((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(2 == waterLevel)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0))) && (((((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) - InvariantResult [Line: 286]: Loop Invariant Derived loop invariant: ((((tmp == systemActive && pumpRunning == 0) && methAndRunningLastTime == 0) && methaneLevelCritical == 0) && 1 == systemActive) && waterLevel == 1 RESULT: Ultimate proved your program to be correct! [2022-11-19 07:08:30,628 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_82e869db-d4ea-453e-946a-690154c49ae5/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE