./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 8393723b Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 68cd47586ea836a40d34f69dc7bca714ffc0af5c5bf2f7fbd8cfbbd6f1019685 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-8393723 [2022-11-19 08:01:52,567 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-19 08:01:52,570 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-19 08:01:52,615 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-19 08:01:52,618 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-19 08:01:52,619 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-19 08:01:52,620 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-19 08:01:52,622 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-19 08:01:52,624 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-19 08:01:52,625 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-19 08:01:52,627 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-19 08:01:52,628 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-19 08:01:52,629 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-19 08:01:52,630 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-19 08:01:52,631 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-19 08:01:52,632 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-19 08:01:52,633 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-19 08:01:52,634 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-19 08:01:52,636 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-19 08:01:52,638 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-19 08:01:52,639 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-19 08:01:52,644 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-19 08:01:52,646 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-19 08:01:52,647 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-19 08:01:52,652 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-19 08:01:52,660 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-19 08:01:52,660 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-19 08:01:52,661 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-19 08:01:52,662 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-19 08:01:52,663 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-19 08:01:52,663 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-19 08:01:52,664 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-19 08:01:52,667 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-19 08:01:52,668 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-19 08:01:52,670 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-19 08:01:52,670 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-19 08:01:52,672 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-19 08:01:52,672 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-19 08:01:52,673 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-19 08:01:52,674 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-19 08:01:52,674 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-19 08:01:52,675 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-19 08:01:52,720 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-19 08:01:52,721 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-19 08:01:52,721 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-19 08:01:52,722 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-19 08:01:52,722 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-19 08:01:52,723 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-19 08:01:52,723 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-19 08:01:52,723 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-19 08:01:52,724 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-19 08:01:52,724 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-19 08:01:52,724 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-19 08:01:52,724 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-19 08:01:52,725 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-19 08:01:52,725 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-19 08:01:52,725 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-19 08:01:52,726 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-19 08:01:52,726 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-19 08:01:52,726 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-19 08:01:52,727 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-19 08:01:52,727 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-19 08:01:52,728 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-19 08:01:52,728 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-19 08:01:52,728 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-19 08:01:52,728 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-19 08:01:52,729 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-19 08:01:52,729 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-19 08:01:52,729 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-19 08:01:52,730 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-19 08:01:52,730 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-19 08:01:52,730 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-19 08:01:52,730 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-19 08:01:52,731 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-19 08:01:52,731 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-19 08:01:52,731 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-19 08:01:52,732 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-19 08:01:52,732 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-19 08:01:52,732 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-19 08:01:52,732 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-19 08:01:52,733 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-19 08:01:52,733 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-19 08:01:52,733 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-19 08:01:52,733 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 68cd47586ea836a40d34f69dc7bca714ffc0af5c5bf2f7fbd8cfbbd6f1019685 [2022-11-19 08:01:53,048 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-19 08:01:53,086 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-19 08:01:53,089 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-19 08:01:53,091 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-19 08:01:53,092 INFO L275 PluginConnector]: CDTParser initialized [2022-11-19 08:01:53,093 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/../../sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c [2022-11-19 08:01:53,187 INFO L220 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/data/4e4d6400b/c5a72c93b4f3486bb2c5bc94ce63f825/FLAG6c27f584b [2022-11-19 08:01:53,764 INFO L306 CDTParser]: Found 1 translation units. [2022-11-19 08:01:53,771 INFO L160 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c [2022-11-19 08:01:53,787 INFO L349 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/data/4e4d6400b/c5a72c93b4f3486bb2c5bc94ce63f825/FLAG6c27f584b [2022-11-19 08:01:54,072 INFO L357 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/data/4e4d6400b/c5a72c93b4f3486bb2c5bc94ce63f825 [2022-11-19 08:01:54,074 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-19 08:01:54,076 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-19 08:01:54,077 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-19 08:01:54,078 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-19 08:01:54,082 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-19 08:01:54,083 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,084 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@5ed59aa6 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54, skipping insertion in model container [2022-11-19 08:01:54,084 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,093 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-19 08:01:54,134 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-19 08:01:54,436 WARN L234 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c[9171,9184] [2022-11-19 08:01:54,511 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-19 08:01:54,520 INFO L203 MainTranslator]: Completed pre-run [2022-11-19 08:01:54,556 WARN L234 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/sv-benchmarks/c/product-lines/minepump_spec4_product59.cil.c[9171,9184] [2022-11-19 08:01:54,590 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-19 08:01:54,609 INFO L208 MainTranslator]: Completed translation [2022-11-19 08:01:54,610 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54 WrapperNode [2022-11-19 08:01:54,610 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-19 08:01:54,612 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-19 08:01:54,612 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-19 08:01:54,612 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-19 08:01:54,622 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,641 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,676 INFO L138 Inliner]: procedures = 57, calls = 102, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 227 [2022-11-19 08:01:54,676 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-19 08:01:54,677 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-19 08:01:54,677 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-19 08:01:54,677 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-19 08:01:54,687 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,687 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,690 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,690 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,694 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,699 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,700 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,702 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,704 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-19 08:01:54,705 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-19 08:01:54,705 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-19 08:01:54,705 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-19 08:01:54,706 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (1/1) ... [2022-11-19 08:01:54,713 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-19 08:01:54,735 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:01:54,761 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-19 08:01:54,767 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-19 08:01:54,807 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-19 08:01:54,808 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-19 08:01:54,808 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-19 08:01:54,808 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-19 08:01:54,808 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-19 08:01:54,808 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-19 08:01:54,809 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-19 08:01:54,809 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 08:01:54,809 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 08:01:54,809 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-19 08:01:54,809 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-19 08:01:54,809 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-19 08:01:54,810 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-19 08:01:54,810 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-19 08:01:54,810 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-19 08:01:54,810 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-19 08:01:54,810 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-19 08:01:54,810 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-19 08:01:54,902 INFO L235 CfgBuilder]: Building ICFG [2022-11-19 08:01:54,905 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-19 08:01:55,251 INFO L276 CfgBuilder]: Performing block encoding [2022-11-19 08:01:55,449 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-19 08:01:55,462 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-19 08:01:55,465 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 08:01:55 BoogieIcfgContainer [2022-11-19 08:01:55,466 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-19 08:01:55,468 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-19 08:01:55,468 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-19 08:01:55,481 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-19 08:01:55,481 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 19.11 08:01:54" (1/3) ... [2022-11-19 08:01:55,482 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5811530c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 19.11 08:01:55, skipping insertion in model container [2022-11-19 08:01:55,482 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 19.11 08:01:54" (2/3) ... [2022-11-19 08:01:55,483 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5811530c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 19.11 08:01:55, skipping insertion in model container [2022-11-19 08:01:55,483 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 08:01:55" (3/3) ... [2022-11-19 08:01:55,485 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product59.cil.c [2022-11-19 08:01:55,505 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-19 08:01:55,506 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-19 08:01:55,564 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-19 08:01:55,572 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@61088e60, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-19 08:01:55,573 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-19 08:01:55,577 INFO L276 IsEmpty]: Start isEmpty. Operand has 59 states, 38 states have (on average 1.4736842105263157) internal successors, (56), 47 states have internal predecessors, (56), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 9 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-19 08:01:55,588 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2022-11-19 08:01:55,588 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:01:55,589 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:01:55,590 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:01:55,596 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:01:55,596 INFO L85 PathProgramCache]: Analyzing trace with hash 1369029533, now seen corresponding path program 1 times [2022-11-19 08:01:55,608 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:01:55,608 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1392772236] [2022-11-19 08:01:55,609 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:01:55,609 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:01:55,762 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:01:55,832 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:01:55,833 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:01:55,833 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1392772236] [2022-11-19 08:01:55,834 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1392772236] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:01:55,834 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:01:55,835 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-19 08:01:55,837 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1811741655] [2022-11-19 08:01:55,838 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:01:55,842 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-19 08:01:55,843 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:01:55,882 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-19 08:01:55,884 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-19 08:01:55,886 INFO L87 Difference]: Start difference. First operand has 59 states, 38 states have (on average 1.4736842105263157) internal successors, (56), 47 states have internal predecessors, (56), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 9 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:01:56,039 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:01:56,048 INFO L93 Difference]: Finished difference Result 116 states and 161 transitions. [2022-11-19 08:01:56,050 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-19 08:01:56,051 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 12 [2022-11-19 08:01:56,052 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:01:56,071 INFO L225 Difference]: With dead ends: 116 [2022-11-19 08:01:56,072 INFO L226 Difference]: Without dead ends: 54 [2022-11-19 08:01:56,075 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-19 08:01:56,080 INFO L413 NwaCegarLoop]: 60 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 60 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 08:01:56,081 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 60 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 08:01:56,097 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 54 states. [2022-11-19 08:01:56,122 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 54 to 54. [2022-11-19 08:01:56,123 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 54 states, 35 states have (on average 1.3714285714285714) internal successors, (48), 43 states have internal predecessors, (48), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-19 08:01:56,127 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 54 states to 54 states and 71 transitions. [2022-11-19 08:01:56,129 INFO L78 Accepts]: Start accepts. Automaton has 54 states and 71 transitions. Word has length 12 [2022-11-19 08:01:56,129 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:01:56,129 INFO L495 AbstractCegarLoop]: Abstraction has 54 states and 71 transitions. [2022-11-19 08:01:56,130 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:01:56,130 INFO L276 IsEmpty]: Start isEmpty. Operand 54 states and 71 transitions. [2022-11-19 08:01:56,131 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2022-11-19 08:01:56,131 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:01:56,132 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:01:56,132 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-19 08:01:56,133 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:01:56,133 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:01:56,133 INFO L85 PathProgramCache]: Analyzing trace with hash -410986028, now seen corresponding path program 1 times [2022-11-19 08:01:56,134 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:01:56,134 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1619734037] [2022-11-19 08:01:56,134 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:01:56,135 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:01:56,155 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:01:56,234 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:01:56,234 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:01:56,234 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1619734037] [2022-11-19 08:01:56,235 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1619734037] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:01:56,235 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:01:56,235 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-19 08:01:56,236 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [595944495] [2022-11-19 08:01:56,236 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:01:56,237 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-19 08:01:56,238 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:01:56,238 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-19 08:01:56,239 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 08:01:56,239 INFO L87 Difference]: Start difference. First operand 54 states and 71 transitions. Second operand has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:01:56,290 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:01:56,291 INFO L93 Difference]: Finished difference Result 80 states and 104 transitions. [2022-11-19 08:01:56,291 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-19 08:01:56,292 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 13 [2022-11-19 08:01:56,292 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:01:56,293 INFO L225 Difference]: With dead ends: 80 [2022-11-19 08:01:56,293 INFO L226 Difference]: Without dead ends: 46 [2022-11-19 08:01:56,294 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-19 08:01:56,296 INFO L413 NwaCegarLoop]: 46 mSDtfsCounter, 14 mSDsluCounter, 29 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 75 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-19 08:01:56,297 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 75 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-19 08:01:56,298 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 46 states. [2022-11-19 08:01:56,305 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 46 to 46. [2022-11-19 08:01:56,306 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 46 states, 30 states have (on average 1.4) internal successors, (42), 38 states have internal predecessors, (42), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 6 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-19 08:01:56,308 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 46 states to 46 states and 60 transitions. [2022-11-19 08:01:56,308 INFO L78 Accepts]: Start accepts. Automaton has 46 states and 60 transitions. Word has length 13 [2022-11-19 08:01:56,308 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:01:56,309 INFO L495 AbstractCegarLoop]: Abstraction has 46 states and 60 transitions. [2022-11-19 08:01:56,309 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:01:56,309 INFO L276 IsEmpty]: Start isEmpty. Operand 46 states and 60 transitions. [2022-11-19 08:01:56,310 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2022-11-19 08:01:56,310 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:01:56,311 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:01:56,311 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-19 08:01:56,311 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:01:56,312 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:01:56,312 INFO L85 PathProgramCache]: Analyzing trace with hash -1528647160, now seen corresponding path program 1 times [2022-11-19 08:01:56,313 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:01:56,313 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [825722406] [2022-11-19 08:01:56,313 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:01:56,314 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:01:56,335 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:01:56,503 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:01:56,504 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:01:56,504 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [825722406] [2022-11-19 08:01:56,505 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [825722406] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:01:56,505 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:01:56,505 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-19 08:01:56,505 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1241646542] [2022-11-19 08:01:56,506 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:01:56,506 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-19 08:01:56,507 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:01:56,507 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-19 08:01:56,508 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 08:01:56,508 INFO L87 Difference]: Start difference. First operand 46 states and 60 transitions. Second operand has 4 states, 4 states have (on average 3.75) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:01:56,700 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:01:56,700 INFO L93 Difference]: Finished difference Result 133 states and 180 transitions. [2022-11-19 08:01:56,702 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-19 08:01:56,702 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 3.75) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 16 [2022-11-19 08:01:56,703 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:01:56,704 INFO L225 Difference]: With dead ends: 133 [2022-11-19 08:01:56,704 INFO L226 Difference]: Without dead ends: 89 [2022-11-19 08:01:56,705 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-19 08:01:56,710 INFO L413 NwaCegarLoop]: 54 mSDtfsCounter, 74 mSDsluCounter, 72 mSDsCounter, 0 mSdLazyCounter, 69 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 74 SdHoareTripleChecker+Valid, 126 SdHoareTripleChecker+Invalid, 78 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 69 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 08:01:56,711 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [74 Valid, 126 Invalid, 78 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 69 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 08:01:56,712 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 89 states. [2022-11-19 08:01:56,741 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 89 to 72. [2022-11-19 08:01:56,741 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 72 states, 48 states have (on average 1.3958333333333333) internal successors, (67), 59 states have internal predecessors, (67), 13 states have call successors, (13), 10 states have call predecessors, (13), 10 states have return successors, (14), 9 states have call predecessors, (14), 13 states have call successors, (14) [2022-11-19 08:01:56,749 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 72 states to 72 states and 94 transitions. [2022-11-19 08:01:56,750 INFO L78 Accepts]: Start accepts. Automaton has 72 states and 94 transitions. Word has length 16 [2022-11-19 08:01:56,750 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:01:56,750 INFO L495 AbstractCegarLoop]: Abstraction has 72 states and 94 transitions. [2022-11-19 08:01:56,751 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 3.75) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:01:56,751 INFO L276 IsEmpty]: Start isEmpty. Operand 72 states and 94 transitions. [2022-11-19 08:01:56,753 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 20 [2022-11-19 08:01:56,753 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:01:56,753 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:01:56,753 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-19 08:01:56,754 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:01:56,755 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:01:56,755 INFO L85 PathProgramCache]: Analyzing trace with hash 1293336084, now seen corresponding path program 1 times [2022-11-19 08:01:56,755 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:01:56,755 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [313637880] [2022-11-19 08:01:56,756 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:01:56,758 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:01:56,811 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:01:57,066 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:01:57,067 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:01:57,067 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [313637880] [2022-11-19 08:01:57,067 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [313637880] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:01:57,068 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:01:57,068 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-19 08:01:57,068 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [158021199] [2022-11-19 08:01:57,069 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:01:57,071 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-19 08:01:57,072 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:01:57,073 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-19 08:01:57,073 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-11-19 08:01:57,074 INFO L87 Difference]: Start difference. First operand 72 states and 94 transitions. Second operand has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:01:57,284 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:01:57,285 INFO L93 Difference]: Finished difference Result 222 states and 298 transitions. [2022-11-19 08:01:57,285 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-11-19 08:01:57,285 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19 [2022-11-19 08:01:57,286 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:01:57,295 INFO L225 Difference]: With dead ends: 222 [2022-11-19 08:01:57,295 INFO L226 Difference]: Without dead ends: 152 [2022-11-19 08:01:57,299 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2022-11-19 08:01:57,303 INFO L413 NwaCegarLoop]: 56 mSDtfsCounter, 66 mSDsluCounter, 160 mSDsCounter, 0 mSdLazyCounter, 82 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 66 SdHoareTripleChecker+Valid, 216 SdHoareTripleChecker+Invalid, 92 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 82 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 08:01:57,308 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [66 Valid, 216 Invalid, 92 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 82 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 08:01:57,309 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 152 states. [2022-11-19 08:01:57,344 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 152 to 143. [2022-11-19 08:01:57,345 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 143 states, 101 states have (on average 1.3366336633663367) internal successors, (135), 116 states have internal predecessors, (135), 21 states have call successors, (21), 18 states have call predecessors, (21), 20 states have return successors, (26), 19 states have call predecessors, (26), 21 states have call successors, (26) [2022-11-19 08:01:57,347 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 143 states to 143 states and 182 transitions. [2022-11-19 08:01:57,347 INFO L78 Accepts]: Start accepts. Automaton has 143 states and 182 transitions. Word has length 19 [2022-11-19 08:01:57,348 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:01:57,348 INFO L495 AbstractCegarLoop]: Abstraction has 143 states and 182 transitions. [2022-11-19 08:01:57,348 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:01:57,348 INFO L276 IsEmpty]: Start isEmpty. Operand 143 states and 182 transitions. [2022-11-19 08:01:57,350 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2022-11-19 08:01:57,350 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:01:57,355 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:01:57,356 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-19 08:01:57,356 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:01:57,357 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:01:57,357 INFO L85 PathProgramCache]: Analyzing trace with hash -1362301905, now seen corresponding path program 1 times [2022-11-19 08:01:57,357 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:01:57,358 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1502914338] [2022-11-19 08:01:57,358 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:01:57,358 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:01:57,399 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:01:57,860 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:01:57,860 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:01:57,860 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1502914338] [2022-11-19 08:01:57,861 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1502914338] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:01:57,861 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:01:57,861 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-11-19 08:01:57,861 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1103099184] [2022-11-19 08:01:57,861 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:01:57,862 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-11-19 08:01:57,862 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:01:57,862 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-11-19 08:01:57,863 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-11-19 08:01:57,863 INFO L87 Difference]: Start difference. First operand 143 states and 182 transitions. Second operand has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:01:58,441 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:01:58,442 INFO L93 Difference]: Finished difference Result 396 states and 525 transitions. [2022-11-19 08:01:58,444 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-11-19 08:01:58,444 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 22 [2022-11-19 08:01:58,445 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:01:58,457 INFO L225 Difference]: With dead ends: 396 [2022-11-19 08:01:58,459 INFO L226 Difference]: Without dead ends: 326 [2022-11-19 08:01:58,462 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=86, Unknown=0, NotChecked=0, Total=132 [2022-11-19 08:01:58,464 INFO L413 NwaCegarLoop]: 77 mSDtfsCounter, 202 mSDsluCounter, 207 mSDsCounter, 0 mSdLazyCounter, 342 mSolverCounterSat, 70 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 214 SdHoareTripleChecker+Valid, 284 SdHoareTripleChecker+Invalid, 412 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 70 IncrementalHoareTripleChecker+Valid, 342 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-19 08:01:58,466 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [214 Valid, 284 Invalid, 412 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [70 Valid, 342 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-19 08:01:58,470 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 326 states. [2022-11-19 08:01:58,553 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 326 to 291. [2022-11-19 08:01:58,556 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 291 states, 207 states have (on average 1.3043478260869565) internal successors, (270), 234 states have internal predecessors, (270), 42 states have call successors, (42), 36 states have call predecessors, (42), 41 states have return successors, (55), 40 states have call predecessors, (55), 42 states have call successors, (55) [2022-11-19 08:01:58,563 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 291 states to 291 states and 367 transitions. [2022-11-19 08:01:58,564 INFO L78 Accepts]: Start accepts. Automaton has 291 states and 367 transitions. Word has length 22 [2022-11-19 08:01:58,565 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:01:58,565 INFO L495 AbstractCegarLoop]: Abstraction has 291 states and 367 transitions. [2022-11-19 08:01:58,566 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-19 08:01:58,566 INFO L276 IsEmpty]: Start isEmpty. Operand 291 states and 367 transitions. [2022-11-19 08:01:58,576 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2022-11-19 08:01:58,579 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:01:58,580 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:01:58,580 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-19 08:01:58,581 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:01:58,581 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:01:58,581 INFO L85 PathProgramCache]: Analyzing trace with hash 1017599571, now seen corresponding path program 1 times [2022-11-19 08:01:58,582 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:01:58,582 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [221245436] [2022-11-19 08:01:58,582 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:01:58,582 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:01:58,607 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:01:58,679 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:01:58,680 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:01:58,680 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [221245436] [2022-11-19 08:01:58,680 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [221245436] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:01:58,681 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:01:58,681 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-19 08:01:58,681 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1278211294] [2022-11-19 08:01:58,681 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:01:58,683 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-19 08:01:58,683 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:01:58,684 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-19 08:01:58,684 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 08:01:58,684 INFO L87 Difference]: Start difference. First operand 291 states and 367 transitions. Second operand has 4 states, 3 states have (on average 13.333333333333334) internal successors, (40), 4 states have internal predecessors, (40), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-19 08:01:58,833 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:01:58,833 INFO L93 Difference]: Finished difference Result 554 states and 699 transitions. [2022-11-19 08:01:58,834 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-19 08:01:58,834 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 13.333333333333334) internal successors, (40), 4 states have internal predecessors, (40), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 47 [2022-11-19 08:01:58,837 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:01:58,841 INFO L225 Difference]: With dead ends: 554 [2022-11-19 08:01:58,841 INFO L226 Difference]: Without dead ends: 214 [2022-11-19 08:01:58,843 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-19 08:01:58,848 INFO L413 NwaCegarLoop]: 69 mSDtfsCounter, 84 mSDsluCounter, 43 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 84 SdHoareTripleChecker+Valid, 112 SdHoareTripleChecker+Invalid, 78 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 08:01:58,851 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [84 Valid, 112 Invalid, 78 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 08:01:58,852 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 214 states. [2022-11-19 08:01:58,895 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 214 to 196. [2022-11-19 08:01:58,896 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 196 states, 138 states have (on average 1.2753623188405796) internal successors, (176), 157 states have internal predecessors, (176), 28 states have call successors, (28), 25 states have call predecessors, (28), 29 states have return successors, (32), 28 states have call predecessors, (32), 28 states have call successors, (32) [2022-11-19 08:01:58,898 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 196 states to 196 states and 236 transitions. [2022-11-19 08:01:58,898 INFO L78 Accepts]: Start accepts. Automaton has 196 states and 236 transitions. Word has length 47 [2022-11-19 08:01:58,899 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:01:58,899 INFO L495 AbstractCegarLoop]: Abstraction has 196 states and 236 transitions. [2022-11-19 08:01:58,899 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 13.333333333333334) internal successors, (40), 4 states have internal predecessors, (40), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-19 08:01:58,899 INFO L276 IsEmpty]: Start isEmpty. Operand 196 states and 236 transitions. [2022-11-19 08:01:58,903 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2022-11-19 08:01:58,904 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:01:58,904 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:01:58,905 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-19 08:01:58,905 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:01:58,905 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:01:58,906 INFO L85 PathProgramCache]: Analyzing trace with hash 2080281671, now seen corresponding path program 1 times [2022-11-19 08:01:58,906 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:01:58,906 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1472084150] [2022-11-19 08:01:58,906 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:01:58,907 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:01:58,928 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:01:59,357 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:01:59,358 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:01:59,358 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1472084150] [2022-11-19 08:01:59,358 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1472084150] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:01:59,358 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-19 08:01:59,358 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2022-11-19 08:01:59,358 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [707276007] [2022-11-19 08:01:59,359 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:01:59,359 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-19 08:01:59,359 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:01:59,360 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-19 08:01:59,360 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=23, Invalid=49, Unknown=0, NotChecked=0, Total=72 [2022-11-19 08:01:59,379 INFO L87 Difference]: Start difference. First operand 196 states and 236 transitions. Second operand has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-19 08:01:59,746 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:01:59,747 INFO L93 Difference]: Finished difference Result 321 states and 399 transitions. [2022-11-19 08:01:59,747 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-11-19 08:01:59,748 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 44 [2022-11-19 08:01:59,748 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:01:59,749 INFO L225 Difference]: With dead ends: 321 [2022-11-19 08:01:59,750 INFO L226 Difference]: Without dead ends: 209 [2022-11-19 08:01:59,750 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=49, Invalid=107, Unknown=0, NotChecked=0, Total=156 [2022-11-19 08:01:59,755 INFO L413 NwaCegarLoop]: 58 mSDtfsCounter, 105 mSDsluCounter, 160 mSDsCounter, 0 mSdLazyCounter, 292 mSolverCounterSat, 44 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 115 SdHoareTripleChecker+Valid, 218 SdHoareTripleChecker+Invalid, 336 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 44 IncrementalHoareTripleChecker+Valid, 292 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-19 08:01:59,755 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [115 Valid, 218 Invalid, 336 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [44 Valid, 292 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-19 08:01:59,756 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 209 states. [2022-11-19 08:01:59,795 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 209 to 173. [2022-11-19 08:01:59,797 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 173 states, 121 states have (on average 1.28099173553719) internal successors, (155), 137 states have internal predecessors, (155), 25 states have call successors, (25), 22 states have call predecessors, (25), 26 states have return successors, (30), 25 states have call predecessors, (30), 25 states have call successors, (30) [2022-11-19 08:01:59,799 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 173 states to 173 states and 210 transitions. [2022-11-19 08:01:59,799 INFO L78 Accepts]: Start accepts. Automaton has 173 states and 210 transitions. Word has length 44 [2022-11-19 08:01:59,801 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:01:59,801 INFO L495 AbstractCegarLoop]: Abstraction has 173 states and 210 transitions. [2022-11-19 08:01:59,801 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-19 08:01:59,801 INFO L276 IsEmpty]: Start isEmpty. Operand 173 states and 210 transitions. [2022-11-19 08:01:59,802 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2022-11-19 08:01:59,802 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:01:59,803 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:01:59,803 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-19 08:01:59,803 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:01:59,804 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:01:59,804 INFO L85 PathProgramCache]: Analyzing trace with hash -1847334260, now seen corresponding path program 1 times [2022-11-19 08:01:59,804 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:01:59,804 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [863206706] [2022-11-19 08:01:59,804 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:01:59,804 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:01:59,839 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:02:00,359 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 0 proven. 14 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-19 08:02:00,359 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:02:00,360 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [863206706] [2022-11-19 08:02:00,360 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [863206706] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 08:02:00,360 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1336454152] [2022-11-19 08:02:00,362 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:02:00,363 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:02:00,363 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:02:00,370 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 08:02:00,378 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-19 08:02:00,486 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:02:00,490 INFO L263 TraceCheckSpWp]: Trace formula consists of 266 conjuncts, 28 conjunts are in the unsatisfiable core [2022-11-19 08:02:00,498 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 08:02:00,959 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 0 proven. 9 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2022-11-19 08:02:00,959 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-19 08:02:01,733 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 1 proven. 8 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2022-11-19 08:02:01,734 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1336454152] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-19 08:02:01,734 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1831164117] [2022-11-19 08:02:01,759 INFO L159 IcfgInterpreter]: Started Sifa with 34 locations of interest [2022-11-19 08:02:01,759 INFO L166 IcfgInterpreter]: Building call graph [2022-11-19 08:02:01,764 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-19 08:02:01,771 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-19 08:02:01,772 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-19 08:02:06,332 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 50 for LOIs [2022-11-19 08:02:06,344 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 45 for LOIs [2022-11-19 08:02:06,738 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2022-11-19 08:02:06,777 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 30 for LOIs [2022-11-19 08:02:06,780 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-19 08:02:11,936 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4695#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (<= 0 |old(~pumpRunning~0)|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (<= ~pumpRunning~0 1) (= ~methaneLevelCritical~0 0) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (<= 0 ~pumpRunning~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-19 08:02:11,936 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-19 08:02:11,936 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-19 08:02:11,936 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 9, 11] total 28 [2022-11-19 08:02:11,937 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1690452789] [2022-11-19 08:02:11,937 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-19 08:02:11,938 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2022-11-19 08:02:11,938 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:02:11,938 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2022-11-19 08:02:11,940 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=307, Invalid=2663, Unknown=0, NotChecked=0, Total=2970 [2022-11-19 08:02:11,940 INFO L87 Difference]: Start difference. First operand 173 states and 210 transitions. Second operand has 28 states, 25 states have (on average 3.72) internal successors, (93), 25 states have internal predecessors, (93), 12 states have call successors, (15), 10 states have call predecessors, (15), 8 states have return successors, (12), 10 states have call predecessors, (12), 11 states have call successors, (12) [2022-11-19 08:02:15,277 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:02:15,277 INFO L93 Difference]: Finished difference Result 595 states and 782 transitions. [2022-11-19 08:02:15,278 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 56 states. [2022-11-19 08:02:15,278 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 25 states have (on average 3.72) internal successors, (93), 25 states have internal predecessors, (93), 12 states have call successors, (15), 10 states have call predecessors, (15), 8 states have return successors, (12), 10 states have call predecessors, (12), 11 states have call successors, (12) Word has length 47 [2022-11-19 08:02:15,279 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:02:15,281 INFO L225 Difference]: With dead ends: 595 [2022-11-19 08:02:15,281 INFO L226 Difference]: Without dead ends: 444 [2022-11-19 08:02:15,286 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 204 GetRequests, 107 SyntacticMatches, 0 SemanticMatches, 97 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3504 ImplicationChecksByTransitivity, 7.5s TimeCoverageRelationStatistics Valid=1216, Invalid=8486, Unknown=0, NotChecked=0, Total=9702 [2022-11-19 08:02:15,287 INFO L413 NwaCegarLoop]: 85 mSDtfsCounter, 820 mSDsluCounter, 681 mSDsCounter, 0 mSdLazyCounter, 1344 mSolverCounterSat, 405 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 826 SdHoareTripleChecker+Valid, 766 SdHoareTripleChecker+Invalid, 1749 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 405 IncrementalHoareTripleChecker+Valid, 1344 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.3s IncrementalHoareTripleChecker+Time [2022-11-19 08:02:15,287 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [826 Valid, 766 Invalid, 1749 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [405 Valid, 1344 Invalid, 0 Unknown, 0 Unchecked, 1.3s Time] [2022-11-19 08:02:15,288 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 444 states. [2022-11-19 08:02:15,338 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 444 to 346. [2022-11-19 08:02:15,339 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 346 states, 246 states have (on average 1.2520325203252032) internal successors, (308), 271 states have internal predecessors, (308), 44 states have call successors, (44), 40 states have call predecessors, (44), 55 states have return successors, (67), 51 states have call predecessors, (67), 44 states have call successors, (67) [2022-11-19 08:02:15,341 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 346 states to 346 states and 419 transitions. [2022-11-19 08:02:15,342 INFO L78 Accepts]: Start accepts. Automaton has 346 states and 419 transitions. Word has length 47 [2022-11-19 08:02:15,342 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:02:15,342 INFO L495 AbstractCegarLoop]: Abstraction has 346 states and 419 transitions. [2022-11-19 08:02:15,342 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 28 states, 25 states have (on average 3.72) internal successors, (93), 25 states have internal predecessors, (93), 12 states have call successors, (15), 10 states have call predecessors, (15), 8 states have return successors, (12), 10 states have call predecessors, (12), 11 states have call successors, (12) [2022-11-19 08:02:15,343 INFO L276 IsEmpty]: Start isEmpty. Operand 346 states and 419 transitions. [2022-11-19 08:02:15,344 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2022-11-19 08:02:15,344 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:02:15,344 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:02:15,352 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-19 08:02:15,552 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable7 [2022-11-19 08:02:15,552 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:02:15,552 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:02:15,553 INFO L85 PathProgramCache]: Analyzing trace with hash 1675977768, now seen corresponding path program 1 times [2022-11-19 08:02:15,553 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:02:15,553 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [147886473] [2022-11-19 08:02:15,553 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:02:15,553 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:02:15,587 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:02:16,696 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 8 proven. 38 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2022-11-19 08:02:16,697 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:02:16,697 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [147886473] [2022-11-19 08:02:16,697 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [147886473] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 08:02:16,697 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1264852661] [2022-11-19 08:02:16,697 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:02:16,698 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:02:16,698 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:02:16,699 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 08:02:16,738 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-19 08:02:16,826 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:02:16,829 INFO L263 TraceCheckSpWp]: Trace formula consists of 342 conjuncts, 18 conjunts are in the unsatisfiable core [2022-11-19 08:02:16,832 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 08:02:16,923 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 38 proven. 0 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-11-19 08:02:16,924 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-19 08:02:16,924 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1264852661] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:02:16,924 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-19 08:02:16,924 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [18] total 20 [2022-11-19 08:02:16,924 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [239265757] [2022-11-19 08:02:16,925 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:02:16,925 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-19 08:02:16,925 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:02:16,925 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-19 08:02:16,926 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=60, Invalid=320, Unknown=0, NotChecked=0, Total=380 [2022-11-19 08:02:16,926 INFO L87 Difference]: Start difference. First operand 346 states and 419 transitions. Second operand has 5 states, 5 states have (on average 9.8) internal successors, (49), 5 states have internal predecessors, (49), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) [2022-11-19 08:02:17,198 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:02:17,199 INFO L93 Difference]: Finished difference Result 767 states and 960 transitions. [2022-11-19 08:02:17,201 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-11-19 08:02:17,201 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 9.8) internal successors, (49), 5 states have internal predecessors, (49), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) Word has length 72 [2022-11-19 08:02:17,201 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:02:17,204 INFO L225 Difference]: With dead ends: 767 [2022-11-19 08:02:17,204 INFO L226 Difference]: Without dead ends: 451 [2022-11-19 08:02:17,205 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 102 GetRequests, 80 SyntacticMatches, 0 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 153 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=81, Invalid=471, Unknown=0, NotChecked=0, Total=552 [2022-11-19 08:02:17,206 INFO L413 NwaCegarLoop]: 86 mSDtfsCounter, 66 mSDsluCounter, 179 mSDsCounter, 0 mSdLazyCounter, 137 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 265 SdHoareTripleChecker+Invalid, 145 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 137 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-19 08:02:17,206 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 265 Invalid, 145 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 137 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-19 08:02:17,207 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 451 states. [2022-11-19 08:02:17,284 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 451 to 421. [2022-11-19 08:02:17,285 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 421 states, 304 states have (on average 1.256578947368421) internal successors, (382), 332 states have internal predecessors, (382), 52 states have call successors, (52), 47 states have call predecessors, (52), 64 states have return successors, (81), 61 states have call predecessors, (81), 52 states have call successors, (81) [2022-11-19 08:02:17,288 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 421 states to 421 states and 515 transitions. [2022-11-19 08:02:17,288 INFO L78 Accepts]: Start accepts. Automaton has 421 states and 515 transitions. Word has length 72 [2022-11-19 08:02:17,288 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:02:17,289 INFO L495 AbstractCegarLoop]: Abstraction has 421 states and 515 transitions. [2022-11-19 08:02:17,289 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 9.8) internal successors, (49), 5 states have internal predecessors, (49), 3 states have call successors, (7), 3 states have call predecessors, (7), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) [2022-11-19 08:02:17,289 INFO L276 IsEmpty]: Start isEmpty. Operand 421 states and 515 transitions. [2022-11-19 08:02:17,291 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2022-11-19 08:02:17,291 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:02:17,291 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:02:17,304 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-19 08:02:17,498 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:02:17,498 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:02:17,499 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:02:17,499 INFO L85 PathProgramCache]: Analyzing trace with hash 1673814336, now seen corresponding path program 2 times [2022-11-19 08:02:17,499 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:02:17,499 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1656707004] [2022-11-19 08:02:17,499 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:02:17,500 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:02:17,523 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:02:18,422 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 53 proven. 40 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2022-11-19 08:02:18,422 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:02:18,422 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1656707004] [2022-11-19 08:02:18,423 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1656707004] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 08:02:18,425 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [618373805] [2022-11-19 08:02:18,425 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-19 08:02:18,425 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:02:18,426 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:02:18,427 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 08:02:18,454 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-19 08:02:18,532 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 1 check-sat command(s) [2022-11-19 08:02:18,533 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-19 08:02:18,534 INFO L263 TraceCheckSpWp]: Trace formula consists of 176 conjuncts, 9 conjunts are in the unsatisfiable core [2022-11-19 08:02:18,559 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 08:02:18,584 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 10 proven. 0 refuted. 0 times theorem prover too weak. 90 trivial. 0 not checked. [2022-11-19 08:02:18,584 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-19 08:02:18,584 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [618373805] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-19 08:02:18,584 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-19 08:02:18,585 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [19] total 20 [2022-11-19 08:02:18,585 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [302082722] [2022-11-19 08:02:18,585 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-19 08:02:18,585 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-19 08:02:18,586 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:02:18,586 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-19 08:02:18,587 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=70, Invalid=310, Unknown=0, NotChecked=0, Total=380 [2022-11-19 08:02:18,587 INFO L87 Difference]: Start difference. First operand 421 states and 515 transitions. Second operand has 4 states, 4 states have (on average 7.75) internal successors, (31), 4 states have internal predecessors, (31), 1 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) [2022-11-19 08:02:18,715 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:02:18,715 INFO L93 Difference]: Finished difference Result 661 states and 837 transitions. [2022-11-19 08:02:18,716 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-19 08:02:18,716 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 7.75) internal successors, (31), 4 states have internal predecessors, (31), 1 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) Word has length 89 [2022-11-19 08:02:18,718 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:02:18,720 INFO L225 Difference]: With dead ends: 661 [2022-11-19 08:02:18,721 INFO L226 Difference]: Without dead ends: 398 [2022-11-19 08:02:18,722 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 111 GetRequests, 92 SyntacticMatches, 0 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 138 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=75, Invalid=345, Unknown=0, NotChecked=0, Total=420 [2022-11-19 08:02:18,723 INFO L413 NwaCegarLoop]: 49 mSDtfsCounter, 46 mSDsluCounter, 86 mSDsCounter, 0 mSdLazyCounter, 47 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 46 SdHoareTripleChecker+Valid, 135 SdHoareTripleChecker+Invalid, 54 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 47 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-19 08:02:18,724 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [46 Valid, 135 Invalid, 54 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 47 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-19 08:02:18,725 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 398 states. [2022-11-19 08:02:18,791 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 398 to 359. [2022-11-19 08:02:18,792 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 359 states, 258 states have (on average 1.197674418604651) internal successors, (309), 281 states have internal predecessors, (309), 45 states have call successors, (45), 42 states have call predecessors, (45), 55 states have return successors, (73), 51 states have call predecessors, (73), 45 states have call successors, (73) [2022-11-19 08:02:18,795 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 359 states to 359 states and 427 transitions. [2022-11-19 08:02:18,796 INFO L78 Accepts]: Start accepts. Automaton has 359 states and 427 transitions. Word has length 89 [2022-11-19 08:02:18,796 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:02:18,796 INFO L495 AbstractCegarLoop]: Abstraction has 359 states and 427 transitions. [2022-11-19 08:02:18,797 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 7.75) internal successors, (31), 4 states have internal predecessors, (31), 1 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (5), 2 states have call predecessors, (5), 1 states have call successors, (5) [2022-11-19 08:02:18,797 INFO L276 IsEmpty]: Start isEmpty. Operand 359 states and 427 transitions. [2022-11-19 08:02:18,800 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2022-11-19 08:02:18,800 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:02:18,800 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:02:18,813 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-19 08:02:19,007 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-19 08:02:19,007 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:02:19,008 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:02:19,008 INFO L85 PathProgramCache]: Analyzing trace with hash 1410569396, now seen corresponding path program 3 times [2022-11-19 08:02:19,009 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:02:19,009 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2109495873] [2022-11-19 08:02:19,009 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:02:19,009 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:02:19,031 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:02:19,961 INFO L134 CoverageAnalysis]: Checked inductivity of 108 backedges. 1 proven. 83 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2022-11-19 08:02:19,962 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:02:19,962 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2109495873] [2022-11-19 08:02:19,962 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2109495873] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 08:02:19,962 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1277647190] [2022-11-19 08:02:19,962 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2022-11-19 08:02:19,962 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:02:19,963 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:02:19,976 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 08:02:20,054 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-19 08:02:20,187 INFO L228 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2022-11-19 08:02:20,187 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-19 08:02:20,190 INFO L263 TraceCheckSpWp]: Trace formula consists of 434 conjuncts, 22 conjunts are in the unsatisfiable core [2022-11-19 08:02:20,201 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 08:02:20,342 INFO L134 CoverageAnalysis]: Checked inductivity of 108 backedges. 59 proven. 1 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2022-11-19 08:02:20,342 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-19 08:02:20,496 INFO L134 CoverageAnalysis]: Checked inductivity of 108 backedges. 49 proven. 1 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2022-11-19 08:02:20,496 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1277647190] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-19 08:02:20,497 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1314861429] [2022-11-19 08:02:20,504 INFO L159 IcfgInterpreter]: Started Sifa with 34 locations of interest [2022-11-19 08:02:20,504 INFO L166 IcfgInterpreter]: Building call graph [2022-11-19 08:02:20,504 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-19 08:02:20,505 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-19 08:02:20,505 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-19 08:02:23,717 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 50 for LOIs [2022-11-19 08:02:23,729 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 45 for LOIs [2022-11-19 08:02:24,068 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2022-11-19 08:02:24,115 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 30 for LOIs [2022-11-19 08:02:24,118 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-19 08:02:28,525 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10752#(and (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (<= 0 |old(~pumpRunning~0)|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (<= ~pumpRunning~0 1) (= ~methaneLevelCritical~0 0) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (= 1 ~systemActive~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (<= 0 ~pumpRunning~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-19 08:02:28,525 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-19 08:02:28,525 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-19 08:02:28,525 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 6, 6] total 23 [2022-11-19 08:02:28,525 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [273106932] [2022-11-19 08:02:28,526 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-19 08:02:28,526 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2022-11-19 08:02:28,526 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:02:28,527 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2022-11-19 08:02:28,528 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=268, Invalid=2182, Unknown=0, NotChecked=0, Total=2450 [2022-11-19 08:02:28,528 INFO L87 Difference]: Start difference. First operand 359 states and 427 transitions. Second operand has 23 states, 21 states have (on average 4.857142857142857) internal successors, (102), 20 states have internal predecessors, (102), 9 states have call successors, (15), 6 states have call predecessors, (15), 6 states have return successors, (14), 8 states have call predecessors, (14), 9 states have call successors, (14) [2022-11-19 08:02:31,460 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:02:31,460 INFO L93 Difference]: Finished difference Result 1037 states and 1283 transitions. [2022-11-19 08:02:31,461 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 62 states. [2022-11-19 08:02:31,461 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 21 states have (on average 4.857142857142857) internal successors, (102), 20 states have internal predecessors, (102), 9 states have call successors, (15), 6 states have call predecessors, (15), 6 states have return successors, (14), 8 states have call predecessors, (14), 9 states have call successors, (14) Word has length 91 [2022-11-19 08:02:31,462 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:02:31,468 INFO L225 Difference]: With dead ends: 1037 [2022-11-19 08:02:31,468 INFO L226 Difference]: Without dead ends: 708 [2022-11-19 08:02:31,472 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 363 GetRequests, 265 SyntacticMatches, 0 SemanticMatches, 98 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3589 ImplicationChecksByTransitivity, 6.2s TimeCoverageRelationStatistics Valid=1357, Invalid=8543, Unknown=0, NotChecked=0, Total=9900 [2022-11-19 08:02:31,473 INFO L413 NwaCegarLoop]: 58 mSDtfsCounter, 774 mSDsluCounter, 514 mSDsCounter, 0 mSdLazyCounter, 1317 mSolverCounterSat, 468 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 783 SdHoareTripleChecker+Valid, 572 SdHoareTripleChecker+Invalid, 1785 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 468 IncrementalHoareTripleChecker+Valid, 1317 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2022-11-19 08:02:31,474 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [783 Valid, 572 Invalid, 1785 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [468 Valid, 1317 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2022-11-19 08:02:31,475 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 708 states. [2022-11-19 08:02:31,567 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 708 to 605. [2022-11-19 08:02:31,569 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 605 states, 436 states have (on average 1.1903669724770642) internal successors, (519), 477 states have internal predecessors, (519), 75 states have call successors, (75), 66 states have call predecessors, (75), 93 states have return successors, (127), 86 states have call predecessors, (127), 75 states have call successors, (127) [2022-11-19 08:02:31,572 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 605 states to 605 states and 721 transitions. [2022-11-19 08:02:31,573 INFO L78 Accepts]: Start accepts. Automaton has 605 states and 721 transitions. Word has length 91 [2022-11-19 08:02:31,573 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:02:31,573 INFO L495 AbstractCegarLoop]: Abstraction has 605 states and 721 transitions. [2022-11-19 08:02:31,574 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 21 states have (on average 4.857142857142857) internal successors, (102), 20 states have internal predecessors, (102), 9 states have call successors, (15), 6 states have call predecessors, (15), 6 states have return successors, (14), 8 states have call predecessors, (14), 9 states have call successors, (14) [2022-11-19 08:02:31,574 INFO L276 IsEmpty]: Start isEmpty. Operand 605 states and 721 transitions. [2022-11-19 08:02:31,575 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 95 [2022-11-19 08:02:31,575 INFO L187 NwaCegarLoop]: Found error trace [2022-11-19 08:02:31,576 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:02:31,589 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-19 08:02:31,783 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:02:31,784 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-19 08:02:31,784 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-19 08:02:31,784 INFO L85 PathProgramCache]: Analyzing trace with hash 1695781844, now seen corresponding path program 2 times [2022-11-19 08:02:31,784 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-19 08:02:31,785 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1155225131] [2022-11-19 08:02:31,785 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-19 08:02:31,785 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-19 08:02:31,806 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-19 08:02:32,747 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 52 proven. 41 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-19 08:02:32,748 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-19 08:02:32,748 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1155225131] [2022-11-19 08:02:32,748 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1155225131] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-19 08:02:32,748 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [693386471] [2022-11-19 08:02:32,749 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2022-11-19 08:02:32,749 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:02:32,749 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 [2022-11-19 08:02:32,750 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-19 08:02:32,773 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-11-19 08:02:32,871 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2022-11-19 08:02:32,871 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2022-11-19 08:02:32,873 INFO L263 TraceCheckSpWp]: Trace formula consists of 267 conjuncts, 35 conjunts are in the unsatisfiable core [2022-11-19 08:02:32,877 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-19 08:02:33,285 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 43 proven. 21 refuted. 0 times theorem prover too weak. 41 trivial. 0 not checked. [2022-11-19 08:02:33,285 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-19 08:02:33,880 INFO L134 CoverageAnalysis]: Checked inductivity of 105 backedges. 53 proven. 5 refuted. 0 times theorem prover too weak. 47 trivial. 0 not checked. [2022-11-19 08:02:33,880 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [693386471] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-19 08:02:33,881 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1708808906] [2022-11-19 08:02:33,884 INFO L159 IcfgInterpreter]: Started Sifa with 38 locations of interest [2022-11-19 08:02:33,885 INFO L166 IcfgInterpreter]: Building call graph [2022-11-19 08:02:33,886 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-19 08:02:33,886 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-19 08:02:33,886 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-19 08:02:37,857 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 125 for LOIs [2022-11-19 08:02:37,880 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 44 for LOIs [2022-11-19 08:02:38,279 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 59 for LOIs [2022-11-19 08:02:38,545 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 33 for LOIs [2022-11-19 08:02:38,548 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 29 for LOIs [2022-11-19 08:02:38,550 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-19 08:02:46,253 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14056#(and (<= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 2147483647) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~3#1|) (<= 0 (+ |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 2147483648)) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (<= 1 ~systemActive~0) (<= |#NULL.offset| 0) (<= ~methaneLevelCritical~0 0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~3#1|) (<= 0 ~head~0.base) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0) (<= 0 ~methaneLevelCritical~0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (<= ~head~0.base 0) (<= 0 |#NULL.offset|) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (<= ~systemActive~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-19 08:02:46,253 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-19 08:02:46,253 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-19 08:02:46,254 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 9, 10] total 35 [2022-11-19 08:02:46,254 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1395881249] [2022-11-19 08:02:46,254 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-19 08:02:46,255 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 35 states [2022-11-19 08:02:46,256 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-19 08:02:46,256 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 35 interpolants. [2022-11-19 08:02:46,257 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=454, Invalid=3578, Unknown=0, NotChecked=0, Total=4032 [2022-11-19 08:02:46,258 INFO L87 Difference]: Start difference. First operand 605 states and 721 transitions. Second operand has 35 states, 33 states have (on average 4.878787878787879) internal successors, (161), 32 states have internal predecessors, (161), 13 states have call successors, (22), 9 states have call predecessors, (22), 12 states have return successors, (24), 14 states have call predecessors, (24), 11 states have call successors, (24) [2022-11-19 08:02:47,865 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-19 08:02:47,865 INFO L93 Difference]: Finished difference Result 699 states and 834 transitions. [2022-11-19 08:02:47,866 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 27 states. [2022-11-19 08:02:47,866 INFO L78 Accepts]: Start accepts. Automaton has has 35 states, 33 states have (on average 4.878787878787879) internal successors, (161), 32 states have internal predecessors, (161), 13 states have call successors, (22), 9 states have call predecessors, (22), 12 states have return successors, (24), 14 states have call predecessors, (24), 11 states have call successors, (24) Word has length 94 [2022-11-19 08:02:47,867 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-19 08:02:47,867 INFO L225 Difference]: With dead ends: 699 [2022-11-19 08:02:47,867 INFO L226 Difference]: Without dead ends: 0 [2022-11-19 08:02:47,871 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 334 GetRequests, 239 SyntacticMatches, 8 SemanticMatches, 87 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3477 ImplicationChecksByTransitivity, 9.2s TimeCoverageRelationStatistics Valid=1010, Invalid=6822, Unknown=0, NotChecked=0, Total=7832 [2022-11-19 08:02:47,873 INFO L413 NwaCegarLoop]: 33 mSDtfsCounter, 555 mSDsluCounter, 308 mSDsCounter, 0 mSdLazyCounter, 673 mSolverCounterSat, 274 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 555 SdHoareTripleChecker+Valid, 341 SdHoareTripleChecker+Invalid, 947 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 274 IncrementalHoareTripleChecker+Valid, 673 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2022-11-19 08:02:47,873 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [555 Valid, 341 Invalid, 947 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [274 Valid, 673 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2022-11-19 08:02:47,874 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-19 08:02:47,874 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-19 08:02:47,874 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-19 08:02:47,875 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-19 08:02:47,875 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 94 [2022-11-19 08:02:47,875 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-19 08:02:47,875 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-19 08:02:47,876 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 35 states, 33 states have (on average 4.878787878787879) internal successors, (161), 32 states have internal predecessors, (161), 13 states have call successors, (22), 9 states have call predecessors, (22), 12 states have return successors, (24), 14 states have call predecessors, (24), 11 states have call successors, (24) [2022-11-19 08:02:47,876 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-19 08:02:47,876 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-19 08:02:47,879 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-19 08:02:47,891 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2022-11-19 08:02:48,086 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-19 08:02:48,089 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-19 08:02:52,516 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 309 316) the Hoare annotation is: (= ~pumpRunning~0 |old(~pumpRunning~0)|) [2022-11-19 08:02:52,516 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 309 316) no Hoare annotation was computed. [2022-11-19 08:02:52,517 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 224 230) no Hoare annotation was computed. [2022-11-19 08:02:52,517 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 224 230) the Hoare annotation is: true [2022-11-19 08:02:52,517 INFO L902 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 549 560) the Hoare annotation is: true [2022-11-19 08:02:52,517 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 549 560) no Hoare annotation was computed. [2022-11-19 08:02:52,517 INFO L899 garLoopResultBuilder]: For program point L449(line 449) no Hoare annotation was computed. [2022-11-19 08:02:52,517 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 428 457) no Hoare annotation was computed. [2022-11-19 08:02:52,518 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 428 457) the Hoare annotation is: true [2022-11-19 08:02:52,518 INFO L899 garLoopResultBuilder]: For program point L442(lines 442 446) no Hoare annotation was computed. [2022-11-19 08:02:52,518 INFO L902 garLoopResultBuilder]: At program point L442-1(lines 442 446) the Hoare annotation is: true [2022-11-19 08:02:52,518 INFO L902 garLoopResultBuilder]: At program point L438-2(lines 438 452) the Hoare annotation is: true [2022-11-19 08:02:52,518 INFO L902 garLoopResultBuilder]: At program point L434(line 434) the Hoare annotation is: true [2022-11-19 08:02:52,518 INFO L899 garLoopResultBuilder]: For program point L434-1(line 434) no Hoare annotation was computed. [2022-11-19 08:02:52,518 INFO L902 garLoopResultBuilder]: At program point L453(lines 428 457) the Hoare annotation is: true [2022-11-19 08:02:52,519 INFO L895 garLoopResultBuilder]: At program point L630(line 630) the Hoare annotation is: (let ((.cse1 (not (= 1 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse1) (or .cse1 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not (= 0 ~systemActive~0))))) [2022-11-19 08:02:52,519 INFO L895 garLoopResultBuilder]: At program point L272(line 272) the Hoare annotation is: (let ((.cse1 (not (= 1 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse1) (or .cse1 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not (= 0 ~systemActive~0))))) [2022-11-19 08:02:52,519 INFO L895 garLoopResultBuilder]: At program point L268(line 268) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= |old(~waterLevel~0)| 2))) (.cse2 (not (<= 2 |old(~waterLevel~0)|))) (.cse3 (not (= |old(~pumpRunning~0)| 0)))) (and (or (and (not (= ~pumpRunning~0 0)) (<= 1 |timeShift_processEnvironment_~tmp~3#1|) (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or .cse3 (not (= |old(~waterLevel~0)| 1)) .cse0) (or .cse3 .cse0 .cse1 .cse2) (or .cse3 (not (= 0 ~systemActive~0))))) [2022-11-19 08:02:52,519 INFO L899 garLoopResultBuilder]: For program point L103(lines 103 109) no Hoare annotation was computed. [2022-11-19 08:02:52,520 INFO L895 garLoopResultBuilder]: At program point L99(lines 99 112) the Hoare annotation is: (let ((.cse4 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse5 (not (<= |old(~waterLevel~0)| 2))) (.cse6 (not (<= 2 |old(~waterLevel~0)|))) (.cse8 (not (= 0 ~systemActive~0))) (.cse7 (not (= |old(~pumpRunning~0)| 0))) (.cse9 (not (= |old(~waterLevel~0)| 1))) (.cse3 (not (= 1 ~systemActive~0))) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| ~waterLevel~0)) (.cse2 (= ~waterLevel~0 1))) (and (or (and .cse0 (<= 1 |timeShift_processEnvironment_~tmp~3#1|) .cse1 .cse2) .cse3 (and .cse4 .cse1) .cse5 .cse6) (or .cse7 (and .cse0 .cse4) .cse8) (or .cse7 .cse9 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 1) .cse8) (or .cse7 .cse3 .cse4 .cse5 .cse6) (or .cse7 (<= 2 |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1|) .cse8 .cse6) (or .cse7 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0) (not (= |old(~waterLevel~0)| 0)) .cse8) (or .cse7 .cse9 .cse3 (and .cse0 .cse1 .cse2)))) [2022-11-19 08:02:52,520 INFO L895 garLoopResultBuilder]: At program point L99-1(lines 91 115) the Hoare annotation is: (let ((.cse4 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse5 (not (<= |old(~waterLevel~0)| 2))) (.cse6 (not (<= 2 |old(~waterLevel~0)|))) (.cse9 (not (= |old(~waterLevel~0)| 1))) (.cse3 (not (= 1 ~systemActive~0))) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| ~waterLevel~0)) (.cse2 (= ~waterLevel~0 1)) (.cse7 (not (= |old(~pumpRunning~0)| 0))) (.cse8 (not (= 0 ~systemActive~0)))) (and (or (and .cse0 (<= 1 |timeShift_processEnvironment_~tmp~3#1|) .cse1 .cse2) .cse3 (and .cse4 .cse1) .cse5 .cse6) (or .cse7 (and .cse0 .cse4) .cse8) (or .cse7 .cse9 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 1) .cse8) (or .cse7 .cse3 .cse4 .cse5 .cse6) (or .cse7 (<= 2 |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1|) .cse8 .cse6) (or .cse7 .cse9 .cse3 (and .cse0 .cse1 .cse2)) (or .cse7 (not (= |old(~waterLevel~0)| 0)) .cse8 (and (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~0#1| 0))))) [2022-11-19 08:02:52,521 INFO L895 garLoopResultBuilder]: At program point L277(line 277) the Hoare annotation is: (let ((.cse2 (= ~pumpRunning~0 0)) (.cse1 (not (= 1 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse1 (and .cse2 (= ~waterLevel~0 1))) (or (and .cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) .cse1 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not (= 0 ~systemActive~0))))) [2022-11-19 08:02:52,521 INFO L895 garLoopResultBuilder]: At program point L277-1(lines 258 282) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse2 (= ~pumpRunning~0 0)) (.cse3 (= ~waterLevel~0 1)) (.cse1 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (= |old(~waterLevel~0)| ~waterLevel~0) (and .cse1 .cse2 (<= 1 |timeShift_processEnvironment_~tmp~3#1|) .cse3) (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse1 (not (= |old(~waterLevel~0)| 1)) .cse0 (and .cse2 .cse3)) (or .cse1 (not (= 0 ~systemActive~0))))) [2022-11-19 08:02:52,521 INFO L895 garLoopResultBuilder]: At program point L211-1(lines 211 217) the Hoare annotation is: (let ((.cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (not (= 1 ~systemActive~0))) (.cse1 (= ~pumpRunning~0 0)) (.cse4 (= ~waterLevel~0 1))) (and (or .cse0 (and .cse1 .cse2) (not (= 0 ~systemActive~0))) (or .cse3 .cse2 (and .cse0 .cse1 (<= 1 |timeShift_processEnvironment_~tmp~3#1|) .cse4) (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse3 (and .cse1 .cse4)))) [2022-11-19 08:02:52,522 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 200 223) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse3 (not (= 0 ~systemActive~0)))) (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (not (= 1 ~systemActive~0))) (.cse5 (and .cse1 .cse2 .cse3))) (and (or .cse0 (and .cse1 .cse2) .cse3) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse4 .cse5) (or .cse4 .cse5 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|)))))) [2022-11-19 08:02:52,522 INFO L899 garLoopResultBuilder]: For program point L204-1(lines 203 222) no Hoare annotation was computed. [2022-11-19 08:02:52,522 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 200 223) no Hoare annotation was computed. [2022-11-19 08:02:52,522 INFO L899 garLoopResultBuilder]: For program point L266(lines 266 274) no Hoare annotation was computed. [2022-11-19 08:02:52,522 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 630) no Hoare annotation was computed. [2022-11-19 08:02:52,523 INFO L895 garLoopResultBuilder]: At program point L262(lines 262 279) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (= ~pumpRunning~0 0)) (.cse3 (= ~waterLevel~0 1)) (.cse4 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (let ((.cse2 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or .cse1 (<= (+ ~waterLevel~0 1) |old(~waterLevel~0)|)) (or .cse2 .cse3) (or (not .cse1) (<= 2 ~waterLevel~0)) (or .cse4 .cse2))) (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse4 (not (= |old(~waterLevel~0)| 1)) .cse0 (and .cse1 .cse3)) (or .cse4 (not (= 0 ~systemActive~0))))) [2022-11-19 08:02:52,523 INFO L899 garLoopResultBuilder]: For program point L415(lines 415 421) no Hoare annotation was computed. [2022-11-19 08:02:52,523 INFO L895 garLoopResultBuilder]: At program point L415-1(lines 415 421) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2022-11-19 08:02:52,523 INFO L895 garLoopResultBuilder]: At program point L180(lines 131 181) the Hoare annotation is: false [2022-11-19 08:02:52,524 INFO L899 garLoopResultBuilder]: For program point L168(lines 168 174) no Hoare annotation was computed. [2022-11-19 08:02:52,524 INFO L895 garLoopResultBuilder]: At program point L168-2(lines 162 175) the Hoare annotation is: (let ((.cse4 (= 0 ~systemActive~0))) (let ((.cse0 (= 1 ~systemActive~0)) (.cse2 (not .cse4)) (.cse3 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and .cse3 .cse0 .cse1 (= ~waterLevel~0 1) .cse2) (and .cse3 .cse1 .cse4)))) [2022-11-19 08:02:52,524 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-19 08:02:52,524 INFO L899 garLoopResultBuilder]: For program point L152(lines 152 158) no Hoare annotation was computed. [2022-11-19 08:02:52,524 INFO L899 garLoopResultBuilder]: For program point L152-1(lines 152 158) no Hoare annotation was computed. [2022-11-19 08:02:52,525 INFO L895 garLoopResultBuilder]: At program point L177(lines 132 179) the Hoare annotation is: (let ((.cse4 (= 0 ~systemActive~0))) (let ((.cse0 (= 1 ~systemActive~0)) (.cse2 (not .cse4)) (.cse3 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and .cse3 .cse0 .cse1 (= ~waterLevel~0 1) .cse2) (and .cse3 .cse1 .cse4)))) [2022-11-19 08:02:52,525 INFO L895 garLoopResultBuilder]: At program point L144(line 144) the Hoare annotation is: (let ((.cse0 (= 1 ~systemActive~0)) (.cse2 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (<= 2 ~waterLevel~0) .cse0 .cse1 (<= ~waterLevel~0 2)) (and .cse2 .cse0 .cse1 (= ~waterLevel~0 1)) (and .cse2 .cse1 (= 0 ~systemActive~0)))) [2022-11-19 08:02:52,525 INFO L895 garLoopResultBuilder]: At program point L417(line 417) the Hoare annotation is: (and (or (not (= ~pumpRunning~0 0)) (= |old(~waterLevel~0)| 1) (and (not (= ~waterLevel~0 1)) (not (= ~waterLevel~0 0))) (= |old(~waterLevel~0)| 0)) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2022-11-19 08:02:52,525 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-19 08:02:52,526 INFO L899 garLoopResultBuilder]: For program point L133(lines 132 179) no Hoare annotation was computed. [2022-11-19 08:02:52,526 INFO L899 garLoopResultBuilder]: For program point L162(lines 162 175) no Hoare annotation was computed. [2022-11-19 08:02:52,526 INFO L895 garLoopResultBuilder]: At program point L509(lines 509 516) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1) (= |ULTIMATE.start_main_~tmp~7#1| ~systemActive~0)) [2022-11-19 08:02:52,526 INFO L902 garLoopResultBuilder]: At program point L509-2(lines 509 516) the Hoare annotation is: true [2022-11-19 08:02:52,526 INFO L895 garLoopResultBuilder]: At program point L154(line 154) the Hoare annotation is: (let ((.cse0 (= 1 ~systemActive~0)) (.cse2 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (<= 2 ~waterLevel~0) .cse0 .cse1 (<= ~waterLevel~0 2)) (and .cse2 .cse0 .cse1 (= ~waterLevel~0 1)) (and .cse2 .cse1 (= 0 ~systemActive~0)))) [2022-11-19 08:02:52,527 INFO L902 garLoopResultBuilder]: At program point L183(lines 122 187) the Hoare annotation is: true [2022-11-19 08:02:52,527 INFO L899 garLoopResultBuilder]: For program point L142(lines 142 148) no Hoare annotation was computed. [2022-11-19 08:02:52,527 INFO L899 garLoopResultBuilder]: For program point L142-1(lines 142 148) no Hoare annotation was computed. [2022-11-19 08:02:52,527 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 232 256) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= 1 ~systemActive~0)))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or .cse0 .cse1 .cse2 (not (= 2 ~waterLevel~0))))) [2022-11-19 08:02:52,527 INFO L895 garLoopResultBuilder]: At program point L246(line 246) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 (and (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 0))))) [2022-11-19 08:02:52,528 INFO L895 garLoopResultBuilder]: At program point L240(lines 240 248) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (= ~pumpRunning~0 0))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0)) (and .cse2 (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 1))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 (and .cse2 (= |processEnvironment__wrappee__highWaterSensor_~tmp~2#1| 0))))) [2022-11-19 08:02:52,528 INFO L895 garLoopResultBuilder]: At program point L236(lines 236 253) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= 1 ~systemActive~0)))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or .cse0 .cse1 .cse2 (not (= 2 ~waterLevel~0))))) [2022-11-19 08:02:52,528 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 232 256) no Hoare annotation was computed. [2022-11-19 08:02:52,528 INFO L895 garLoopResultBuilder]: At program point L251(line 251) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1))) [2022-11-19 08:02:52,529 INFO L899 garLoopResultBuilder]: For program point L251-1(lines 232 256) no Hoare annotation was computed. [2022-11-19 08:02:52,529 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 537 548) no Hoare annotation was computed. [2022-11-19 08:02:52,529 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 537 548) the Hoare annotation is: (let ((.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (not (= ~pumpRunning~0 0))) (.cse2 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 (not (= 0 ~systemActive~0))) (or .cse2 .cse1 (not (<= |old(~waterLevel~0)| 2)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse2 (= ~waterLevel~0 1)))) [2022-11-19 08:02:52,533 INFO L444 BasicCegarLoop]: Path program histogram: [3, 2, 1, 1, 1, 1, 1, 1, 1] [2022-11-19 08:02:52,535 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-19 08:02:52,570 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 19.11 08:02:52 BoogieIcfgContainer [2022-11-19 08:02:52,571 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-19 08:02:52,571 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-19 08:02:52,571 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-19 08:02:52,572 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-19 08:02:52,572 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 19.11 08:01:55" (3/4) ... [2022-11-19 08:02:52,576 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-19 08:02:52,582 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-19 08:02:52,582 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-19 08:02:52,582 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-19 08:02:52,582 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-19 08:02:52,582 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-19 08:02:52,583 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-19 08:02:52,583 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-19 08:02:52,591 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 49 nodes and edges [2022-11-19 08:02:52,592 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 15 nodes and edges [2022-11-19 08:02:52,592 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-11-19 08:02:52,593 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-19 08:02:52,593 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-19 08:02:52,622 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && !(0 == systemActive)))) && (((!(1 == systemActive) || ((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) [2022-11-19 08:02:52,622 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) && ((((!(1 == systemActive) || \old(waterLevel) == waterLevel) || (((!(\old(pumpRunning) == 0) && pumpRunning == 0) && 1 <= tmp) && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1)) [2022-11-19 08:02:52,623 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(1 == systemActive) || ((((pumpRunning == 0 || waterLevel + 1 <= \old(waterLevel)) && (\old(waterLevel) == waterLevel || waterLevel == 1)) && (!(pumpRunning == 0) || 2 <= waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel))) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-19 08:02:52,623 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(1 == systemActive) || \old(waterLevel) == waterLevel) || (((!(\old(pumpRunning) == 0) && pumpRunning == 0) && 1 <= tmp) && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-19 08:02:52,623 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(1 == systemActive)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(2 == waterLevel)) [2022-11-19 08:02:52,624 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((((((pumpRunning == 0 && 1 <= tmp) && tmp == waterLevel) && waterLevel == 1) || !(1 == systemActive)) || (\old(waterLevel) == waterLevel && tmp == waterLevel)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || tmp == 1) || !(0 == systemActive))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || 2 <= tmp) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || tmp == 0) || !(\old(waterLevel) == 0)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == waterLevel) && waterLevel == 1)) [2022-11-19 08:02:52,624 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((((((pumpRunning == 0 && 1 <= tmp) && tmp == waterLevel) && waterLevel == 1) || !(1 == systemActive)) || (\old(waterLevel) == waterLevel && tmp == waterLevel)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || tmp == 1) || !(0 == systemActive))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || 2 <= tmp) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == waterLevel) && waterLevel == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 0)) || !(0 == systemActive)) || (tmp___0 == 0 && tmp == 0)) [2022-11-19 08:02:52,625 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) && ((!(1 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-19 08:02:52,626 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(2 == waterLevel)) || (pumpRunning == 0 && tmp == 1)) && (((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || (pumpRunning == 0 && tmp == 0)) [2022-11-19 08:02:52,653 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/witness.graphml [2022-11-19 08:02:52,653 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-19 08:02:52,654 INFO L158 Benchmark]: Toolchain (without parser) took 58578.61ms. Allocated memory was 127.9MB in the beginning and 534.8MB in the end (delta: 406.8MB). Free memory was 83.2MB in the beginning and 479.7MB in the end (delta: -396.5MB). Peak memory consumption was 12.5MB. Max. memory is 16.1GB. [2022-11-19 08:02:52,654 INFO L158 Benchmark]: CDTParser took 0.32ms. Allocated memory is still 127.9MB. Free memory is still 101.1MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-19 08:02:52,655 INFO L158 Benchmark]: CACSL2BoogieTranslator took 533.39ms. Allocated memory is still 127.9MB. Free memory was 83.0MB in the beginning and 92.7MB in the end (delta: -9.7MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2022-11-19 08:02:52,655 INFO L158 Benchmark]: Boogie Procedure Inliner took 64.94ms. Allocated memory is still 127.9MB. Free memory was 92.7MB in the beginning and 90.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-19 08:02:52,656 INFO L158 Benchmark]: Boogie Preprocessor took 26.96ms. Allocated memory is still 127.9MB. Free memory was 90.6MB in the beginning and 88.8MB in the end (delta: 1.8MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-19 08:02:52,656 INFO L158 Benchmark]: RCFGBuilder took 760.88ms. Allocated memory is still 127.9MB. Free memory was 88.8MB in the beginning and 100.1MB in the end (delta: -11.2MB). Peak memory consumption was 30.1MB. Max. memory is 16.1GB. [2022-11-19 08:02:52,656 INFO L158 Benchmark]: TraceAbstraction took 57103.14ms. Allocated memory was 127.9MB in the beginning and 534.8MB in the end (delta: 406.8MB). Free memory was 99.5MB in the beginning and 486.0MB in the end (delta: -386.5MB). Peak memory consumption was 323.5MB. Max. memory is 16.1GB. [2022-11-19 08:02:52,657 INFO L158 Benchmark]: Witness Printer took 82.33ms. Allocated memory is still 534.8MB. Free memory was 486.0MB in the beginning and 479.7MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-19 08:02:52,659 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.32ms. Allocated memory is still 127.9MB. Free memory is still 101.1MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 533.39ms. Allocated memory is still 127.9MB. Free memory was 83.0MB in the beginning and 92.7MB in the end (delta: -9.7MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 64.94ms. Allocated memory is still 127.9MB. Free memory was 92.7MB in the beginning and 90.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 26.96ms. Allocated memory is still 127.9MB. Free memory was 90.6MB in the beginning and 88.8MB in the end (delta: 1.8MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 760.88ms. Allocated memory is still 127.9MB. Free memory was 88.8MB in the beginning and 100.1MB in the end (delta: -11.2MB). Peak memory consumption was 30.1MB. Max. memory is 16.1GB. * TraceAbstraction took 57103.14ms. Allocated memory was 127.9MB in the beginning and 534.8MB in the end (delta: 406.8MB). Free memory was 99.5MB in the beginning and 486.0MB in the end (delta: -386.5MB). Peak memory consumption was 323.5MB. Max. memory is 16.1GB. * Witness Printer took 82.33ms. Allocated memory is still 534.8MB. Free memory was 486.0MB in the beginning and 479.7MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 630]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 59 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 57.0s, OverallIterations: 12, TraceHistogramMax: 4, PathProgramHistogramMax: 3, EmptinessCheckTime: 0.0s, AutomataDifference: 10.3s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 4.4s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2848 SdHoareTripleChecker+Valid, 4.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2806 mSDsluCounter, 3170 SdHoareTripleChecker+Invalid, 3.5s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2439 mSDsCounter, 1298 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 4421 IncrementalHoareTripleChecker+Invalid, 5719 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1298 mSolverCounterUnsat, 731 mSDtfsCounter, 4421 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1161 GetRequests, 798 SyntacticMatches, 8 SemanticMatches, 355 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10891 ImplicationChecksByTransitivity, 23.6s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=605occurred in iteration=11, InterpolantAutomatonStates: 200, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.6s AutomataMinimizationTime, 12 MinimizatonAttempts, 385 StatesRemovedByMinimization, 9 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 35 LocationsWithAnnotation, 1245 PreInvPairs, 1406 NumberOfFragments, 1169 HoareAnnotationTreeSize, 1245 FomulaSimplifications, 12809 FormulaSimplificationTreeSizeReduction, 0.9s HoareSimplificationTime, 35 FomulaSimplificationsInter, 27225 FormulaSimplificationTreeSizeReductionInter, 3.5s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.2s SsaConstructionTime, 0.5s SatisfiabilityAnalysisTime, 8.6s InterpolantComputationTime, 959 NumberOfCodeBlocks, 847 NumberOfCodeBlocksAsserted, 19 NumberOfCheckSat, 1171 ConstructedInterpolants, 0 QuantifiedInterpolants, 4871 SizeOfPredicates, 47 NumberOfNonLiveVariables, 1485 ConjunctsInSsa, 112 ConjunctsInUnsatCore, 20 InterpolantComputations, 9 PerfectInterpolantSequences, 746/1007 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 131]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 258]: Loop Invariant Derived loop invariant: (((((!(1 == systemActive) || \old(waterLevel) == waterLevel) || (((!(\old(pumpRunning) == 0) && pumpRunning == 0) && 1 <= tmp) && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 415]: Loop Invariant Derived loop invariant: pumpRunning == 0 && splverifierCounter == 0 - InvariantResult [Line: 99]: Loop Invariant Derived loop invariant: ((((((((((((pumpRunning == 0 && 1 <= tmp) && tmp == waterLevel) && waterLevel == 1) || !(1 == systemActive)) || (\old(waterLevel) == waterLevel && tmp == waterLevel)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || tmp == 1) || !(0 == systemActive))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || 2 <= tmp) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || tmp == 0) || !(\old(waterLevel) == 0)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == waterLevel) && waterLevel == 1)) - InvariantResult [Line: 132]: Loop Invariant Derived loop invariant: ((((2 == waterLevel && 1 == systemActive) && splverifierCounter == 0) && !(0 == systemActive)) || ((((pumpRunning == 0 && 1 == systemActive) && splverifierCounter == 0) && waterLevel == 1) && !(0 == systemActive))) || ((pumpRunning == 0 && splverifierCounter == 0) && 0 == systemActive) - InvariantResult [Line: 200]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && !(0 == systemActive)))) && (((!(1 == systemActive) || ((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && !(0 == systemActive))) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 211]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) && ((((!(1 == systemActive) || \old(waterLevel) == waterLevel) || (((!(\old(pumpRunning) == 0) && pumpRunning == 0) && 1 <= tmp) && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1)) - InvariantResult [Line: 236]: Loop Invariant Derived loop invariant: (((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(1 == systemActive)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(2 == waterLevel)) - InvariantResult [Line: 630]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) && ((!(1 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 262]: Loop Invariant Derived loop invariant: ((((!(1 == systemActive) || ((((pumpRunning == 0 || waterLevel + 1 <= \old(waterLevel)) && (\old(waterLevel) == waterLevel || waterLevel == 1)) && (!(pumpRunning == 0) || 2 <= waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel))) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 91]: Loop Invariant Derived loop invariant: ((((((((((((pumpRunning == 0 && 1 <= tmp) && tmp == waterLevel) && waterLevel == 1) || !(1 == systemActive)) || (\old(waterLevel) == waterLevel && tmp == waterLevel)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || tmp == 1) || !(0 == systemActive))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || 2 <= tmp) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == waterLevel) && waterLevel == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 0)) || !(0 == systemActive)) || (tmp___0 == 0 && tmp == 0)) - InvariantResult [Line: 122]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 428]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 509]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 509]: Loop Invariant Derived loop invariant: ((pumpRunning == 0 && 1 == systemActive) && waterLevel == 1) && tmp == systemActive - InvariantResult [Line: 438]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 240]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(2 == waterLevel)) || (pumpRunning == 0 && tmp == 1)) && (((!(waterLevel == 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || (pumpRunning == 0 && tmp == 0)) RESULT: Ultimate proved your program to be correct! [2022-11-19 08:02:52,723 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_0963bf12-6255-49f9-aea4-70dae7b31f21/bin/utaipan-I9t0OCRTmS/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE