./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 6b4ec56b Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9 --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash e7a194b3d6e079d2329a0d70eaa59b34ff3d58300de8b046ef1cd7cff7f67b94 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-6b4ec56 [2022-11-20 20:40:16,308 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-20 20:40:16,310 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-20 20:40:16,345 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-20 20:40:16,345 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-20 20:40:16,346 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-20 20:40:16,348 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-20 20:40:16,350 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-20 20:40:16,356 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-20 20:40:16,362 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-20 20:40:16,364 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-20 20:40:16,367 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-20 20:40:16,368 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-20 20:40:16,372 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-20 20:40:16,375 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-20 20:40:16,377 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-20 20:40:16,379 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-20 20:40:16,380 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-20 20:40:16,382 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-20 20:40:16,388 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-20 20:40:16,389 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-20 20:40:16,392 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-20 20:40:16,394 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-20 20:40:16,395 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-20 20:40:16,405 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-20 20:40:16,405 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-20 20:40:16,406 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-20 20:40:16,408 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-20 20:40:16,408 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-20 20:40:16,409 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-20 20:40:16,409 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-20 20:40:16,410 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-20 20:40:16,412 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-20 20:40:16,414 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-20 20:40:16,416 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-20 20:40:16,416 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-20 20:40:16,417 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-20 20:40:16,417 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-20 20:40:16,418 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-20 20:40:16,419 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-20 20:40:16,420 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-20 20:40:16,421 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-20 20:40:16,458 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-20 20:40:16,459 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-20 20:40:16,459 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-20 20:40:16,460 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-20 20:40:16,461 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-20 20:40:16,461 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-20 20:40:16,461 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-20 20:40:16,461 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-20 20:40:16,461 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-20 20:40:16,462 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-20 20:40:16,463 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-20 20:40:16,463 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-20 20:40:16,463 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-20 20:40:16,463 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-20 20:40:16,464 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-20 20:40:16,464 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-20 20:40:16,464 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-20 20:40:16,464 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-20 20:40:16,465 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-20 20:40:16,465 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-20 20:40:16,465 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-20 20:40:16,466 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-20 20:40:16,466 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-20 20:40:16,466 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-20 20:40:16,466 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-20 20:40:16,467 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-20 20:40:16,467 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-20 20:40:16,467 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-20 20:40:16,467 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-20 20:40:16,467 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-20 20:40:16,468 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-20 20:40:16,468 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-20 20:40:16,468 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-20 20:40:16,469 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-20 20:40:16,469 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-20 20:40:16,469 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-20 20:40:16,469 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-20 20:40:16,469 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-20 20:40:16,470 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-20 20:40:16,470 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-20 20:40:16,470 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-20 20:40:16,470 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9 Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> e7a194b3d6e079d2329a0d70eaa59b34ff3d58300de8b046ef1cd7cff7f67b94 [2022-11-20 20:40:16,776 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-20 20:40:16,798 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-20 20:40:16,801 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-20 20:40:16,803 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-20 20:40:16,803 INFO L275 PluginConnector]: CDTParser initialized [2022-11-20 20:40:16,805 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/../../sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c [2022-11-20 20:40:19,814 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-20 20:40:20,051 INFO L351 CDTParser]: Found 1 translation units. [2022-11-20 20:40:20,078 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c [2022-11-20 20:40:20,130 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/data/d4155b7ad/dd8f9d77da374eae8eb511afacd9f841/FLAG1b6e0c2fd [2022-11-20 20:40:20,149 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/data/d4155b7ad/dd8f9d77da374eae8eb511afacd9f841 [2022-11-20 20:40:20,151 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-20 20:40:20,153 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-20 20:40:20,154 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-20 20:40:20,155 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-20 20:40:20,159 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-20 20:40:20,160 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,161 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@367c3bbe and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20, skipping insertion in model container [2022-11-20 20:40:20,161 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,169 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-20 20:40:20,209 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-20 20:40:20,554 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c[17915,17928] [2022-11-20 20:40:20,562 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-20 20:40:20,572 INFO L203 MainTranslator]: Completed pre-run [2022-11-20 20:40:20,625 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/sv-benchmarks/c/product-lines/minepump_spec5_product53.cil.c[17915,17928] [2022-11-20 20:40:20,629 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-20 20:40:20,653 INFO L208 MainTranslator]: Completed translation [2022-11-20 20:40:20,654 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20 WrapperNode [2022-11-20 20:40:20,654 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-20 20:40:20,655 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-20 20:40:20,656 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-20 20:40:20,656 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-20 20:40:20,663 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,688 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,734 INFO L138 Inliner]: procedures = 58, calls = 105, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 230 [2022-11-20 20:40:20,735 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-20 20:40:20,736 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-20 20:40:20,736 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-20 20:40:20,736 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-20 20:40:20,747 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,748 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,764 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,764 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,770 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,781 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,783 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,784 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,787 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-20 20:40:20,793 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-20 20:40:20,794 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-20 20:40:20,795 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-20 20:40:20,796 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (1/1) ... [2022-11-20 20:40:20,812 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-20 20:40:20,825 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 [2022-11-20 20:40:20,837 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-20 20:40:20,863 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-20 20:40:20,886 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-20 20:40:20,886 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-20 20:40:20,886 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-20 20:40:20,887 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-20 20:40:20,887 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-20 20:40:20,887 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-20 20:40:20,887 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-20 20:40:20,887 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-20 20:40:20,888 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-20 20:40:20,888 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-20 20:40:20,888 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-20 20:40:20,888 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2022-11-20 20:40:20,888 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2022-11-20 20:40:20,889 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2022-11-20 20:40:20,889 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2022-11-20 20:40:20,889 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-20 20:40:20,889 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-20 20:40:20,889 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-20 20:40:20,889 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-20 20:40:20,890 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-20 20:40:20,890 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-20 20:40:20,890 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-20 20:40:21,033 INFO L235 CfgBuilder]: Building ICFG [2022-11-20 20:40:21,035 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-20 20:40:21,382 INFO L276 CfgBuilder]: Performing block encoding [2022-11-20 20:40:21,499 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-20 20:40:21,499 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-20 20:40:21,502 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 20.11 08:40:21 BoogieIcfgContainer [2022-11-20 20:40:21,502 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-20 20:40:21,505 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-20 20:40:21,505 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-20 20:40:21,508 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-20 20:40:21,508 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 20.11 08:40:20" (1/3) ... [2022-11-20 20:40:21,509 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@4097e87f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 20.11 08:40:21, skipping insertion in model container [2022-11-20 20:40:21,509 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 20.11 08:40:20" (2/3) ... [2022-11-20 20:40:21,510 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@4097e87f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 20.11 08:40:21, skipping insertion in model container [2022-11-20 20:40:21,510 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 20.11 08:40:21" (3/3) ... [2022-11-20 20:40:21,516 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product53.cil.c [2022-11-20 20:40:21,539 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-20 20:40:21,539 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-20 20:40:21,613 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-20 20:40:21,621 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@326e6b33, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-20 20:40:21,622 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-20 20:40:21,626 INFO L276 IsEmpty]: Start isEmpty. Operand has 69 states, 42 states have (on average 1.4285714285714286) internal successors, (60), 52 states have internal predecessors, (60), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) [2022-11-20 20:40:21,639 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2022-11-20 20:40:21,639 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:21,640 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:21,641 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:21,646 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:21,646 INFO L85 PathProgramCache]: Analyzing trace with hash 1080362011, now seen corresponding path program 1 times [2022-11-20 20:40:21,656 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:21,657 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [212959016] [2022-11-20 20:40:21,657 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:21,658 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:21,762 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:21,830 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-20 20:40:21,830 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:21,831 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [212959016] [2022-11-20 20:40:21,832 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [212959016] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-20 20:40:21,832 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-20 20:40:21,832 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-20 20:40:21,834 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [510419746] [2022-11-20 20:40:21,835 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-20 20:40:21,839 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-20 20:40:21,839 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:21,872 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-20 20:40:21,872 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-20 20:40:21,875 INFO L87 Difference]: Start difference. First operand has 69 states, 42 states have (on average 1.4285714285714286) internal successors, (60), 52 states have internal predecessors, (60), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-20 20:40:22,000 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:22,000 INFO L93 Difference]: Finished difference Result 136 states and 185 transitions. [2022-11-20 20:40:22,003 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-20 20:40:22,004 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2022-11-20 20:40:22,005 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:22,019 INFO L225 Difference]: With dead ends: 136 [2022-11-20 20:40:22,019 INFO L226 Difference]: Without dead ends: 64 [2022-11-20 20:40:22,024 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-20 20:40:22,035 INFO L413 NwaCegarLoop]: 71 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 71 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:22,037 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 71 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-20 20:40:22,055 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 64 states. [2022-11-20 20:40:22,077 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 64 to 64. [2022-11-20 20:40:22,079 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 64 states, 39 states have (on average 1.3333333333333333) internal successors, (52), 48 states have internal predecessors, (52), 16 states have call successors, (16), 9 states have call predecessors, (16), 8 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2022-11-20 20:40:22,081 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 64 states to 64 states and 83 transitions. [2022-11-20 20:40:22,083 INFO L78 Accepts]: Start accepts. Automaton has 64 states and 83 transitions. Word has length 21 [2022-11-20 20:40:22,083 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:22,083 INFO L495 AbstractCegarLoop]: Abstraction has 64 states and 83 transitions. [2022-11-20 20:40:22,084 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-20 20:40:22,084 INFO L276 IsEmpty]: Start isEmpty. Operand 64 states and 83 transitions. [2022-11-20 20:40:22,086 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2022-11-20 20:40:22,086 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:22,087 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:22,087 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-20 20:40:22,087 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:22,088 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:22,088 INFO L85 PathProgramCache]: Analyzing trace with hash 1884563309, now seen corresponding path program 1 times [2022-11-20 20:40:22,088 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:22,089 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1812769826] [2022-11-20 20:40:22,089 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:22,089 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:22,138 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:22,306 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-20 20:40:22,306 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:22,307 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1812769826] [2022-11-20 20:40:22,307 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1812769826] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-20 20:40:22,307 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-20 20:40:22,308 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-20 20:40:22,308 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [305507871] [2022-11-20 20:40:22,309 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-20 20:40:22,312 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-20 20:40:22,316 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:22,318 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-20 20:40:22,319 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-20 20:40:22,319 INFO L87 Difference]: Start difference. First operand 64 states and 83 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-20 20:40:22,408 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:22,408 INFO L93 Difference]: Finished difference Result 126 states and 167 transitions. [2022-11-20 20:40:22,414 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-20 20:40:22,414 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 24 [2022-11-20 20:40:22,414 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:22,416 INFO L225 Difference]: With dead ends: 126 [2022-11-20 20:40:22,416 INFO L226 Difference]: Without dead ends: 64 [2022-11-20 20:40:22,417 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-20 20:40:22,418 INFO L413 NwaCegarLoop]: 65 mSDtfsCounter, 70 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 70 SdHoareTripleChecker+Valid, 65 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:22,419 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [70 Valid, 65 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-20 20:40:22,420 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 64 states. [2022-11-20 20:40:22,432 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 64 to 64. [2022-11-20 20:40:22,433 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 64 states, 39 states have (on average 1.3076923076923077) internal successors, (51), 48 states have internal predecessors, (51), 16 states have call successors, (16), 9 states have call predecessors, (16), 8 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2022-11-20 20:40:22,434 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 64 states to 64 states and 82 transitions. [2022-11-20 20:40:22,434 INFO L78 Accepts]: Start accepts. Automaton has 64 states and 82 transitions. Word has length 24 [2022-11-20 20:40:22,436 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:22,436 INFO L495 AbstractCegarLoop]: Abstraction has 64 states and 82 transitions. [2022-11-20 20:40:22,436 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-20 20:40:22,436 INFO L276 IsEmpty]: Start isEmpty. Operand 64 states and 82 transitions. [2022-11-20 20:40:22,438 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 31 [2022-11-20 20:40:22,438 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:22,447 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:22,447 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-20 20:40:22,447 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:22,448 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:22,448 INFO L85 PathProgramCache]: Analyzing trace with hash -250429362, now seen corresponding path program 1 times [2022-11-20 20:40:22,448 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:22,448 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [905637337] [2022-11-20 20:40:22,449 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:22,449 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:22,486 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:22,639 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-20 20:40:22,639 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:22,640 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [905637337] [2022-11-20 20:40:22,640 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [905637337] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-20 20:40:22,640 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-20 20:40:22,640 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-20 20:40:22,641 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1690823233] [2022-11-20 20:40:22,641 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-20 20:40:22,641 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-20 20:40:22,641 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:22,642 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-20 20:40:22,642 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-20 20:40:22,642 INFO L87 Difference]: Start difference. First operand 64 states and 82 transitions. Second operand has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-11-20 20:40:22,751 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:22,751 INFO L93 Difference]: Finished difference Result 175 states and 238 transitions. [2022-11-20 20:40:22,752 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-20 20:40:22,752 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 30 [2022-11-20 20:40:22,752 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:22,754 INFO L225 Difference]: With dead ends: 175 [2022-11-20 20:40:22,754 INFO L226 Difference]: Without dead ends: 113 [2022-11-20 20:40:22,756 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-20 20:40:22,757 INFO L413 NwaCegarLoop]: 90 mSDtfsCounter, 57 mSDsluCounter, 59 mSDsCounter, 0 mSdLazyCounter, 34 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 57 SdHoareTripleChecker+Valid, 149 SdHoareTripleChecker+Invalid, 40 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 34 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:22,758 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [57 Valid, 149 Invalid, 40 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 34 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-20 20:40:22,759 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 113 states. [2022-11-20 20:40:22,787 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 113 to 111. [2022-11-20 20:40:22,787 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 111 states, 71 states have (on average 1.2535211267605635) internal successors, (89), 79 states have internal predecessors, (89), 24 states have call successors, (24), 17 states have call predecessors, (24), 15 states have return successors, (32), 20 states have call predecessors, (32), 22 states have call successors, (32) [2022-11-20 20:40:22,790 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 111 states to 111 states and 145 transitions. [2022-11-20 20:40:22,790 INFO L78 Accepts]: Start accepts. Automaton has 111 states and 145 transitions. Word has length 30 [2022-11-20 20:40:22,790 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:22,791 INFO L495 AbstractCegarLoop]: Abstraction has 111 states and 145 transitions. [2022-11-20 20:40:22,791 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-11-20 20:40:22,791 INFO L276 IsEmpty]: Start isEmpty. Operand 111 states and 145 transitions. [2022-11-20 20:40:22,792 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2022-11-20 20:40:22,793 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:22,793 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:22,793 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-20 20:40:22,793 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:22,794 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:22,794 INFO L85 PathProgramCache]: Analyzing trace with hash 851485166, now seen corresponding path program 1 times [2022-11-20 20:40:22,794 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:22,794 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1789122926] [2022-11-20 20:40:22,794 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:22,795 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:22,823 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:22,902 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-20 20:40:22,903 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:22,903 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1789122926] [2022-11-20 20:40:22,903 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1789122926] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-20 20:40:22,904 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-20 20:40:22,905 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-20 20:40:22,905 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [242312133] [2022-11-20 20:40:22,906 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-20 20:40:22,907 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-20 20:40:22,907 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:22,907 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-20 20:40:22,908 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-20 20:40:22,908 INFO L87 Difference]: Start difference. First operand 111 states and 145 transitions. Second operand has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2022-11-20 20:40:22,984 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:22,984 INFO L93 Difference]: Finished difference Result 178 states and 228 transitions. [2022-11-20 20:40:22,985 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-20 20:40:22,985 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 35 [2022-11-20 20:40:22,985 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:22,986 INFO L225 Difference]: With dead ends: 178 [2022-11-20 20:40:22,987 INFO L226 Difference]: Without dead ends: 95 [2022-11-20 20:40:22,988 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-20 20:40:22,989 INFO L413 NwaCegarLoop]: 56 mSDtfsCounter, 7 mSDsluCounter, 47 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 103 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:22,990 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 103 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-20 20:40:22,991 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 95 states. [2022-11-20 20:40:23,007 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 95 to 95. [2022-11-20 20:40:23,008 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 95 states, 61 states have (on average 1.2622950819672132) internal successors, (77), 69 states have internal predecessors, (77), 18 states have call successors, (18), 15 states have call predecessors, (18), 15 states have return successors, (24), 16 states have call predecessors, (24), 18 states have call successors, (24) [2022-11-20 20:40:23,009 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 95 states to 95 states and 119 transitions. [2022-11-20 20:40:23,010 INFO L78 Accepts]: Start accepts. Automaton has 95 states and 119 transitions. Word has length 35 [2022-11-20 20:40:23,010 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:23,010 INFO L495 AbstractCegarLoop]: Abstraction has 95 states and 119 transitions. [2022-11-20 20:40:23,010 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2022-11-20 20:40:23,010 INFO L276 IsEmpty]: Start isEmpty. Operand 95 states and 119 transitions. [2022-11-20 20:40:23,011 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 38 [2022-11-20 20:40:23,012 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:23,012 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:23,012 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-20 20:40:23,012 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:23,013 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:23,013 INFO L85 PathProgramCache]: Analyzing trace with hash 1402126779, now seen corresponding path program 1 times [2022-11-20 20:40:23,013 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:23,013 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [681028616] [2022-11-20 20:40:23,014 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:23,014 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:23,030 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:23,409 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-20 20:40:23,409 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:23,409 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [681028616] [2022-11-20 20:40:23,410 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [681028616] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-20 20:40:23,410 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-20 20:40:23,410 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-11-20 20:40:23,411 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1037781934] [2022-11-20 20:40:23,411 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-20 20:40:23,411 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-20 20:40:23,411 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:23,412 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-20 20:40:23,412 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2022-11-20 20:40:23,413 INFO L87 Difference]: Start difference. First operand 95 states and 119 transitions. Second operand has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2022-11-20 20:40:23,657 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:23,661 INFO L93 Difference]: Finished difference Result 277 states and 346 transitions. [2022-11-20 20:40:23,662 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-11-20 20:40:23,662 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 37 [2022-11-20 20:40:23,663 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:23,669 INFO L225 Difference]: With dead ends: 277 [2022-11-20 20:40:23,670 INFO L226 Difference]: Without dead ends: 184 [2022-11-20 20:40:23,671 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2022-11-20 20:40:23,673 INFO L413 NwaCegarLoop]: 91 mSDtfsCounter, 109 mSDsluCounter, 142 mSDsCounter, 0 mSdLazyCounter, 131 mSolverCounterSat, 25 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 110 SdHoareTripleChecker+Valid, 233 SdHoareTripleChecker+Invalid, 156 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 25 IncrementalHoareTripleChecker+Valid, 131 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:23,679 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [110 Valid, 233 Invalid, 156 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [25 Valid, 131 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-20 20:40:23,680 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 184 states. [2022-11-20 20:40:23,723 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 184 to 176. [2022-11-20 20:40:23,726 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 176 states, 113 states have (on average 1.238938053097345) internal successors, (140), 125 states have internal predecessors, (140), 33 states have call successors, (33), 28 states have call predecessors, (33), 29 states have return successors, (45), 30 states have call predecessors, (45), 33 states have call successors, (45) [2022-11-20 20:40:23,729 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 176 states to 176 states and 218 transitions. [2022-11-20 20:40:23,729 INFO L78 Accepts]: Start accepts. Automaton has 176 states and 218 transitions. Word has length 37 [2022-11-20 20:40:23,730 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:23,730 INFO L495 AbstractCegarLoop]: Abstraction has 176 states and 218 transitions. [2022-11-20 20:40:23,730 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2022-11-20 20:40:23,731 INFO L276 IsEmpty]: Start isEmpty. Operand 176 states and 218 transitions. [2022-11-20 20:40:23,737 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2022-11-20 20:40:23,737 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:23,737 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:23,738 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-20 20:40:23,738 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:23,738 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:23,739 INFO L85 PathProgramCache]: Analyzing trace with hash 775405151, now seen corresponding path program 1 times [2022-11-20 20:40:23,739 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:23,739 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [751876318] [2022-11-20 20:40:23,739 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:23,740 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:23,773 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:24,156 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-20 20:40:24,156 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:24,156 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [751876318] [2022-11-20 20:40:24,156 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [751876318] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-20 20:40:24,157 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-20 20:40:24,157 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-11-20 20:40:24,157 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [240663273] [2022-11-20 20:40:24,157 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-20 20:40:24,158 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-11-20 20:40:24,159 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:24,159 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-11-20 20:40:24,159 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-11-20 20:40:24,160 INFO L87 Difference]: Start difference. First operand 176 states and 218 transitions. Second operand has 8 states, 7 states have (on average 4.0) internal successors, (28), 7 states have internal predecessors, (28), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-20 20:40:24,833 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:24,833 INFO L93 Difference]: Finished difference Result 424 states and 540 transitions. [2022-11-20 20:40:24,834 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-20 20:40:24,834 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 4.0) internal successors, (28), 7 states have internal predecessors, (28), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) Word has length 40 [2022-11-20 20:40:24,835 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:24,841 INFO L225 Difference]: With dead ends: 424 [2022-11-20 20:40:24,841 INFO L226 Difference]: Without dead ends: 304 [2022-11-20 20:40:24,842 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 4 SyntacticMatches, 1 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 30 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=67, Invalid=143, Unknown=0, NotChecked=0, Total=210 [2022-11-20 20:40:24,849 INFO L413 NwaCegarLoop]: 76 mSDtfsCounter, 179 mSDsluCounter, 213 mSDsCounter, 0 mSdLazyCounter, 455 mSolverCounterSat, 67 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 187 SdHoareTripleChecker+Valid, 289 SdHoareTripleChecker+Invalid, 522 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 67 IncrementalHoareTripleChecker+Valid, 455 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:24,854 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [187 Valid, 289 Invalid, 522 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [67 Valid, 455 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-20 20:40:24,855 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 304 states. [2022-11-20 20:40:24,897 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 304 to 261. [2022-11-20 20:40:24,898 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 261 states, 172 states have (on average 1.244186046511628) internal successors, (214), 189 states have internal predecessors, (214), 46 states have call successors, (46), 35 states have call predecessors, (46), 42 states have return successors, (65), 47 states have call predecessors, (65), 46 states have call successors, (65) [2022-11-20 20:40:24,900 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 261 states to 261 states and 325 transitions. [2022-11-20 20:40:24,900 INFO L78 Accepts]: Start accepts. Automaton has 261 states and 325 transitions. Word has length 40 [2022-11-20 20:40:24,900 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:24,901 INFO L495 AbstractCegarLoop]: Abstraction has 261 states and 325 transitions. [2022-11-20 20:40:24,901 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 4.0) internal successors, (28), 7 states have internal predecessors, (28), 5 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-20 20:40:24,901 INFO L276 IsEmpty]: Start isEmpty. Operand 261 states and 325 transitions. [2022-11-20 20:40:24,902 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 41 [2022-11-20 20:40:24,902 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:24,902 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:24,903 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-20 20:40:24,903 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:24,903 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:24,903 INFO L85 PathProgramCache]: Analyzing trace with hash 1685826622, now seen corresponding path program 1 times [2022-11-20 20:40:24,904 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:24,904 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1757043455] [2022-11-20 20:40:24,904 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:24,904 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:24,916 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:25,037 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-20 20:40:25,038 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:25,038 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1757043455] [2022-11-20 20:40:25,038 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1757043455] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-20 20:40:25,038 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-20 20:40:25,038 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-11-20 20:40:25,039 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1180513295] [2022-11-20 20:40:25,039 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-20 20:40:25,039 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2022-11-20 20:40:25,039 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:25,040 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2022-11-20 20:40:25,040 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2022-11-20 20:40:25,040 INFO L87 Difference]: Start difference. First operand 261 states and 325 transitions. Second operand has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-20 20:40:25,381 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:25,381 INFO L93 Difference]: Finished difference Result 555 states and 698 transitions. [2022-11-20 20:40:25,382 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-11-20 20:40:25,382 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) Word has length 40 [2022-11-20 20:40:25,383 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:25,385 INFO L225 Difference]: With dead ends: 555 [2022-11-20 20:40:25,385 INFO L226 Difference]: Without dead ends: 296 [2022-11-20 20:40:25,386 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 20 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 22 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=53, Invalid=157, Unknown=0, NotChecked=0, Total=210 [2022-11-20 20:40:25,387 INFO L413 NwaCegarLoop]: 61 mSDtfsCounter, 69 mSDsluCounter, 215 mSDsCounter, 0 mSdLazyCounter, 267 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 75 SdHoareTripleChecker+Valid, 276 SdHoareTripleChecker+Invalid, 306 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 267 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:25,387 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [75 Valid, 276 Invalid, 306 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 267 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-20 20:40:25,388 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 296 states. [2022-11-20 20:40:25,427 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 296 to 268. [2022-11-20 20:40:25,428 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 268 states, 176 states have (on average 1.2102272727272727) internal successors, (213), 193 states have internal predecessors, (213), 47 states have call successors, (47), 35 states have call predecessors, (47), 44 states have return successors, (70), 50 states have call predecessors, (70), 47 states have call successors, (70) [2022-11-20 20:40:25,430 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 268 states to 268 states and 330 transitions. [2022-11-20 20:40:25,431 INFO L78 Accepts]: Start accepts. Automaton has 268 states and 330 transitions. Word has length 40 [2022-11-20 20:40:25,431 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:25,431 INFO L495 AbstractCegarLoop]: Abstraction has 268 states and 330 transitions. [2022-11-20 20:40:25,431 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 2 states have call successors, (6), 3 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-20 20:40:25,432 INFO L276 IsEmpty]: Start isEmpty. Operand 268 states and 330 transitions. [2022-11-20 20:40:25,433 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 71 [2022-11-20 20:40:25,433 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:25,434 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:25,434 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-20 20:40:25,434 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:25,434 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:25,435 INFO L85 PathProgramCache]: Analyzing trace with hash 1803947791, now seen corresponding path program 1 times [2022-11-20 20:40:25,435 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:25,435 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2131660131] [2022-11-20 20:40:25,435 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:25,435 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:25,452 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:25,553 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 8 proven. 12 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-20 20:40:25,554 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:25,554 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2131660131] [2022-11-20 20:40:25,554 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2131660131] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-20 20:40:25,554 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1288189199] [2022-11-20 20:40:25,554 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:25,554 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-20 20:40:25,555 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 [2022-11-20 20:40:25,558 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-20 20:40:25,571 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-20 20:40:25,689 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:25,692 INFO L263 TraceCheckSpWp]: Trace formula consists of 322 conjuncts, 4 conjunts are in the unsatisfiable core [2022-11-20 20:40:25,701 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-20 20:40:25,852 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 32 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-20 20:40:25,852 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-20 20:40:25,852 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1288189199] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-20 20:40:25,853 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-20 20:40:25,853 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [7] total 8 [2022-11-20 20:40:25,853 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1731754596] [2022-11-20 20:40:25,853 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-20 20:40:25,855 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-20 20:40:25,855 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:25,856 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-20 20:40:25,856 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2022-11-20 20:40:25,857 INFO L87 Difference]: Start difference. First operand 268 states and 330 transitions. Second operand has 3 states, 3 states have (on average 17.0) internal successors, (51), 3 states have internal predecessors, (51), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) [2022-11-20 20:40:25,945 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:25,946 INFO L93 Difference]: Finished difference Result 405 states and 503 transitions. [2022-11-20 20:40:25,946 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-20 20:40:25,947 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 17.0) internal successors, (51), 3 states have internal predecessors, (51), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) Word has length 70 [2022-11-20 20:40:25,947 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:25,948 INFO L225 Difference]: With dead ends: 405 [2022-11-20 20:40:25,948 INFO L226 Difference]: Without dead ends: 258 [2022-11-20 20:40:25,949 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 77 GetRequests, 71 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 8 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=35, Unknown=0, NotChecked=0, Total=56 [2022-11-20 20:40:25,951 INFO L413 NwaCegarLoop]: 80 mSDtfsCounter, 35 mSDsluCounter, 39 mSDsCounter, 0 mSdLazyCounter, 36 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 35 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 38 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 36 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:25,951 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [35 Valid, 119 Invalid, 38 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 36 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-20 20:40:25,953 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 258 states. [2022-11-20 20:40:25,989 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 258 to 258. [2022-11-20 20:40:25,990 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 258 states, 169 states have (on average 1.1775147928994083) internal successors, (199), 185 states have internal predecessors, (199), 45 states have call successors, (45), 35 states have call predecessors, (45), 43 states have return successors, (56), 48 states have call predecessors, (56), 45 states have call successors, (56) [2022-11-20 20:40:25,991 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 258 states to 258 states and 300 transitions. [2022-11-20 20:40:25,992 INFO L78 Accepts]: Start accepts. Automaton has 258 states and 300 transitions. Word has length 70 [2022-11-20 20:40:25,992 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:25,992 INFO L495 AbstractCegarLoop]: Abstraction has 258 states and 300 transitions. [2022-11-20 20:40:25,993 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 17.0) internal successors, (51), 3 states have internal predecessors, (51), 3 states have call successors, (10), 3 states have call predecessors, (10), 3 states have return successors, (9), 3 states have call predecessors, (9), 3 states have call successors, (9) [2022-11-20 20:40:25,993 INFO L276 IsEmpty]: Start isEmpty. Operand 258 states and 300 transitions. [2022-11-20 20:40:25,994 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 75 [2022-11-20 20:40:25,994 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:25,994 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:26,006 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-20 20:40:26,201 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-20 20:40:26,201 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:26,201 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:26,202 INFO L85 PathProgramCache]: Analyzing trace with hash -925446459, now seen corresponding path program 1 times [2022-11-20 20:40:26,202 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:26,202 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1116159387] [2022-11-20 20:40:26,202 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:26,202 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:26,239 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:26,441 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 5 proven. 16 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-11-20 20:40:26,441 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:26,442 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1116159387] [2022-11-20 20:40:26,442 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1116159387] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-20 20:40:26,442 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [410731921] [2022-11-20 20:40:26,442 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:26,442 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-20 20:40:26,443 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 [2022-11-20 20:40:26,444 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-20 20:40:26,470 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-20 20:40:26,561 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:26,563 INFO L263 TraceCheckSpWp]: Trace formula consists of 342 conjuncts, 8 conjunts are in the unsatisfiable core [2022-11-20 20:40:26,566 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-20 20:40:26,713 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 20 proven. 9 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-20 20:40:26,714 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-20 20:40:26,937 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 13 proven. 8 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-11-20 20:40:26,937 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [410731921] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-20 20:40:26,937 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1783569385] [2022-11-20 20:40:26,961 INFO L159 IcfgInterpreter]: Started Sifa with 48 locations of interest [2022-11-20 20:40:26,961 INFO L166 IcfgInterpreter]: Building call graph [2022-11-20 20:40:26,965 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-20 20:40:26,971 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-20 20:40:26,971 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-20 20:40:30,435 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 54 for LOIs [2022-11-20 20:40:30,446 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 48 for LOIs [2022-11-20 20:40:30,988 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 64 for LOIs [2022-11-20 20:40:31,539 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 57 for LOIs [2022-11-20 20:40:31,628 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 20 for LOIs [2022-11-20 20:40:31,630 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 39 for LOIs [2022-11-20 20:40:31,637 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-20 20:40:37,806 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6317#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (<= ~pumpRunning~0 2147483647) (= ~methaneLevelCritical~0 0) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (= ~head~0.offset 0) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 0)) (<= |old(~pumpRunning~0)| 2147483647) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (= 1 ~systemActive~0) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| 2)) (<= 0 (+ 2147483648 |timeShift_getWaterLevel_#res#1|)) (<= |timeShift_getWaterLevel_#res#1| 2147483647) (= ~head~0.base 0) (<= 0 (+ ~pumpRunning~0 2147483648)) (= |#NULL.offset| 0) (= ~switchedOnBeforeTS~0 0) (<= 0 |#StackHeapBarrier|) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-20 20:40:37,806 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-20 20:40:37,807 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-20 20:40:37,807 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 6, 6] total 15 [2022-11-20 20:40:37,807 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1878794930] [2022-11-20 20:40:37,807 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-20 20:40:37,808 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2022-11-20 20:40:37,808 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:37,808 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2022-11-20 20:40:37,809 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=293, Invalid=1963, Unknown=0, NotChecked=0, Total=2256 [2022-11-20 20:40:37,810 INFO L87 Difference]: Start difference. First operand 258 states and 300 transitions. Second operand has 15 states, 12 states have (on average 7.916666666666667) internal successors, (95), 13 states have internal predecessors, (95), 7 states have call successors, (23), 4 states have call predecessors, (23), 8 states have return successors, (22), 10 states have call predecessors, (22), 7 states have call successors, (22) [2022-11-20 20:40:38,655 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:38,655 INFO L93 Difference]: Finished difference Result 338 states and 403 transitions. [2022-11-20 20:40:38,655 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2022-11-20 20:40:38,656 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 12 states have (on average 7.916666666666667) internal successors, (95), 13 states have internal predecessors, (95), 7 states have call successors, (23), 4 states have call predecessors, (23), 8 states have return successors, (22), 10 states have call predecessors, (22), 7 states have call successors, (22) Word has length 74 [2022-11-20 20:40:38,656 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:38,658 INFO L225 Difference]: With dead ends: 338 [2022-11-20 20:40:38,658 INFO L226 Difference]: Without dead ends: 336 [2022-11-20 20:40:38,659 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 250 GetRequests, 179 SyntacticMatches, 11 SemanticMatches, 60 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1439 ImplicationChecksByTransitivity, 6.6s TimeCoverageRelationStatistics Valid=466, Invalid=3316, Unknown=0, NotChecked=0, Total=3782 [2022-11-20 20:40:38,660 INFO L413 NwaCegarLoop]: 118 mSDtfsCounter, 174 mSDsluCounter, 545 mSDsCounter, 0 mSdLazyCounter, 524 mSolverCounterSat, 123 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 663 SdHoareTripleChecker+Invalid, 647 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 123 IncrementalHoareTripleChecker+Valid, 524 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:38,660 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 663 Invalid, 647 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [123 Valid, 524 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-20 20:40:38,661 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 336 states. [2022-11-20 20:40:38,686 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 336 to 294. [2022-11-20 20:40:38,687 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 294 states, 190 states have (on average 1.168421052631579) internal successors, (222), 211 states have internal predecessors, (222), 53 states have call successors, (53), 43 states have call predecessors, (53), 50 states have return successors, (68), 54 states have call predecessors, (68), 53 states have call successors, (68) [2022-11-20 20:40:38,688 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 294 states to 294 states and 343 transitions. [2022-11-20 20:40:38,689 INFO L78 Accepts]: Start accepts. Automaton has 294 states and 343 transitions. Word has length 74 [2022-11-20 20:40:38,689 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:38,689 INFO L495 AbstractCegarLoop]: Abstraction has 294 states and 343 transitions. [2022-11-20 20:40:38,690 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 12 states have (on average 7.916666666666667) internal successors, (95), 13 states have internal predecessors, (95), 7 states have call successors, (23), 4 states have call predecessors, (23), 8 states have return successors, (22), 10 states have call predecessors, (22), 7 states have call successors, (22) [2022-11-20 20:40:38,690 INFO L276 IsEmpty]: Start isEmpty. Operand 294 states and 343 transitions. [2022-11-20 20:40:38,691 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 94 [2022-11-20 20:40:38,691 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:38,691 INFO L195 NwaCegarLoop]: trace histogram [4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:38,706 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-20 20:40:38,897 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-20 20:40:38,897 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:38,897 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:38,898 INFO L85 PathProgramCache]: Analyzing trace with hash 979712234, now seen corresponding path program 1 times [2022-11-20 20:40:38,898 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:38,898 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [628159748] [2022-11-20 20:40:38,898 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:38,898 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:38,920 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:39,148 INFO L134 CoverageAnalysis]: Checked inductivity of 70 backedges. 33 proven. 3 refuted. 0 times theorem prover too weak. 34 trivial. 0 not checked. [2022-11-20 20:40:39,148 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:39,148 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [628159748] [2022-11-20 20:40:39,149 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [628159748] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-20 20:40:39,149 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [156924301] [2022-11-20 20:40:39,149 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:39,149 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-20 20:40:39,149 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 [2022-11-20 20:40:39,150 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-20 20:40:39,172 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-20 20:40:39,256 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:39,258 INFO L263 TraceCheckSpWp]: Trace formula consists of 407 conjuncts, 18 conjunts are in the unsatisfiable core [2022-11-20 20:40:39,261 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-20 20:40:39,488 INFO L134 CoverageAnalysis]: Checked inductivity of 70 backedges. 63 proven. 3 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2022-11-20 20:40:39,488 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-20 20:40:39,836 INFO L134 CoverageAnalysis]: Checked inductivity of 70 backedges. 45 proven. 3 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2022-11-20 20:40:39,837 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [156924301] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-20 20:40:39,837 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [414889059] [2022-11-20 20:40:39,839 INFO L159 IcfgInterpreter]: Started Sifa with 45 locations of interest [2022-11-20 20:40:39,839 INFO L166 IcfgInterpreter]: Building call graph [2022-11-20 20:40:39,840 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-20 20:40:39,840 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-20 20:40:39,840 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-20 20:40:41,974 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 35 for LOIs [2022-11-20 20:40:41,978 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 30 for LOIs [2022-11-20 20:40:42,325 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 29 for LOIs [2022-11-20 20:40:42,380 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 26 for LOIs [2022-11-20 20:40:42,403 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 56 for LOIs [2022-11-20 20:40:42,416 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-20 20:40:46,892 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7923#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (= ~head~0.offset 0) (<= |#NULL.offset| 0) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (= 1 ~systemActive~0) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| 2)) (<= ~methaneLevelCritical~0 0) (<= 0 ~head~0.base) (<= 0 ~methaneLevelCritical~0) (= |old(~waterLevel~0)| ~waterLevel~0) (<= |timeShift_getWaterLevel_#res#1| 2147483647) (<= 2 |timeShift_getWaterLevel_#res#1|) (<= ~head~0.base 0) (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|) (<= 0 |#NULL.offset|) (= ~switchedOnBeforeTS~0 0) (<= 0 |#StackHeapBarrier|) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|) (= ~pumpRunning~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-20 20:40:46,892 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-20 20:40:46,892 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-20 20:40:46,892 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 9, 9] total 20 [2022-11-20 20:40:46,892 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [423213878] [2022-11-20 20:40:46,893 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-20 20:40:46,893 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2022-11-20 20:40:46,893 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:46,894 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2022-11-20 20:40:46,895 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=269, Invalid=1893, Unknown=0, NotChecked=0, Total=2162 [2022-11-20 20:40:46,895 INFO L87 Difference]: Start difference. First operand 294 states and 343 transitions. Second operand has 20 states, 20 states have (on average 5.4) internal successors, (108), 20 states have internal predecessors, (108), 9 states have call successors, (23), 5 states have call predecessors, (23), 8 states have return successors, (24), 10 states have call predecessors, (24), 9 states have call successors, (24) [2022-11-20 20:40:48,739 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:40:48,739 INFO L93 Difference]: Finished difference Result 859 states and 1094 transitions. [2022-11-20 20:40:48,740 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 32 states. [2022-11-20 20:40:48,741 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 5.4) internal successors, (108), 20 states have internal predecessors, (108), 9 states have call successors, (23), 5 states have call predecessors, (23), 8 states have return successors, (24), 10 states have call predecessors, (24), 9 states have call successors, (24) Word has length 93 [2022-11-20 20:40:48,741 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:40:48,746 INFO L225 Difference]: With dead ends: 859 [2022-11-20 20:40:48,746 INFO L226 Difference]: Without dead ends: 559 [2022-11-20 20:40:48,748 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 332 GetRequests, 249 SyntacticMatches, 11 SemanticMatches, 72 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2064 ImplicationChecksByTransitivity, 5.4s TimeCoverageRelationStatistics Valid=645, Invalid=4757, Unknown=0, NotChecked=0, Total=5402 [2022-11-20 20:40:48,749 INFO L413 NwaCegarLoop]: 60 mSDtfsCounter, 523 mSDsluCounter, 314 mSDsCounter, 0 mSdLazyCounter, 1075 mSolverCounterSat, 372 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 526 SdHoareTripleChecker+Valid, 374 SdHoareTripleChecker+Invalid, 1447 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 372 IncrementalHoareTripleChecker+Valid, 1075 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2022-11-20 20:40:48,751 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [526 Valid, 374 Invalid, 1447 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [372 Valid, 1075 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2022-11-20 20:40:48,752 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 559 states. [2022-11-20 20:40:48,801 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 559 to 368. [2022-11-20 20:40:48,802 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 368 states, 238 states have (on average 1.1302521008403361) internal successors, (269), 261 states have internal predecessors, (269), 63 states have call successors, (63), 56 states have call predecessors, (63), 66 states have return successors, (83), 67 states have call predecessors, (83), 63 states have call successors, (83) [2022-11-20 20:40:48,804 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 368 states to 368 states and 415 transitions. [2022-11-20 20:40:48,805 INFO L78 Accepts]: Start accepts. Automaton has 368 states and 415 transitions. Word has length 93 [2022-11-20 20:40:48,805 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:40:48,805 INFO L495 AbstractCegarLoop]: Abstraction has 368 states and 415 transitions. [2022-11-20 20:40:48,806 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 20 states have (on average 5.4) internal successors, (108), 20 states have internal predecessors, (108), 9 states have call successors, (23), 5 states have call predecessors, (23), 8 states have return successors, (24), 10 states have call predecessors, (24), 9 states have call successors, (24) [2022-11-20 20:40:48,806 INFO L276 IsEmpty]: Start isEmpty. Operand 368 states and 415 transitions. [2022-11-20 20:40:48,810 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 99 [2022-11-20 20:40:48,810 INFO L187 NwaCegarLoop]: Found error trace [2022-11-20 20:40:48,810 INFO L195 NwaCegarLoop]: trace histogram [5, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:40:48,835 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-20 20:40:49,031 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-20 20:40:49,031 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-20 20:40:49,031 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-20 20:40:49,031 INFO L85 PathProgramCache]: Analyzing trace with hash 72161971, now seen corresponding path program 1 times [2022-11-20 20:40:49,032 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-20 20:40:49,032 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [353838893] [2022-11-20 20:40:49,032 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:49,032 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-20 20:40:49,055 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:50,204 INFO L134 CoverageAnalysis]: Checked inductivity of 81 backedges. 15 proven. 41 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2022-11-20 20:40:50,205 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-20 20:40:50,205 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [353838893] [2022-11-20 20:40:50,205 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [353838893] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-20 20:40:50,205 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1456726516] [2022-11-20 20:40:50,205 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-20 20:40:50,205 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-20 20:40:50,206 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 [2022-11-20 20:40:50,207 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-20 20:40:50,232 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-20 20:40:50,347 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-20 20:40:50,351 INFO L263 TraceCheckSpWp]: Trace formula consists of 421 conjuncts, 34 conjunts are in the unsatisfiable core [2022-11-20 20:40:50,355 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-20 20:40:50,916 INFO L134 CoverageAnalysis]: Checked inductivity of 81 backedges. 25 proven. 54 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-20 20:40:50,917 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-20 20:40:51,992 INFO L134 CoverageAnalysis]: Checked inductivity of 81 backedges. 51 proven. 5 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2022-11-20 20:40:51,992 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1456726516] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-20 20:40:51,992 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2051675892] [2022-11-20 20:40:51,998 INFO L159 IcfgInterpreter]: Started Sifa with 45 locations of interest [2022-11-20 20:40:51,998 INFO L166 IcfgInterpreter]: Building call graph [2022-11-20 20:40:51,999 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-20 20:40:52,000 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-20 20:40:52,000 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-20 20:40:54,591 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 35 for LOIs [2022-11-20 20:40:54,596 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 30 for LOIs [2022-11-20 20:40:54,739 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 26 for LOIs [2022-11-20 20:40:54,780 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 26 for LOIs [2022-11-20 20:40:54,803 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 56 for LOIs [2022-11-20 20:40:54,815 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-20 20:40:59,322 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10515#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (= ~methaneLevelCritical~0 0) (= ~head~0.offset 0) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (= 1 ~systemActive~0) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| 2)) (= |old(~waterLevel~0)| ~waterLevel~0) (<= |timeShift_getWaterLevel_#res#1| 2147483647) (<= 2 |timeShift_getWaterLevel_#res#1|) (= ~head~0.base 0) (= |#NULL.offset| 0) (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|) (= ~switchedOnBeforeTS~0 0) (<= 0 |#StackHeapBarrier|) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|) (= ~pumpRunning~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-20 20:40:59,323 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-20 20:40:59,323 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-20 20:40:59,323 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 13, 11] total 36 [2022-11-20 20:40:59,323 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [722801156] [2022-11-20 20:40:59,323 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-20 20:40:59,324 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 36 states [2022-11-20 20:40:59,324 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-20 20:40:59,325 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 36 interpolants. [2022-11-20 20:40:59,326 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=500, Invalid=3406, Unknown=0, NotChecked=0, Total=3906 [2022-11-20 20:40:59,327 INFO L87 Difference]: Start difference. First operand 368 states and 415 transitions. Second operand has 36 states, 35 states have (on average 4.885714285714286) internal successors, (171), 36 states have internal predecessors, (171), 19 states have call successors, (37), 9 states have call predecessors, (37), 13 states have return successors, (36), 21 states have call predecessors, (36), 18 states have call successors, (36) [2022-11-20 20:41:03,281 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-20 20:41:03,281 INFO L93 Difference]: Finished difference Result 901 states and 1050 transitions. [2022-11-20 20:41:03,282 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 44 states. [2022-11-20 20:41:03,282 INFO L78 Accepts]: Start accepts. Automaton has has 36 states, 35 states have (on average 4.885714285714286) internal successors, (171), 36 states have internal predecessors, (171), 19 states have call successors, (37), 9 states have call predecessors, (37), 13 states have return successors, (36), 21 states have call predecessors, (36), 18 states have call successors, (36) Word has length 98 [2022-11-20 20:41:03,283 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-20 20:41:03,283 INFO L225 Difference]: With dead ends: 901 [2022-11-20 20:41:03,283 INFO L226 Difference]: Without dead ends: 0 [2022-11-20 20:41:03,289 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 382 GetRequests, 268 SyntacticMatches, 11 SemanticMatches, 103 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4122 ImplicationChecksByTransitivity, 7.1s TimeCoverageRelationStatistics Valid=1497, Invalid=9423, Unknown=0, NotChecked=0, Total=10920 [2022-11-20 20:41:03,289 INFO L413 NwaCegarLoop]: 101 mSDtfsCounter, 1759 mSDsluCounter, 537 mSDsCounter, 0 mSdLazyCounter, 1940 mSolverCounterSat, 1396 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1759 SdHoareTripleChecker+Valid, 638 SdHoareTripleChecker+Invalid, 3336 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1396 IncrementalHoareTripleChecker+Valid, 1940 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.8s IncrementalHoareTripleChecker+Time [2022-11-20 20:41:03,290 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1759 Valid, 638 Invalid, 3336 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1396 Valid, 1940 Invalid, 0 Unknown, 0 Unchecked, 1.8s Time] [2022-11-20 20:41:03,291 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-20 20:41:03,291 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-20 20:41:03,291 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-20 20:41:03,291 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-20 20:41:03,292 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 98 [2022-11-20 20:41:03,292 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-20 20:41:03,292 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-20 20:41:03,293 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 36 states, 35 states have (on average 4.885714285714286) internal successors, (171), 36 states have internal predecessors, (171), 19 states have call successors, (37), 9 states have call predecessors, (37), 13 states have return successors, (36), 21 states have call predecessors, (36), 18 states have call successors, (36) [2022-11-20 20:41:03,293 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-20 20:41:03,293 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-20 20:41:03,296 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-20 20:41:03,310 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-20 20:41:03,511 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2022-11-20 20:41:03,513 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-20 20:41:09,930 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 551 558) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-20 20:41:09,930 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 551 558) no Hoare annotation was computed. [2022-11-20 20:41:09,930 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 458 464) no Hoare annotation was computed. [2022-11-20 20:41:09,930 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 458 464) the Hoare annotation is: true [2022-11-20 20:41:09,931 INFO L902 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 943 954) the Hoare annotation is: true [2022-11-20 20:41:09,931 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 943 954) no Hoare annotation was computed. [2022-11-20 20:41:09,931 INFO L899 garLoopResultBuilder]: For program point L833(line 833) no Hoare annotation was computed. [2022-11-20 20:41:09,931 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 812 841) no Hoare annotation was computed. [2022-11-20 20:41:09,931 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 812 841) the Hoare annotation is: true [2022-11-20 20:41:09,931 INFO L899 garLoopResultBuilder]: For program point L826(lines 826 830) no Hoare annotation was computed. [2022-11-20 20:41:09,931 INFO L902 garLoopResultBuilder]: At program point L826-1(lines 826 830) the Hoare annotation is: true [2022-11-20 20:41:09,932 INFO L902 garLoopResultBuilder]: At program point L822-2(lines 822 836) the Hoare annotation is: true [2022-11-20 20:41:09,932 INFO L902 garLoopResultBuilder]: At program point L818(line 818) the Hoare annotation is: true [2022-11-20 20:41:09,932 INFO L899 garLoopResultBuilder]: For program point L818-1(line 818) no Hoare annotation was computed. [2022-11-20 20:41:09,932 INFO L902 garLoopResultBuilder]: At program point L837(lines 812 841) the Hoare annotation is: true [2022-11-20 20:41:09,932 INFO L895 garLoopResultBuilder]: At program point L791(line 791) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse6 (= ~pumpRunning~0 1)) (.cse7 (not (= |old(~pumpRunning~0)| 1))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| ~waterLevel~0)) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse5 (<= 1 ~switchedOnBeforeTS~0))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (and .cse1 (<= ~waterLevel~0 1) .cse2 .cse3) (not (< |old(~waterLevel~0)| 3))) (let ((.cse4 (= ~waterLevel~0 1))) (or .cse0 (and .cse2 .cse4 .cse5 .cse6) .cse7 (and .cse1 .cse2 .cse4 .cse5) (not (= |old(~waterLevel~0)| 2)))) (let ((.cse9 (< 0 |old(~waterLevel~0)|))) (let ((.cse8 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse9))) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 (and (<= ~waterLevel~0 0) .cse2 (or .cse8 .cse3) .cse5 .cse6) .cse7 (and .cse1 .cse2 (or (and (not .cse9) .cse3) .cse8) .cse5) (not (<= 1 |old(~switchedOnBeforeTS~0)|))))))) [2022-11-20 20:41:09,932 INFO L899 garLoopResultBuilder]: For program point L791-1(line 791) no Hoare annotation was computed. [2022-11-20 20:41:09,933 INFO L895 garLoopResultBuilder]: At program point L445-1(lines 445 451) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse4 (= ~pumpRunning~0 1)) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (and (let ((.cse2 (= ~waterLevel~0 1))) (or .cse0 .cse1 (and .cse2 .cse3 .cse4) (not (= |old(~waterLevel~0)| 2)) (and .cse5 .cse2 .cse3))) (or (and (= 2 ~waterLevel~0) .cse6 .cse4) (not (= |old(~pumpRunning~0)| 0)) (and .cse5 .cse6) .cse0 (not (< |old(~waterLevel~0)| 3))) (let ((.cse8 (< 0 |old(~waterLevel~0)|))) (let ((.cse7 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse8))) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 (and (<= ~waterLevel~0 0) (or .cse7 .cse6) .cse3 .cse4) (not (<= 1 |old(~switchedOnBeforeTS~0)|)) (and .cse5 (or (and (not .cse8) .cse6) .cse7) .cse3)))))) [2022-11-20 20:41:09,933 INFO L895 garLoopResultBuilder]: At program point L532(line 532) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= ~pumpRunning~0 1)) (.cse4 (not (<= 1 |old(~switchedOnBeforeTS~0)|))) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 (and (= ~waterLevel~0 1) .cse2 .cse3) (not (= |old(~waterLevel~0)| 2))) (or (not (= |old(~waterLevel~0)| 1)) .cse0 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse2 .cse3) .cse1 .cse4) (or .cse0 .cse1 (and (= |old(~waterLevel~0)| ~waterLevel~0) .cse2 .cse3) (not (<= |old(~waterLevel~0)| 0)) .cse4) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< |old(~waterLevel~0)| 3))))) [2022-11-20 20:41:09,934 INFO L895 garLoopResultBuilder]: At program point L528(line 528) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= ~pumpRunning~0 1)) (.cse4 (not (<= 1 |old(~switchedOnBeforeTS~0)|))) (.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 (and (= ~waterLevel~0 1) .cse2 .cse3) (not (= |old(~waterLevel~0)| 2))) (or (not (= |old(~waterLevel~0)| 1)) .cse0 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse2 .cse3) .cse1 .cse4) (or .cse0 .cse1 (and (= |old(~waterLevel~0)| ~waterLevel~0) .cse2 .cse3) (not (<= |old(~waterLevel~0)| 0)) .cse4) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< |old(~waterLevel~0)| 3))))) [2022-11-20 20:41:09,934 INFO L895 garLoopResultBuilder]: At program point L912(line 912) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not (< |old(~waterLevel~0)| 3)))) (and (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2))) (or .cse0 .cse1 (not (<= 1 |old(~switchedOnBeforeTS~0)|)) .cse2) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse2))) [2022-11-20 20:41:09,934 INFO L895 garLoopResultBuilder]: At program point L776(line 776) the Hoare annotation is: (let ((.cse7 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse6 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (not (<= 1 |old(~switchedOnBeforeTS~0)|))) (.cse5 (not (< |old(~waterLevel~0)| 3))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (and .cse7 (= ~pumpRunning~0 1)))) (and (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse1 .cse4 .cse3 .cse5) (or .cse6 (and (= ~pumpRunning~0 0) .cse7) .cse0 .cse5) (or .cse6 .cse0 .cse4 .cse3 .cse5) (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2)) .cse2)))) [2022-11-20 20:41:09,935 INFO L895 garLoopResultBuilder]: At program point L776-1(line 776) the Hoare annotation is: (let ((.cse0 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse4 (= 1 ~systemActive~0))) (let ((.cse1 (not .cse4)) (.cse2 (and (<= 1 |timeShift___utac_acc__Specification5_spec__2_#t~ret46#1|) .cse4 .cse0 (< ~waterLevel~0 3) (= ~pumpRunning~0 1))) (.cse3 (not (= |old(~pumpRunning~0)| 1)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) .cse0) .cse1 (not (< |old(~waterLevel~0)| 3))) (or .cse1 .cse2 .cse3 (not (= |old(~waterLevel~0)| 2))) (or (not (<= |old(~waterLevel~0)| 1)) .cse1 .cse2 .cse3 (not (<= 1 |old(~switchedOnBeforeTS~0)|)))))) [2022-11-20 20:41:09,935 INFO L895 garLoopResultBuilder]: At program point L537(line 537) the Hoare annotation is: (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not (< |old(~waterLevel~0)| 3)))) (and (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2))) (or .cse0 .cse1 (not (<= 1 |old(~switchedOnBeforeTS~0)|)) .cse2) (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse0 .cse2))) [2022-11-20 20:41:09,935 INFO L899 garLoopResultBuilder]: For program point L793(lines 793 803) no Hoare annotation was computed. [2022-11-20 20:41:09,936 INFO L895 garLoopResultBuilder]: At program point L537-1(lines 518 542) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse4 (= ~pumpRunning~0 1)) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (and (let ((.cse2 (= ~waterLevel~0 1))) (or .cse0 .cse1 (and .cse2 .cse3 .cse4) (not (= |old(~waterLevel~0)| 2)) (and .cse5 .cse2 .cse3))) (or (and (= 2 ~waterLevel~0) .cse6 .cse4) (not (= |old(~pumpRunning~0)| 0)) (and .cse5 .cse6) .cse0 (not (< |old(~waterLevel~0)| 3))) (let ((.cse8 (< 0 |old(~waterLevel~0)|))) (let ((.cse7 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse8))) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 (and (<= ~waterLevel~0 0) (or .cse7 .cse6) .cse3 .cse4) (not (<= 1 |old(~switchedOnBeforeTS~0)|)) (and .cse5 (or (and (not .cse8) .cse6) .cse7) .cse3)))))) [2022-11-20 20:41:09,936 INFO L899 garLoopResultBuilder]: For program point L789(lines 789 806) no Hoare annotation was computed. [2022-11-20 20:41:09,936 INFO L899 garLoopResultBuilder]: For program point L438-2(lines 434 456) no Hoare annotation was computed. [2022-11-20 20:41:09,937 INFO L895 garLoopResultBuilder]: At program point L789-1(lines 781 809) the Hoare annotation is: (let ((.cse5 (= 1 ~systemActive~0))) (let ((.cse4 (= ~pumpRunning~0 0)) (.cse3 (not .cse5)) (.cse0 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| ~waterLevel~0)) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (<= 1 ~switchedOnBeforeTS~0)) (.cse2 (= ~pumpRunning~0 1)) (.cse8 (not (= |old(~pumpRunning~0)| 1)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and .cse0 .cse1 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~9#1| 2) .cse2) .cse3 (and .cse4 .cse5 .cse0 .cse1) (not (< |old(~waterLevel~0)| 3))) (let ((.cse6 (= ~waterLevel~0 1))) (or (and .cse4 .cse5 .cse0 .cse6 .cse7) .cse3 (and .cse0 .cse6 .cse7 .cse2) .cse8 (not (= |old(~waterLevel~0)| 2)))) (let ((.cse9 (< 0 |old(~waterLevel~0)|))) (let ((.cse10 (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse9))) (or (and .cse4 .cse5 .cse0 (or (and (not .cse9) .cse1) .cse10) .cse7) (not (<= |old(~waterLevel~0)| 1)) .cse3 (and (<= ~waterLevel~0 0) .cse0 (or .cse10 .cse1) .cse7 .cse2) .cse8 (not (<= 1 |old(~switchedOnBeforeTS~0)|)))))))) [2022-11-20 20:41:09,937 INFO L899 garLoopResultBuilder]: For program point L794(lines 794 800) no Hoare annotation was computed. [2022-11-20 20:41:09,937 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 431 457) the Hoare annotation is: (let ((.cse7 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse6 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (not (<= 1 |old(~switchedOnBeforeTS~0)|))) (.cse5 (not (< |old(~waterLevel~0)| 3))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (and .cse7 (= ~pumpRunning~0 1)))) (and (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse1 .cse4 .cse3 .cse5) (or .cse6 (and (= ~pumpRunning~0 0) .cse7) .cse0 .cse5) (or .cse6 .cse0 .cse4 .cse3 .cse5) (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2)) .cse2)))) [2022-11-20 20:41:09,937 INFO L899 garLoopResultBuilder]: For program point L526(lines 526 534) no Hoare annotation was computed. [2022-11-20 20:41:09,937 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 431 457) no Hoare annotation was computed. [2022-11-20 20:41:09,938 INFO L895 garLoopResultBuilder]: At program point L522(lines 522 539) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse4 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= ~pumpRunning~0 1))) (and (or .cse0 .cse1 (and (= ~waterLevel~0 1) .cse2 .cse3) (not (= |old(~waterLevel~0)| 2))) (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) .cse4) .cse0 (not (< |old(~waterLevel~0)| 3))) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1 (and (<= ~waterLevel~0 0) (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (< 0 |old(~waterLevel~0)|)) .cse4) .cse2 .cse3) (not (<= 1 |old(~switchedOnBeforeTS~0)|))))) [2022-11-20 20:41:09,938 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 912) no Hoare annotation was computed. [2022-11-20 20:41:09,938 INFO L895 garLoopResultBuilder]: At program point L894(lines 894 901) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2022-11-20 20:41:09,938 INFO L902 garLoopResultBuilder]: At program point L894-2(lines 894 901) the Hoare annotation is: true [2022-11-20 20:41:09,939 INFO L899 garLoopResultBuilder]: For program point L725(lines 725 731) no Hoare annotation was computed. [2022-11-20 20:41:09,939 INFO L899 garLoopResultBuilder]: For program point L725-1(lines 725 731) no Hoare annotation was computed. [2022-11-20 20:41:09,939 INFO L902 garLoopResultBuilder]: At program point L754(lines 695 758) the Hoare annotation is: true [2022-11-20 20:41:09,939 INFO L895 garLoopResultBuilder]: At program point L717(line 717) the Hoare annotation is: (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse2 (= ~pumpRunning~0 1))) (or (and .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) (< ~waterLevel~0 3) .cse2) (and (= ~pumpRunning~0 0) .cse0 .cse1 (<= ~waterLevel~0 2)) (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse2))) [2022-11-20 20:41:09,939 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-20 20:41:09,939 INFO L895 garLoopResultBuilder]: At program point L751(lines 704 752) the Hoare annotation is: false [2022-11-20 20:41:09,940 INFO L899 garLoopResultBuilder]: For program point L706(lines 705 750) no Hoare annotation was computed. [2022-11-20 20:41:09,940 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-20 20:41:09,940 INFO L895 garLoopResultBuilder]: At program point L727(line 727) the Hoare annotation is: (let ((.cse2 (< ~waterLevel~0 3)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2) (and .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2 .cse3) (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse3))) [2022-11-20 20:41:09,940 INFO L895 garLoopResultBuilder]: At program point L748(lines 705 750) the Hoare annotation is: (let ((.cse2 (< ~waterLevel~0 3)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2) (and .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2 .cse3) (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse3))) [2022-11-20 20:41:09,940 INFO L899 garLoopResultBuilder]: For program point L715(lines 715 721) no Hoare annotation was computed. [2022-11-20 20:41:09,941 INFO L899 garLoopResultBuilder]: For program point L715-1(lines 715 721) no Hoare annotation was computed. [2022-11-20 20:41:09,941 INFO L895 garLoopResultBuilder]: At program point L741-2(lines 735 746) the Hoare annotation is: (let ((.cse2 (< ~waterLevel~0 3)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2) (and .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2 .cse3) (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse3))) [2022-11-20 20:41:09,941 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 466 490) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-20 20:41:09,941 INFO L895 garLoopResultBuilder]: At program point L480(line 480) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (or (<= 2 ~waterLevel~0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~3#1| 0))) .cse0 (not (< ~waterLevel~0 3))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2))) [2022-11-20 20:41:09,942 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 466 490) no Hoare annotation was computed. [2022-11-20 20:41:09,942 INFO L895 garLoopResultBuilder]: At program point L474(lines 474 482) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (or (<= 2 ~waterLevel~0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~3#1| 0))) .cse0 (not (< ~waterLevel~0 3))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2))) [2022-11-20 20:41:09,942 INFO L895 garLoopResultBuilder]: At program point L470(lines 470 487) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-20 20:41:09,942 INFO L895 garLoopResultBuilder]: At program point L485(line 485) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-20 20:41:09,943 INFO L899 garLoopResultBuilder]: For program point L485-1(lines 466 490) no Hoare annotation was computed. [2022-11-20 20:41:09,943 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 931 942) no Hoare annotation was computed. [2022-11-20 20:41:09,943 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 931 942) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse3 (not (= ~pumpRunning~0 1))) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (not (< |old(~waterLevel~0)| 3)))) (and (or (not (= ~pumpRunning~0 0)) .cse0 .cse1 .cse2) (or .cse0 .cse3 (not (= |old(~waterLevel~0)| 2)) .cse1) (or .cse0 .cse3 .cse1 (not (<= 1 ~switchedOnBeforeTS~0)) .cse2))) [2022-11-20 20:41:09,943 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__lowWaterSensorENTRY(lines 492 516) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-20 20:41:09,944 INFO L895 garLoopResultBuilder]: At program point L506(line 506) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-20 20:41:09,944 INFO L895 garLoopResultBuilder]: At program point L502(line 502) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-20 20:41:09,944 INFO L899 garLoopResultBuilder]: For program point L500(lines 500 508) no Hoare annotation was computed. [2022-11-20 20:41:09,944 INFO L895 garLoopResultBuilder]: At program point L496(lines 496 513) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0))) (.cse3 (= ~pumpRunning~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2 .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3))) [2022-11-20 20:41:09,945 INFO L895 garLoopResultBuilder]: At program point L511(line 511) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (not (<= 1 ~switchedOnBeforeTS~0)))) (and (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (< ~waterLevel~0 3))) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or (not (<= ~waterLevel~0 0)) .cse0 .cse1 .cse2))) [2022-11-20 20:41:09,945 INFO L899 garLoopResultBuilder]: For program point L511-1(lines 492 516) no Hoare annotation was computed. [2022-11-20 20:41:09,945 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__lowWaterSensorEXIT(lines 492 516) no Hoare annotation was computed. [2022-11-20 20:41:09,945 INFO L899 garLoopResultBuilder]: For program point isPumpRunningEXIT(lines 570 578) no Hoare annotation was computed. [2022-11-20 20:41:09,945 INFO L902 garLoopResultBuilder]: At program point isPumpRunningENTRY(lines 570 578) the Hoare annotation is: true [2022-11-20 20:41:09,949 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-20 20:41:09,951 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-20 20:41:09,982 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 20.11 08:41:09 BoogieIcfgContainer [2022-11-20 20:41:09,990 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-20 20:41:09,991 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-20 20:41:09,991 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-20 20:41:09,991 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-20 20:41:09,992 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 20.11 08:40:21" (3/4) ... [2022-11-20 20:41:09,995 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-20 20:41:10,000 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-20 20:41:10,001 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-20 20:41:10,001 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-20 20:41:10,001 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-20 20:41:10,001 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-20 20:41:10,002 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-20 20:41:10,002 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-20 20:41:10,002 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2022-11-20 20:41:10,002 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2022-11-20 20:41:10,010 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 54 nodes and edges [2022-11-20 20:41:10,010 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 14 nodes and edges [2022-11-20 20:41:10,011 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-11-20 20:41:10,012 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-20 20:41:10,012 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-20 20:41:10,041 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3)) && (((!(1 == systemActive) || ((((1 <= aux-isPumpRunning()-aux && 1 == systemActive) && \old(waterLevel) == waterLevel) && waterLevel < 3) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || ((((1 <= aux-isPumpRunning()-aux && 1 == systemActive) && \old(waterLevel) == waterLevel) && waterLevel < 3) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) [2022-11-20 20:41:10,042 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == 0 && waterLevel == 1) && 1 <= switchedOnBeforeTS)) && ((((((2 == waterLevel && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(\old(pumpRunning) == 0)) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && (((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) || ((pumpRunning == 0 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS)) [2022-11-20 20:41:10,043 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(\old(pumpRunning) == 0) || (((tmp == waterLevel && \old(waterLevel) == waterLevel) && tmp == 2) && pumpRunning == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && \old(waterLevel) == waterLevel)) || !(\old(waterLevel) < 3)) && ((((((((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && waterLevel == 1) && 1 <= switchedOnBeforeTS) || !(1 == systemActive)) || (((tmp == waterLevel && waterLevel == 1) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && (((((((((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) || ((((waterLevel <= 0 && tmp == waterLevel) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) [2022-11-20 20:41:10,043 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) && (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) [2022-11-20 20:41:10,043 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) || !(\old(waterLevel) < 3))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) < 3)) [2022-11-20 20:41:10,044 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == 0 && waterLevel == 1) && 1 <= switchedOnBeforeTS)) && ((((((2 == waterLevel && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(\old(pumpRunning) == 0)) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && (((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) || ((pumpRunning == 0 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS)) [2022-11-20 20:41:10,044 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel < 3)) && ((((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1)) && ((((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1) [2022-11-20 20:41:10,044 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel < 3)) && ((((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1)) && ((((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1) [2022-11-20 20:41:10,046 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && (2 <= waterLevel || tmp == 0))) || !(1 == systemActive)) || !(waterLevel < 3)) && (((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS))) && (((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) [2022-11-20 20:41:10,075 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/witness.graphml [2022-11-20 20:41:10,076 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-20 20:41:10,077 INFO L158 Benchmark]: Toolchain (without parser) took 49923.56ms. Allocated memory was 182.5MB in the beginning and 553.6MB in the end (delta: 371.2MB). Free memory was 154.0MB in the beginning and 198.0MB in the end (delta: -43.9MB). Peak memory consumption was 326.9MB. Max. memory is 16.1GB. [2022-11-20 20:41:10,077 INFO L158 Benchmark]: CDTParser took 0.31ms. Allocated memory is still 130.0MB. Free memory is still 97.4MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-20 20:41:10,077 INFO L158 Benchmark]: CACSL2BoogieTranslator took 500.18ms. Allocated memory is still 182.5MB. Free memory was 153.7MB in the beginning and 133.8MB in the end (delta: 19.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2022-11-20 20:41:10,078 INFO L158 Benchmark]: Boogie Procedure Inliner took 79.84ms. Allocated memory is still 182.5MB. Free memory was 133.8MB in the beginning and 131.7MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-20 20:41:10,078 INFO L158 Benchmark]: Boogie Preprocessor took 51.63ms. Allocated memory is still 182.5MB. Free memory was 131.7MB in the beginning and 130.6MB in the end (delta: 1.0MB). There was no memory consumed. Max. memory is 16.1GB. [2022-11-20 20:41:10,078 INFO L158 Benchmark]: RCFGBuilder took 708.84ms. Allocated memory is still 182.5MB. Free memory was 130.6MB in the beginning and 102.3MB in the end (delta: 28.3MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. [2022-11-20 20:41:10,079 INFO L158 Benchmark]: TraceAbstraction took 48485.55ms. Allocated memory was 182.5MB in the beginning and 553.6MB in the end (delta: 371.2MB). Free memory was 102.3MB in the beginning and 204.3MB in the end (delta: -101.9MB). Peak memory consumption was 289.2MB. Max. memory is 16.1GB. [2022-11-20 20:41:10,079 INFO L158 Benchmark]: Witness Printer took 85.43ms. Allocated memory is still 553.6MB. Free memory was 204.3MB in the beginning and 198.0MB in the end (delta: 6.3MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2022-11-20 20:41:10,081 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.31ms. Allocated memory is still 130.0MB. Free memory is still 97.4MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 500.18ms. Allocated memory is still 182.5MB. Free memory was 153.7MB in the beginning and 133.8MB in the end (delta: 19.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 79.84ms. Allocated memory is still 182.5MB. Free memory was 133.8MB in the beginning and 131.7MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 51.63ms. Allocated memory is still 182.5MB. Free memory was 131.7MB in the beginning and 130.6MB in the end (delta: 1.0MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 708.84ms. Allocated memory is still 182.5MB. Free memory was 130.6MB in the beginning and 102.3MB in the end (delta: 28.3MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. * TraceAbstraction took 48485.55ms. Allocated memory was 182.5MB in the beginning and 553.6MB in the end (delta: 371.2MB). Free memory was 102.3MB in the beginning and 204.3MB in the end (delta: -101.9MB). Peak memory consumption was 289.2MB. Max. memory is 16.1GB. * Witness Printer took 85.43ms. Allocated memory is still 553.6MB. Free memory was 204.3MB in the beginning and 198.0MB in the end (delta: 6.3MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 912]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 10 procedures, 69 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 48.4s, OverallIterations: 11, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 8.6s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 6.4s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3005 SdHoareTripleChecker+Valid, 4.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2982 mSDsluCounter, 2980 SdHoareTripleChecker+Invalid, 3.5s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2111 mSDsCounter, 2031 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 4524 IncrementalHoareTripleChecker+Invalid, 6555 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 2031 mSolverCounterUnsat, 869 mSDtfsCounter, 4524 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1100 GetRequests, 791 SyntacticMatches, 34 SemanticMatches, 275 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 7687 ImplicationChecksByTransitivity, 19.5s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=368occurred in iteration=10, InterpolantAutomatonStates: 141, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.4s AutomataMinimizationTime, 11 MinimizatonAttempts, 314 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 41 LocationsWithAnnotation, 1400 PreInvPairs, 1588 NumberOfFragments, 2056 HoareAnnotationTreeSize, 1400 FomulaSimplifications, 5681 FormulaSimplificationTreeSizeReduction, 0.6s HoareSimplificationTime, 41 FomulaSimplificationsInter, 24906 FormulaSimplificationTreeSizeReductionInter, 5.7s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 5.8s InterpolantComputationTime, 897 NumberOfCodeBlocks, 897 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 1144 ConstructedInterpolants, 0 QuantifiedInterpolants, 3365 SizeOfPredicates, 29 NumberOfNonLiveVariables, 1492 ConjunctsInSsa, 64 ConjunctsInUnsatCore, 18 InterpolantComputations, 8 PerfectInterpolantSequences, 464/618 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 518]: Loop Invariant Derived loop invariant: (((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == 0 && waterLevel == 1) && 1 <= switchedOnBeforeTS)) && ((((((2 == waterLevel && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(\old(pumpRunning) == 0)) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && (((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) || ((pumpRunning == 0 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS)) - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 812]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 695]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 705]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0 && 1 == systemActive) && splverifierCounter == 0) && waterLevel < 3) || ((((1 == systemActive && splverifierCounter == 0) && 1 <= switchedOnBeforeTS) && waterLevel < 3) && pumpRunning == 1)) || (((2 == waterLevel && 1 == systemActive) && splverifierCounter == 0) && pumpRunning == 1) - InvariantResult [Line: 445]: Loop Invariant Derived loop invariant: (((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) || ((pumpRunning == 0 && waterLevel == 1) && 1 <= switchedOnBeforeTS)) && ((((((2 == waterLevel && \old(waterLevel) == waterLevel) && pumpRunning == 1) || !(\old(pumpRunning) == 0)) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && (((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) || ((pumpRunning == 0 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS)) - InvariantResult [Line: 704]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 496]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel < 3)) && ((((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1)) && ((((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1) - InvariantResult [Line: 781]: Loop Invariant Derived loop invariant: (((((!(\old(pumpRunning) == 0) || (((tmp == waterLevel && \old(waterLevel) == waterLevel) && tmp == 2) && pumpRunning == 1)) || !(1 == systemActive)) || (((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && \old(waterLevel) == waterLevel)) || !(\old(waterLevel) < 3)) && ((((((((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && waterLevel == 1) && 1 <= switchedOnBeforeTS) || !(1 == systemActive)) || (((tmp == waterLevel && waterLevel == 1) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && (((((((((pumpRunning == 0 && 1 == systemActive) && tmp == waterLevel) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))) && 1 <= switchedOnBeforeTS) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) || ((((waterLevel <= 0 && tmp == waterLevel) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) - InvariantResult [Line: 912]: Loop Invariant Derived loop invariant: (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2)) && (((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) || !(\old(waterLevel) < 3))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) < 3)) - InvariantResult [Line: 776]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3)) && (((!(1 == systemActive) || ((((1 <= aux-isPumpRunning()-aux && 1 == systemActive) && \old(waterLevel) == waterLevel) && waterLevel < 3) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) == 2))) && ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || ((((1 <= aux-isPumpRunning()-aux && 1 == systemActive) && \old(waterLevel) == waterLevel) && waterLevel < 3) && pumpRunning == 1)) || !(\old(pumpRunning) == 1)) || !(1 <= \old(switchedOnBeforeTS))) - InvariantResult [Line: 470]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel < 3)) && ((((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1)) && ((((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) || pumpRunning == 1) - InvariantResult [Line: 822]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 894]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 522]: Loop Invariant Derived loop invariant: ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((waterLevel == 1 && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(\old(waterLevel) == 2)) && (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(\old(waterLevel) < 3))) && ((((!(\old(waterLevel) <= 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || (((waterLevel <= 0 && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && 1 <= switchedOnBeforeTS) && pumpRunning == 1)) || !(1 <= \old(switchedOnBeforeTS))) - InvariantResult [Line: 894]: Loop Invariant Derived loop invariant: (pumpRunning == 0 && 1 == systemActive) && waterLevel == 1 - InvariantResult [Line: 474]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && (2 <= waterLevel || tmp == 0))) || !(1 == systemActive)) || !(waterLevel < 3)) && (((!(waterLevel == 1) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS))) && (((!(waterLevel <= 0) || !(1 == systemActive)) || !(\old(pumpRunning) == 1)) || !(1 <= switchedOnBeforeTS)) RESULT: Ultimate proved your program to be correct! [2022-11-20 20:41:10,123 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_d359808f-12df-47da-8de6-9843d64457fd/bin/utaipan-6cKwYrpEi9/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE