./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec2_product55.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 4e7fbc69 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec2_product55.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 685bdac90b32b89d64927338575dc6f79737e9f84bb9272d4bfb0c942aa4ae35 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-4e7fbc6 [2022-11-23 14:10:24,931 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-23 14:10:24,934 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-23 14:10:24,972 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-23 14:10:24,973 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-23 14:10:24,976 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-23 14:10:24,979 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-23 14:10:24,982 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-23 14:10:24,983 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-23 14:10:24,989 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-23 14:10:24,991 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-23 14:10:24,992 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-23 14:10:24,993 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-23 14:10:24,996 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-23 14:10:24,997 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-23 14:10:24,999 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-23 14:10:25,000 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-23 14:10:25,001 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-23 14:10:25,003 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-23 14:10:25,009 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-23 14:10:25,011 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-23 14:10:25,013 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-23 14:10:25,014 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-23 14:10:25,016 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-23 14:10:25,025 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-23 14:10:25,026 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-23 14:10:25,026 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-23 14:10:25,028 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-23 14:10:25,029 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-23 14:10:25,031 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-23 14:10:25,031 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-23 14:10:25,032 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-23 14:10:25,034 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-23 14:10:25,035 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-23 14:10:25,036 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-23 14:10:25,036 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-23 14:10:25,037 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-23 14:10:25,037 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-23 14:10:25,038 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-23 14:10:25,039 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-23 14:10:25,040 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-23 14:10:25,041 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-23 14:10:25,079 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-23 14:10:25,079 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-23 14:10:25,080 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-23 14:10:25,080 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-23 14:10:25,081 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-23 14:10:25,082 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-23 14:10:25,082 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-23 14:10:25,082 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-23 14:10:25,082 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-23 14:10:25,083 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-23 14:10:25,084 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-23 14:10:25,084 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-23 14:10:25,084 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-23 14:10:25,085 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-23 14:10:25,085 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-23 14:10:25,085 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-23 14:10:25,085 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-23 14:10:25,086 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-23 14:10:25,087 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-23 14:10:25,087 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-23 14:10:25,088 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-23 14:10:25,088 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-23 14:10:25,088 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-23 14:10:25,088 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-23 14:10:25,089 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-23 14:10:25,089 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-23 14:10:25,090 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-23 14:10:25,090 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-23 14:10:25,090 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-23 14:10:25,091 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-23 14:10:25,091 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-23 14:10:25,092 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-23 14:10:25,092 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 14:10:25,092 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-23 14:10:25,092 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-23 14:10:25,093 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-23 14:10:25,093 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-23 14:10:25,093 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-23 14:10:25,093 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-23 14:10:25,094 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-23 14:10:25,094 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-23 14:10:25,094 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 685bdac90b32b89d64927338575dc6f79737e9f84bb9272d4bfb0c942aa4ae35 [2022-11-23 14:10:25,403 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-23 14:10:25,439 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-23 14:10:25,442 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-23 14:10:25,443 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-23 14:10:25,444 INFO L275 PluginConnector]: CDTParser initialized [2022-11-23 14:10:25,445 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/../../sv-benchmarks/c/product-lines/minepump_spec2_product55.cil.c [2022-11-23 14:10:28,447 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-23 14:10:28,754 INFO L351 CDTParser]: Found 1 translation units. [2022-11-23 14:10:28,755 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/sv-benchmarks/c/product-lines/minepump_spec2_product55.cil.c [2022-11-23 14:10:28,783 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/data/40cb059db/c0e7115e2d184a78a7da16c71b5a927c/FLAG9a2d736bc [2022-11-23 14:10:28,797 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/data/40cb059db/c0e7115e2d184a78a7da16c71b5a927c [2022-11-23 14:10:28,800 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-23 14:10:28,801 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-23 14:10:28,803 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-23 14:10:28,803 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-23 14:10:28,806 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-23 14:10:28,807 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 02:10:28" (1/1) ... [2022-11-23 14:10:28,821 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2d9026ae and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:28, skipping insertion in model container [2022-11-23 14:10:28,821 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 02:10:28" (1/1) ... [2022-11-23 14:10:28,828 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-23 14:10:28,884 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-23 14:10:29,155 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/sv-benchmarks/c/product-lines/minepump_spec2_product55.cil.c[19412,19425] [2022-11-23 14:10:29,162 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 14:10:29,178 INFO L203 MainTranslator]: Completed pre-run [2022-11-23 14:10:29,294 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/sv-benchmarks/c/product-lines/minepump_spec2_product55.cil.c[19412,19425] [2022-11-23 14:10:29,295 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 14:10:29,312 INFO L208 MainTranslator]: Completed translation [2022-11-23 14:10:29,313 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29 WrapperNode [2022-11-23 14:10:29,313 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-23 14:10:29,314 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-23 14:10:29,314 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-23 14:10:29,314 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-23 14:10:29,322 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,334 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,359 INFO L138 Inliner]: procedures = 58, calls = 105, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 226 [2022-11-23 14:10:29,359 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-23 14:10:29,360 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-23 14:10:29,360 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-23 14:10:29,361 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-23 14:10:29,370 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,371 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,373 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,373 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,380 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,386 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,388 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,389 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,391 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-23 14:10:29,392 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-23 14:10:29,392 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-23 14:10:29,392 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-23 14:10:29,393 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (1/1) ... [2022-11-23 14:10:29,399 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 14:10:29,411 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:10:29,437 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-23 14:10:29,452 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-23 14:10:29,479 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-23 14:10:29,480 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-23 14:10:29,480 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-23 14:10:29,480 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-23 14:10:29,480 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-23 14:10:29,480 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-23 14:10:29,481 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-23 14:10:29,481 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2022-11-23 14:10:29,481 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2022-11-23 14:10:29,481 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 14:10:29,482 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 14:10:29,482 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-23 14:10:29,482 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-23 14:10:29,482 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2022-11-23 14:10:29,482 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2022-11-23 14:10:29,483 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-23 14:10:29,483 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-23 14:10:29,483 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-23 14:10:29,483 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-23 14:10:29,484 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-23 14:10:29,485 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-23 14:10:29,485 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-23 14:10:29,614 INFO L235 CfgBuilder]: Building ICFG [2022-11-23 14:10:29,625 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-23 14:10:30,069 INFO L276 CfgBuilder]: Performing block encoding [2022-11-23 14:10:30,196 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-23 14:10:30,196 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-23 14:10:30,199 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 02:10:30 BoogieIcfgContainer [2022-11-23 14:10:30,199 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-23 14:10:30,202 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-23 14:10:30,202 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-23 14:10:30,205 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-23 14:10:30,206 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 23.11 02:10:28" (1/3) ... [2022-11-23 14:10:30,206 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7b3f8ccd and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 02:10:30, skipping insertion in model container [2022-11-23 14:10:30,206 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:10:29" (2/3) ... [2022-11-23 14:10:30,207 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7b3f8ccd and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 02:10:30, skipping insertion in model container [2022-11-23 14:10:30,207 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 02:10:30" (3/3) ... [2022-11-23 14:10:30,208 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product55.cil.c [2022-11-23 14:10:30,244 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-23 14:10:30,244 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-23 14:10:30,322 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-23 14:10:30,328 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@6026ecf4, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-23 14:10:30,328 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-23 14:10:30,331 INFO L276 IsEmpty]: Start isEmpty. Operand has 74 states, 46 states have (on average 1.4565217391304348) internal successors, (67), 57 states have internal predecessors, (67), 17 states have call successors, (17), 9 states have call predecessors, (17), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2022-11-23 14:10:30,340 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2022-11-23 14:10:30,341 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:30,341 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:30,342 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:30,347 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:30,347 INFO L85 PathProgramCache]: Analyzing trace with hash 1708904334, now seen corresponding path program 1 times [2022-11-23 14:10:30,357 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:30,358 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1340590779] [2022-11-23 14:10:30,358 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:30,359 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:30,514 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:30,590 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:10:30,591 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:30,591 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1340590779] [2022-11-23 14:10:30,592 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1340590779] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:30,592 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:10:30,592 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-23 14:10:30,594 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2144640912] [2022-11-23 14:10:30,594 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:30,598 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-23 14:10:30,599 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:30,625 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-23 14:10:30,626 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 14:10:30,628 INFO L87 Difference]: Start difference. First operand has 74 states, 46 states have (on average 1.4565217391304348) internal successors, (67), 57 states have internal predecessors, (67), 17 states have call successors, (17), 9 states have call predecessors, (17), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:10:30,744 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:30,745 INFO L93 Difference]: Finished difference Result 146 states and 203 transitions. [2022-11-23 14:10:30,746 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-23 14:10:30,747 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2022-11-23 14:10:30,747 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:30,755 INFO L225 Difference]: With dead ends: 146 [2022-11-23 14:10:30,755 INFO L226 Difference]: Without dead ends: 69 [2022-11-23 14:10:30,758 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 14:10:30,761 INFO L413 NwaCegarLoop]: 80 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 80 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:30,762 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 80 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 14:10:30,777 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 69 states. [2022-11-23 14:10:30,797 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 69 to 69. [2022-11-23 14:10:30,799 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 69 states, 43 states have (on average 1.372093023255814) internal successors, (59), 53 states have internal predecessors, (59), 17 states have call successors, (17), 9 states have call predecessors, (17), 8 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) [2022-11-23 14:10:30,801 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 69 states to 69 states and 92 transitions. [2022-11-23 14:10:30,803 INFO L78 Accepts]: Start accepts. Automaton has 69 states and 92 transitions. Word has length 17 [2022-11-23 14:10:30,803 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:30,803 INFO L495 AbstractCegarLoop]: Abstraction has 69 states and 92 transitions. [2022-11-23 14:10:30,803 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:10:30,804 INFO L276 IsEmpty]: Start isEmpty. Operand 69 states and 92 transitions. [2022-11-23 14:10:30,806 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2022-11-23 14:10:30,806 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:30,806 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:30,806 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-23 14:10:30,807 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:30,807 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:30,808 INFO L85 PathProgramCache]: Analyzing trace with hash -913573328, now seen corresponding path program 1 times [2022-11-23 14:10:30,808 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:30,808 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1750847809] [2022-11-23 14:10:30,808 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:30,808 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:30,844 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:30,975 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:10:30,976 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:30,976 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1750847809] [2022-11-23 14:10:30,977 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1750847809] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:30,977 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:10:30,978 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 14:10:30,978 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [454675151] [2022-11-23 14:10:30,979 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:30,981 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 14:10:30,983 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:30,985 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 14:10:30,986 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:10:30,986 INFO L87 Difference]: Start difference. First operand 69 states and 92 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:10:31,061 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:31,063 INFO L93 Difference]: Finished difference Result 110 states and 146 transitions. [2022-11-23 14:10:31,064 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 14:10:31,065 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2022-11-23 14:10:31,065 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:31,070 INFO L225 Difference]: With dead ends: 110 [2022-11-23 14:10:31,071 INFO L226 Difference]: Without dead ends: 61 [2022-11-23 14:10:31,072 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:10:31,074 INFO L413 NwaCegarLoop]: 66 mSDtfsCounter, 14 mSDsluCounter, 49 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 115 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:31,076 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 115 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 14:10:31,078 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 61 states. [2022-11-23 14:10:31,086 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 61 to 61. [2022-11-23 14:10:31,087 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 61 states, 38 states have (on average 1.394736842105263) internal successors, (53), 48 states have internal predecessors, (53), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 9 states have call predecessors, (14), 14 states have call successors, (14) [2022-11-23 14:10:31,091 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61 states to 61 states and 81 transitions. [2022-11-23 14:10:31,091 INFO L78 Accepts]: Start accepts. Automaton has 61 states and 81 transitions. Word has length 18 [2022-11-23 14:10:31,091 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:31,091 INFO L495 AbstractCegarLoop]: Abstraction has 61 states and 81 transitions. [2022-11-23 14:10:31,092 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:10:31,092 INFO L276 IsEmpty]: Start isEmpty. Operand 61 states and 81 transitions. [2022-11-23 14:10:31,098 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2022-11-23 14:10:31,099 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:31,099 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:31,099 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-23 14:10:31,099 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:31,100 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:31,108 INFO L85 PathProgramCache]: Analyzing trace with hash -1125504240, now seen corresponding path program 1 times [2022-11-23 14:10:31,108 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:31,108 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [270981562] [2022-11-23 14:10:31,108 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:31,109 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:31,124 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:31,233 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:10:31,233 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:31,233 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [270981562] [2022-11-23 14:10:31,234 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [270981562] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:31,234 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:10:31,234 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-23 14:10:31,234 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [395335516] [2022-11-23 14:10:31,235 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:31,235 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-23 14:10:31,235 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:31,236 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-23 14:10:31,236 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 14:10:31,236 INFO L87 Difference]: Start difference. First operand 61 states and 81 transitions. Second operand has 4 states, 4 states have (on average 4.5) internal successors, (18), 4 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:10:31,399 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:31,399 INFO L93 Difference]: Finished difference Result 168 states and 228 transitions. [2022-11-23 14:10:31,400 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-23 14:10:31,400 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 4.5) internal successors, (18), 4 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 21 [2022-11-23 14:10:31,402 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:31,406 INFO L225 Difference]: With dead ends: 168 [2022-11-23 14:10:31,406 INFO L226 Difference]: Without dead ends: 109 [2022-11-23 14:10:31,407 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-23 14:10:31,408 INFO L413 NwaCegarLoop]: 80 mSDtfsCounter, 95 mSDsluCounter, 94 mSDsCounter, 0 mSdLazyCounter, 79 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 95 SdHoareTripleChecker+Valid, 174 SdHoareTripleChecker+Invalid, 88 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 79 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:31,409 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [95 Valid, 174 Invalid, 88 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 79 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 14:10:31,410 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 109 states. [2022-11-23 14:10:31,424 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 109 to 92. [2022-11-23 14:10:31,425 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 92 states, 59 states have (on average 1.3898305084745763) internal successors, (82), 72 states have internal predecessors, (82), 19 states have call successors, (19), 13 states have call predecessors, (19), 13 states have return successors, (20), 13 states have call predecessors, (20), 19 states have call successors, (20) [2022-11-23 14:10:31,426 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 92 states to 92 states and 121 transitions. [2022-11-23 14:10:31,426 INFO L78 Accepts]: Start accepts. Automaton has 92 states and 121 transitions. Word has length 21 [2022-11-23 14:10:31,426 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:31,426 INFO L495 AbstractCegarLoop]: Abstraction has 92 states and 121 transitions. [2022-11-23 14:10:31,427 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 4.5) internal successors, (18), 4 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:10:31,427 INFO L276 IsEmpty]: Start isEmpty. Operand 92 states and 121 transitions. [2022-11-23 14:10:31,428 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2022-11-23 14:10:31,428 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:31,428 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:31,428 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-23 14:10:31,429 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:31,429 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:31,429 INFO L85 PathProgramCache]: Analyzing trace with hash -1792774989, now seen corresponding path program 1 times [2022-11-23 14:10:31,429 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:31,430 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [143809842] [2022-11-23 14:10:31,430 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:31,430 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:31,445 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:31,537 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:10:31,547 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:31,547 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [143809842] [2022-11-23 14:10:31,547 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [143809842] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:31,548 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:10:31,548 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-11-23 14:10:31,548 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2141081766] [2022-11-23 14:10:31,548 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:31,549 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-23 14:10:31,549 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:31,549 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-23 14:10:31,550 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2022-11-23 14:10:31,550 INFO L87 Difference]: Start difference. First operand 92 states and 121 transitions. Second operand has 6 states, 5 states have (on average 4.2) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:10:31,705 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:31,705 INFO L93 Difference]: Finished difference Result 268 states and 358 transitions. [2022-11-23 14:10:31,707 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-11-23 14:10:31,707 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 4.2) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 24 [2022-11-23 14:10:31,707 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:31,709 INFO L225 Difference]: With dead ends: 268 [2022-11-23 14:10:31,709 INFO L226 Difference]: Without dead ends: 178 [2022-11-23 14:10:31,710 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2022-11-23 14:10:31,711 INFO L413 NwaCegarLoop]: 78 mSDtfsCounter, 57 mSDsluCounter, 266 mSDsCounter, 0 mSdLazyCounter, 113 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 60 SdHoareTripleChecker+Valid, 344 SdHoareTripleChecker+Invalid, 114 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 113 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:31,712 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [60 Valid, 344 Invalid, 114 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 113 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 14:10:31,713 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 178 states. [2022-11-23 14:10:31,739 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 178 to 170. [2022-11-23 14:10:31,740 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 170 states, 109 states have (on average 1.3669724770642202) internal successors, (149), 132 states have internal predecessors, (149), 36 states have call successors, (36), 24 states have call predecessors, (36), 24 states have return successors, (38), 24 states have call predecessors, (38), 36 states have call successors, (38) [2022-11-23 14:10:31,742 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 170 states to 170 states and 223 transitions. [2022-11-23 14:10:31,742 INFO L78 Accepts]: Start accepts. Automaton has 170 states and 223 transitions. Word has length 24 [2022-11-23 14:10:31,743 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:31,743 INFO L495 AbstractCegarLoop]: Abstraction has 170 states and 223 transitions. [2022-11-23 14:10:31,743 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 4.2) internal successors, (21), 4 states have internal predecessors, (21), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:10:31,743 INFO L276 IsEmpty]: Start isEmpty. Operand 170 states and 223 transitions. [2022-11-23 14:10:31,745 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 28 [2022-11-23 14:10:31,745 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:31,745 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:31,745 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-23 14:10:31,745 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:31,746 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:31,746 INFO L85 PathProgramCache]: Analyzing trace with hash -1993013228, now seen corresponding path program 1 times [2022-11-23 14:10:31,746 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:31,747 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [969865352] [2022-11-23 14:10:31,747 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:31,747 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:31,759 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:31,837 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:10:31,838 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:31,838 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [969865352] [2022-11-23 14:10:31,838 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [969865352] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:31,838 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:10:31,839 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-23 14:10:31,839 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1519037111] [2022-11-23 14:10:31,839 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:31,839 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-23 14:10:31,840 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:31,840 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-23 14:10:31,840 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 14:10:31,841 INFO L87 Difference]: Start difference. First operand 170 states and 223 transitions. Second operand has 4 states, 4 states have (on average 5.5) internal successors, (22), 4 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-23 14:10:31,931 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:31,931 INFO L93 Difference]: Finished difference Result 411 states and 559 transitions. [2022-11-23 14:10:31,932 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-23 14:10:31,932 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 5.5) internal successors, (22), 4 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 27 [2022-11-23 14:10:31,932 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:31,934 INFO L225 Difference]: With dead ends: 411 [2022-11-23 14:10:31,934 INFO L226 Difference]: Without dead ends: 243 [2022-11-23 14:10:31,936 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-23 14:10:31,937 INFO L413 NwaCegarLoop]: 76 mSDtfsCounter, 42 mSDsluCounter, 128 mSDsCounter, 0 mSdLazyCounter, 54 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 42 SdHoareTripleChecker+Valid, 204 SdHoareTripleChecker+Invalid, 64 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 54 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:31,937 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [42 Valid, 204 Invalid, 64 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 54 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 14:10:31,939 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 243 states. [2022-11-23 14:10:32,007 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 243 to 235. [2022-11-23 14:10:32,009 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 235 states, 158 states have (on average 1.2848101265822784) internal successors, (203), 176 states have internal predecessors, (203), 41 states have call successors, (41), 35 states have call predecessors, (41), 35 states have return successors, (57), 37 states have call predecessors, (57), 41 states have call successors, (57) [2022-11-23 14:10:32,011 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 235 states to 235 states and 301 transitions. [2022-11-23 14:10:32,011 INFO L78 Accepts]: Start accepts. Automaton has 235 states and 301 transitions. Word has length 27 [2022-11-23 14:10:32,011 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:32,012 INFO L495 AbstractCegarLoop]: Abstraction has 235 states and 301 transitions. [2022-11-23 14:10:32,012 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 5.5) internal successors, (22), 4 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-23 14:10:32,012 INFO L276 IsEmpty]: Start isEmpty. Operand 235 states and 301 transitions. [2022-11-23 14:10:32,014 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 38 [2022-11-23 14:10:32,014 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:32,014 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:32,014 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-23 14:10:32,015 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:32,015 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:32,015 INFO L85 PathProgramCache]: Analyzing trace with hash 1593627057, now seen corresponding path program 1 times [2022-11-23 14:10:32,016 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:32,016 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1086774883] [2022-11-23 14:10:32,016 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:32,016 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:32,033 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:32,091 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:10:32,091 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:32,091 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1086774883] [2022-11-23 14:10:32,092 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1086774883] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:32,092 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:10:32,092 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 14:10:32,092 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [586780795] [2022-11-23 14:10:32,093 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:32,093 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 14:10:32,093 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:32,094 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 14:10:32,094 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:10:32,094 INFO L87 Difference]: Start difference. First operand 235 states and 301 transitions. Second operand has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2022-11-23 14:10:32,177 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:32,177 INFO L93 Difference]: Finished difference Result 323 states and 421 transitions. [2022-11-23 14:10:32,178 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 14:10:32,178 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 37 [2022-11-23 14:10:32,178 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:32,181 INFO L225 Difference]: With dead ends: 323 [2022-11-23 14:10:32,181 INFO L226 Difference]: Without dead ends: 321 [2022-11-23 14:10:32,182 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:10:32,183 INFO L413 NwaCegarLoop]: 89 mSDtfsCounter, 56 mSDsluCounter, 63 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 56 SdHoareTripleChecker+Valid, 152 SdHoareTripleChecker+Invalid, 38 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:32,183 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [56 Valid, 152 Invalid, 38 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 14:10:32,184 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 321 states. [2022-11-23 14:10:32,225 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 321 to 306. [2022-11-23 14:10:32,226 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 306 states, 203 states have (on average 1.29064039408867) internal successors, (262), 228 states have internal predecessors, (262), 56 states have call successors, (56), 47 states have call predecessors, (56), 46 states have return successors, (84), 48 states have call predecessors, (84), 56 states have call successors, (84) [2022-11-23 14:10:32,229 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 306 states to 306 states and 402 transitions. [2022-11-23 14:10:32,229 INFO L78 Accepts]: Start accepts. Automaton has 306 states and 402 transitions. Word has length 37 [2022-11-23 14:10:32,230 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:32,230 INFO L495 AbstractCegarLoop]: Abstraction has 306 states and 402 transitions. [2022-11-23 14:10:32,230 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (5), 2 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2022-11-23 14:10:32,231 INFO L276 IsEmpty]: Start isEmpty. Operand 306 states and 402 transitions. [2022-11-23 14:10:32,233 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 74 [2022-11-23 14:10:32,234 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:32,234 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:32,234 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-23 14:10:32,235 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:32,235 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:32,235 INFO L85 PathProgramCache]: Analyzing trace with hash -572956935, now seen corresponding path program 1 times [2022-11-23 14:10:32,236 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:32,236 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1078947256] [2022-11-23 14:10:32,236 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:32,236 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:32,254 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:32,332 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-23 14:10:32,332 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:32,332 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1078947256] [2022-11-23 14:10:32,332 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1078947256] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:32,332 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:10:32,333 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-23 14:10:32,333 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [387765407] [2022-11-23 14:10:32,333 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:32,334 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-23 14:10:32,334 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:32,335 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-23 14:10:32,335 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 14:10:32,335 INFO L87 Difference]: Start difference. First operand 306 states and 402 transitions. Second operand has 4 states, 3 states have (on average 16.0) internal successors, (48), 4 states have internal predecessors, (48), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) [2022-11-23 14:10:32,478 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:32,478 INFO L93 Difference]: Finished difference Result 613 states and 805 transitions. [2022-11-23 14:10:32,480 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-23 14:10:32,480 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 16.0) internal successors, (48), 4 states have internal predecessors, (48), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) Word has length 73 [2022-11-23 14:10:32,481 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:32,484 INFO L225 Difference]: With dead ends: 613 [2022-11-23 14:10:32,485 INFO L226 Difference]: Without dead ends: 243 [2022-11-23 14:10:32,486 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 14:10:32,488 INFO L413 NwaCegarLoop]: 88 mSDtfsCounter, 99 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 86 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 99 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 88 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 86 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:32,489 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [99 Valid, 140 Invalid, 88 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 86 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 14:10:32,490 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 243 states. [2022-11-23 14:10:32,521 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 243 to 243. [2022-11-23 14:10:32,522 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 243 states, 158 states have (on average 1.2468354430379747) internal successors, (197), 177 states have internal predecessors, (197), 45 states have call successors, (45), 39 states have call predecessors, (45), 39 states have return successors, (65), 38 states have call predecessors, (65), 45 states have call successors, (65) [2022-11-23 14:10:32,524 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 243 states to 243 states and 307 transitions. [2022-11-23 14:10:32,524 INFO L78 Accepts]: Start accepts. Automaton has 243 states and 307 transitions. Word has length 73 [2022-11-23 14:10:32,524 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:32,524 INFO L495 AbstractCegarLoop]: Abstraction has 243 states and 307 transitions. [2022-11-23 14:10:32,525 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 16.0) internal successors, (48), 4 states have internal predecessors, (48), 4 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (7), 3 states have call predecessors, (7), 4 states have call successors, (7) [2022-11-23 14:10:32,525 INFO L276 IsEmpty]: Start isEmpty. Operand 243 states and 307 transitions. [2022-11-23 14:10:32,527 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 71 [2022-11-23 14:10:32,527 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:32,527 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:32,528 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-23 14:10:32,528 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:32,528 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:32,528 INFO L85 PathProgramCache]: Analyzing trace with hash -613344524, now seen corresponding path program 1 times [2022-11-23 14:10:32,528 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:32,529 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2042177509] [2022-11-23 14:10:32,529 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:32,529 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:32,575 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:32,699 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 19 proven. 4 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2022-11-23 14:10:32,700 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:32,700 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2042177509] [2022-11-23 14:10:32,700 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2042177509] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 14:10:32,700 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1862534177] [2022-11-23 14:10:32,700 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:32,700 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:10:32,701 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:10:32,704 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:10:32,749 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-23 14:10:32,866 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:32,869 INFO L263 TraceCheckSpWp]: Trace formula consists of 312 conjuncts, 4 conjunts are in the unsatisfiable core [2022-11-23 14:10:32,875 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:10:32,982 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 31 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:10:32,983 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 14:10:32,983 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1862534177] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:32,983 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-23 14:10:32,983 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2022-11-23 14:10:32,984 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [721383620] [2022-11-23 14:10:32,984 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:32,985 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 14:10:32,985 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:32,986 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 14:10:32,986 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=12, Invalid=18, Unknown=0, NotChecked=0, Total=30 [2022-11-23 14:10:32,986 INFO L87 Difference]: Start difference. First operand 243 states and 307 transitions. Second operand has 3 states, 3 states have (on average 17.666666666666668) internal successors, (53), 3 states have internal predecessors, (53), 3 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-11-23 14:10:33,060 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:33,060 INFO L93 Difference]: Finished difference Result 472 states and 613 transitions. [2022-11-23 14:10:33,061 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 14:10:33,061 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 17.666666666666668) internal successors, (53), 3 states have internal predecessors, (53), 3 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 70 [2022-11-23 14:10:33,062 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:33,064 INFO L225 Difference]: With dead ends: 472 [2022-11-23 14:10:33,064 INFO L226 Difference]: Without dead ends: 231 [2022-11-23 14:10:33,065 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 76 GetRequests, 72 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=12, Invalid=18, Unknown=0, NotChecked=0, Total=30 [2022-11-23 14:10:33,067 INFO L413 NwaCegarLoop]: 79 mSDtfsCounter, 35 mSDsluCounter, 40 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 35 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 35 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:33,069 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [35 Valid, 119 Invalid, 35 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 14:10:33,070 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 231 states. [2022-11-23 14:10:33,093 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 231 to 231. [2022-11-23 14:10:33,094 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 231 states, 151 states have (on average 1.1920529801324504) internal successors, (180), 168 states have internal predecessors, (180), 42 states have call successors, (42), 36 states have call predecessors, (42), 37 states have return successors, (57), 37 states have call predecessors, (57), 42 states have call successors, (57) [2022-11-23 14:10:33,096 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 231 states to 231 states and 279 transitions. [2022-11-23 14:10:33,097 INFO L78 Accepts]: Start accepts. Automaton has 231 states and 279 transitions. Word has length 70 [2022-11-23 14:10:33,097 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:33,097 INFO L495 AbstractCegarLoop]: Abstraction has 231 states and 279 transitions. [2022-11-23 14:10:33,097 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 17.666666666666668) internal successors, (53), 3 states have internal predecessors, (53), 3 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-11-23 14:10:33,098 INFO L276 IsEmpty]: Start isEmpty. Operand 231 states and 279 transitions. [2022-11-23 14:10:33,100 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 79 [2022-11-23 14:10:33,101 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:33,101 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:33,112 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-23 14:10:33,307 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable7 [2022-11-23 14:10:33,307 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:33,308 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:33,308 INFO L85 PathProgramCache]: Analyzing trace with hash 37135443, now seen corresponding path program 1 times [2022-11-23 14:10:33,308 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:33,308 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1481416146] [2022-11-23 14:10:33,308 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:33,309 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:33,329 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:33,547 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 11 proven. 6 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2022-11-23 14:10:33,547 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:33,547 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1481416146] [2022-11-23 14:10:33,547 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1481416146] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 14:10:33,547 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [891488574] [2022-11-23 14:10:33,547 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:33,548 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:10:33,548 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:10:33,549 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:10:33,572 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-23 14:10:33,672 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:33,674 INFO L263 TraceCheckSpWp]: Trace formula consists of 337 conjuncts, 28 conjunts are in the unsatisfiable core [2022-11-23 14:10:33,682 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:10:33,947 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 19 proven. 13 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:10:33,947 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 14:10:34,376 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 14 proven. 6 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-23 14:10:34,377 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [891488574] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 14:10:34,378 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1632329931] [2022-11-23 14:10:34,402 INFO L159 IcfgInterpreter]: Started Sifa with 49 locations of interest [2022-11-23 14:10:34,402 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 14:10:34,436 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 14:10:34,442 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 14:10:34,443 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 14:10:38,894 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 54 for LOIs [2022-11-23 14:10:39,318 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 50 for LOIs [2022-11-23 14:10:39,636 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 67 for LOIs [2022-11-23 14:10:39,946 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 24 for LOIs [2022-11-23 14:10:39,948 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 142 for LOIs [2022-11-23 14:10:39,976 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 40 for LOIs [2022-11-23 14:10:39,979 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 14:10:49,598 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6724#(and (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification2_spec__2_~tmp___0~3#1|) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (= ~head~0.offset 0) (<= |old(~pumpRunning~0)| 2147483647) (= 1 ~systemActive~0) (<= 0 ~methAndRunningLastTime~0) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~3#1| 0)) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp~9#1| 1) (<= 0 |old(~methAndRunningLastTime~0)|) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~7#1|) (<= |old(~methAndRunningLastTime~0)| 1) (= |timeShift___utac_acc__Specification2_spec__2_~tmp~9#1| ~methaneLevelCritical~0) (<= 0 ~methaneLevelCritical~0) (<= |timeShift___utac_acc__Specification2_spec__2_~tmp___0~3#1| 2147483647) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~7#1|) (= ~head~0.base 0) (= |#NULL.offset| 0) (not (= |timeShift___utac_acc__Specification2_spec__2_~tmp~9#1| 0)) (not (= ~methAndRunningLastTime~0 0)) (<= ~methAndRunningLastTime~0 1) (<= 0 (+ |timeShift___utac_acc__Specification2_spec__2_~tmp___0~3#1| 2147483648)) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-23 14:10:49,599 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 14:10:49,599 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 14:10:49,599 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 9, 11] total 23 [2022-11-23 14:10:49,599 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1051413886] [2022-11-23 14:10:49,599 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 14:10:49,601 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2022-11-23 14:10:49,601 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:49,601 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2022-11-23 14:10:49,603 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=340, Invalid=2966, Unknown=0, NotChecked=0, Total=3306 [2022-11-23 14:10:49,604 INFO L87 Difference]: Start difference. First operand 231 states and 279 transitions. Second operand has 23 states, 17 states have (on average 7.0588235294117645) internal successors, (120), 18 states have internal predecessors, (120), 10 states have call successors, (27), 8 states have call predecessors, (27), 10 states have return successors, (25), 9 states have call predecessors, (25), 10 states have call successors, (25) [2022-11-23 14:10:50,593 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:50,594 INFO L93 Difference]: Finished difference Result 509 states and 618 transitions. [2022-11-23 14:10:50,594 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-11-23 14:10:50,596 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 17 states have (on average 7.0588235294117645) internal successors, (120), 18 states have internal predecessors, (120), 10 states have call successors, (27), 8 states have call predecessors, (27), 10 states have return successors, (25), 9 states have call predecessors, (25), 10 states have call successors, (25) Word has length 78 [2022-11-23 14:10:50,597 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:50,602 INFO L225 Difference]: With dead ends: 509 [2022-11-23 14:10:50,602 INFO L226 Difference]: Without dead ends: 363 [2022-11-23 14:10:50,605 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 254 GetRequests, 183 SyntacticMatches, 6 SemanticMatches, 65 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1738 ImplicationChecksByTransitivity, 10.0s TimeCoverageRelationStatistics Valid=453, Invalid=3969, Unknown=0, NotChecked=0, Total=4422 [2022-11-23 14:10:50,605 INFO L413 NwaCegarLoop]: 26 mSDtfsCounter, 446 mSDsluCounter, 182 mSDsCounter, 0 mSdLazyCounter, 1033 mSolverCounterSat, 253 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 450 SdHoareTripleChecker+Valid, 208 SdHoareTripleChecker+Invalid, 1286 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 253 IncrementalHoareTripleChecker+Valid, 1033 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.7s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:50,606 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [450 Valid, 208 Invalid, 1286 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [253 Valid, 1033 Invalid, 0 Unknown, 0 Unchecked, 0.7s Time] [2022-11-23 14:10:50,607 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 363 states. [2022-11-23 14:10:50,646 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 363 to 358. [2022-11-23 14:10:50,647 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 358 states, 237 states have (on average 1.1856540084388185) internal successors, (281), 262 states have internal predecessors, (281), 62 states have call successors, (62), 52 states have call predecessors, (62), 58 states have return successors, (84), 60 states have call predecessors, (84), 62 states have call successors, (84) [2022-11-23 14:10:50,649 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 358 states to 358 states and 427 transitions. [2022-11-23 14:10:50,649 INFO L78 Accepts]: Start accepts. Automaton has 358 states and 427 transitions. Word has length 78 [2022-11-23 14:10:50,650 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:50,650 INFO L495 AbstractCegarLoop]: Abstraction has 358 states and 427 transitions. [2022-11-23 14:10:50,650 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 17 states have (on average 7.0588235294117645) internal successors, (120), 18 states have internal predecessors, (120), 10 states have call successors, (27), 8 states have call predecessors, (27), 10 states have return successors, (25), 9 states have call predecessors, (25), 10 states have call successors, (25) [2022-11-23 14:10:50,650 INFO L276 IsEmpty]: Start isEmpty. Operand 358 states and 427 transitions. [2022-11-23 14:10:50,652 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 82 [2022-11-23 14:10:50,652 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:10:50,652 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:50,669 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-23 14:10:50,860 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:10:50,860 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:10:50,861 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:10:50,861 INFO L85 PathProgramCache]: Analyzing trace with hash -1384208340, now seen corresponding path program 1 times [2022-11-23 14:10:50,861 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:10:50,861 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1488752485] [2022-11-23 14:10:50,861 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:50,861 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:10:50,877 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:51,140 INFO L134 CoverageAnalysis]: Checked inductivity of 35 backedges. 12 proven. 10 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2022-11-23 14:10:51,140 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:10:51,140 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1488752485] [2022-11-23 14:10:51,141 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1488752485] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 14:10:51,141 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [685265439] [2022-11-23 14:10:51,142 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:10:51,142 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:10:51,142 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:10:51,143 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:10:51,168 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-23 14:10:51,240 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:10:51,242 INFO L263 TraceCheckSpWp]: Trace formula consists of 343 conjuncts, 23 conjunts are in the unsatisfiable core [2022-11-23 14:10:51,245 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:10:51,333 INFO L134 CoverageAnalysis]: Checked inductivity of 35 backedges. 20 proven. 0 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2022-11-23 14:10:51,333 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 14:10:51,333 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [685265439] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:10:51,333 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-23 14:10:51,333 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [11] total 14 [2022-11-23 14:10:51,334 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1893869570] [2022-11-23 14:10:51,334 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:10:51,334 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-23 14:10:51,334 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:10:51,335 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-23 14:10:51,335 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=31, Invalid=151, Unknown=0, NotChecked=0, Total=182 [2022-11-23 14:10:51,335 INFO L87 Difference]: Start difference. First operand 358 states and 427 transitions. Second operand has 9 states, 7 states have (on average 6.857142857142857) internal successors, (48), 7 states have internal predecessors, (48), 2 states have call successors, (10), 2 states have call predecessors, (10), 4 states have return successors, (10), 4 states have call predecessors, (10), 2 states have call successors, (10) [2022-11-23 14:10:51,688 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:10:51,688 INFO L93 Difference]: Finished difference Result 821 states and 984 transitions. [2022-11-23 14:10:51,688 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-23 14:10:51,689 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 7 states have (on average 6.857142857142857) internal successors, (48), 7 states have internal predecessors, (48), 2 states have call successors, (10), 2 states have call predecessors, (10), 4 states have return successors, (10), 4 states have call predecessors, (10), 2 states have call successors, (10) Word has length 81 [2022-11-23 14:10:51,690 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:10:51,690 INFO L225 Difference]: With dead ends: 821 [2022-11-23 14:10:51,690 INFO L226 Difference]: Without dead ends: 0 [2022-11-23 14:10:51,692 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 104 GetRequests, 85 SyntacticMatches, 0 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 39 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=72, Invalid=348, Unknown=0, NotChecked=0, Total=420 [2022-11-23 14:10:51,693 INFO L413 NwaCegarLoop]: 73 mSDtfsCounter, 54 mSDsluCounter, 341 mSDsCounter, 0 mSdLazyCounter, 337 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 59 SdHoareTripleChecker+Valid, 414 SdHoareTripleChecker+Invalid, 344 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 337 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-23 14:10:51,694 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [59 Valid, 414 Invalid, 344 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 337 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-23 14:10:51,694 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-23 14:10:51,695 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-23 14:10:51,695 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 14:10:51,695 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-23 14:10:51,695 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 81 [2022-11-23 14:10:51,695 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:10:51,695 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-23 14:10:51,696 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 7 states have (on average 6.857142857142857) internal successors, (48), 7 states have internal predecessors, (48), 2 states have call successors, (10), 2 states have call predecessors, (10), 4 states have return successors, (10), 4 states have call predecessors, (10), 2 states have call successors, (10) [2022-11-23 14:10:51,696 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-23 14:10:51,696 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-23 14:10:51,698 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-23 14:10:51,709 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-23 14:10:51,904 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-23 14:10:51,906 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-23 14:10:55,946 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 394 401) the Hoare annotation is: (let ((.cse0 (<= 1 ~pumpRunning~0)) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (<= 1 |old(~pumpRunning~0)|)))) (and (or .cse0 .cse1 .cse2 (not (= ~methaneLevelCritical~0 0))) (or .cse0 .cse1 .cse2 (not (= ~methaneLevelCritical~0 1))))) [2022-11-23 14:10:55,947 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 394 401) no Hoare annotation was computed. [2022-11-23 14:10:55,947 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 301 307) no Hoare annotation was computed. [2022-11-23 14:10:55,947 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 301 307) the Hoare annotation is: true [2022-11-23 14:10:55,947 INFO L895 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 122 133) the Hoare annotation is: (let ((.cse1 (not (= ~pumpRunning~0 0))) (.cse6 (= ~methaneLevelCritical~0 1)) (.cse7 (not (= |old(~methaneLevelCritical~0)| 1))) (.cse4 (not (= ~methAndRunningLastTime~0 0))) (.cse0 (not (= |old(~methaneLevelCritical~0)| 0))) (.cse2 (not (= 1 ~systemActive~0))) (.cse3 (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0)) (.cse5 (not (<= 1 ~pumpRunning~0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse2 .cse5 .cse6 .cse7) (or .cse1 .cse2 .cse6 .cse7 .cse4) (or .cse0 .cse2 .cse3 .cse5))) [2022-11-23 14:10:55,947 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 122 133) no Hoare annotation was computed. [2022-11-23 14:10:55,947 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 919 948) no Hoare annotation was computed. [2022-11-23 14:10:55,947 INFO L902 garLoopResultBuilder]: At program point L929-2(lines 929 943) the Hoare annotation is: true [2022-11-23 14:10:55,948 INFO L902 garLoopResultBuilder]: At program point L925(line 925) the Hoare annotation is: true [2022-11-23 14:10:55,948 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 919 948) the Hoare annotation is: true [2022-11-23 14:10:55,948 INFO L899 garLoopResultBuilder]: For program point L925-1(line 925) no Hoare annotation was computed. [2022-11-23 14:10:55,948 INFO L902 garLoopResultBuilder]: At program point L944(lines 919 948) the Hoare annotation is: true [2022-11-23 14:10:55,948 INFO L899 garLoopResultBuilder]: For program point L940(line 940) no Hoare annotation was computed. [2022-11-23 14:10:55,948 INFO L899 garLoopResultBuilder]: For program point L933(lines 933 937) no Hoare annotation was computed. [2022-11-23 14:10:55,948 INFO L902 garLoopResultBuilder]: At program point L933-1(lines 933 937) the Hoare annotation is: true [2022-11-23 14:10:55,949 INFO L895 garLoopResultBuilder]: At program point L894(line 894) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 0)) (.cse7 (= |timeShift_processEnvironment_~tmp~3#1| ~methaneLevelCritical~0))) (let ((.cse2 (not (= 0 ~systemActive~0))) (.cse8 (not (= ~methaneLevelCritical~0 0))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse6 (<= 1 ~pumpRunning~0)) (.cse10 (= ~methAndRunningLastTime~0 0)) (.cse9 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse3 (and .cse1 .cse7)) (.cse4 (not (= 1 ~systemActive~0))) (.cse5 (not (<= 1 |old(~pumpRunning~0)|))) (.cse11 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 .cse1 .cse2) (or .cse3 .cse4 .cse5 (and .cse6 .cse7) .cse8) (or .cse0 .cse9 .cse10 .cse4 .cse8) (or .cse9 .cse10 .cse4 .cse5 .cse8) (or .cse0 .cse9 .cse10 .cse8 .cse2) (or .cse6 .cse0 .cse1 .cse9 .cse4 .cse8) (or .cse0 .cse1 (and .cse6 .cse10) .cse9 .cse4 .cse11) (or .cse3 .cse4 .cse5 .cse11)))) [2022-11-23 14:10:55,949 INFO L899 garLoopResultBuilder]: For program point L894-1(line 894) no Hoare annotation was computed. [2022-11-23 14:10:55,949 INFO L895 garLoopResultBuilder]: At program point L407(line 407) the Hoare annotation is: (let ((.cse5 (= ~methAndRunningLastTime~0 0)) (.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (<= 1 ~pumpRunning~0)) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (<= 1 |old(~pumpRunning~0)|))) (.cse6 (not (= ~methaneLevelCritical~0 1))) (.cse7 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse4 .cse5 .cse1 .cse2 .cse6) (or .cse4 .cse5 .cse1 .cse2 .cse3) (or .cse7 .cse4 .cse1 .cse3) (or .cse7 .cse4 .cse1 .cse6) (or .cse0 .cse1 .cse2 .cse6) (or .cse7 (not (= 0 ~systemActive~0))))) [2022-11-23 14:10:55,949 INFO L895 garLoopResultBuilder]: At program point L407-1(line 407) the Hoare annotation is: (let ((.cse4 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse3 (not (= ~methaneLevelCritical~0 1))) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (<= 1 |old(~pumpRunning~0)|))) (.cse0 (<= 1 ~pumpRunning~0)) (.cse5 (not (= ~methaneLevelCritical~0 0))) (.cse6 (not (= |old(~pumpRunning~0)| 0)))) (and (or (and .cse0 (= |timeShift_isMethaneAlarm_#t~ret17#1| 1)) .cse1 .cse2 .cse3) (or .cse4 (= ~methAndRunningLastTime~0 0) .cse1 .cse2 .cse5) (or .cse6 .cse4 .cse1 .cse5) (or .cse6 .cse4 .cse1 .cse3) (or .cse1 .cse2 (and .cse0 (= |timeShift_isMethaneAlarm_#t~ret17#1| ~methaneLevelCritical~0)) .cse5) (or .cse6 (not (= 0 ~systemActive~0))))) [2022-11-23 14:10:55,949 INFO L899 garLoopResultBuilder]: For program point L288-1(lines 288 294) no Hoare annotation was computed. [2022-11-23 14:10:55,950 INFO L895 garLoopResultBuilder]: At program point L1019(line 1019) the Hoare annotation is: (let ((.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse1 (not (<= 1 |old(~pumpRunning~0)|))) (.cse4 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse5 (not (= ~methaneLevelCritical~0 1))) (.cse3 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 .cse1 .cse2) (or .cse3 .cse4 .cse0 .cse2) (or .cse0 .cse1 .cse5) (or .cse3 .cse4 .cse0 .cse5) (or .cse3 (not (= 0 ~systemActive~0))))) [2022-11-23 14:10:55,950 INFO L895 garLoopResultBuilder]: At program point L375(line 375) the Hoare annotation is: (let ((.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse1 (not (<= 1 |old(~pumpRunning~0)|))) (.cse3 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse5 (not (= ~methaneLevelCritical~0 1))) (.cse4 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 .cse1 (and (<= 1 ~pumpRunning~0) (= |timeShift_processEnvironment_~tmp~3#1| ~methaneLevelCritical~0)) .cse2) (or .cse3 (= ~methAndRunningLastTime~0 0) .cse0 .cse1 .cse2) (or .cse4 .cse3 .cse0 .cse2) (or .cse0 .cse1 .cse5) (or .cse4 .cse3 .cse0 .cse5) (or .cse4 (not (= 0 ~systemActive~0))))) [2022-11-23 14:10:55,950 INFO L895 garLoopResultBuilder]: At program point L371(line 371) the Hoare annotation is: (let ((.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= 1 |old(~pumpRunning~0)|))) (.cse5 (not (= ~methaneLevelCritical~0 1))) (.cse3 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 .cse1 .cse2) (or .cse3 .cse4 .cse0 .cse2) (or .cse3 .cse4 .cse0 .cse5) (or .cse0 .cse1 (and (<= 1 ~pumpRunning~0) (= |timeShift_processEnvironment_~tmp~3#1| ~methaneLevelCritical~0)) .cse5) (or .cse3 (not (= 0 ~systemActive~0))))) [2022-11-23 14:10:55,950 INFO L899 garLoopResultBuilder]: For program point L900(lines 900 910) no Hoare annotation was computed. [2022-11-23 14:10:55,951 INFO L895 garLoopResultBuilder]: At program point L896(lines 896 913) the Hoare annotation is: (let ((.cse2 (not (= 0 ~systemActive~0))) (.cse7 (= |timeShift_processEnvironment_~tmp~3#1| ~methaneLevelCritical~0)) (.cse9 (not (<= 1 |old(~pumpRunning~0)|))) (.cse11 (not (= ~methaneLevelCritical~0 1))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse8 (not (= 1 ~systemActive~0))) (.cse10 (<= 1 ~pumpRunning~0)) (.cse6 (not (= ~methaneLevelCritical~0 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse4 (= ~methAndRunningLastTime~0 0)) (.cse5 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~9#1| 0))) (and (or .cse0 .cse1 .cse2) (or .cse0 .cse3 (and .cse4 .cse5) .cse6 .cse2) (or (and .cse1 .cse5 .cse7) .cse8 .cse9 .cse6 (and .cse10 .cse5 .cse7)) (or .cse3 .cse4 .cse8 .cse9 .cse6) (or .cse0 .cse1 (and .cse10 .cse4) .cse3 .cse8 .cse11) (or (and .cse1 .cse7) .cse8 .cse9 .cse11) (or .cse0 .cse3 .cse8 (and .cse10 .cse4 .cse5) .cse6 (and .cse1 .cse4 .cse5)))) [2022-11-23 14:10:55,951 INFO L895 garLoopResultBuilder]: At program point L896-1(lines 888 916) the Hoare annotation is: (let ((.cse5 (= ~pumpRunning~0 0)) (.cse6 (= ~methAndRunningLastTime~0 0))) (let ((.cse8 (not (= ~methaneLevelCritical~0 1))) (.cse2 (and .cse5 .cse6)) (.cse10 (<= 1 ~pumpRunning~0)) (.cse3 (not (= 1 ~systemActive~0))) (.cse4 (not (<= 1 |old(~pumpRunning~0)|))) (.cse7 (= |timeShift_processEnvironment_~tmp~3#1| ~methaneLevelCritical~0)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse9 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse12 (not (= ~methaneLevelCritical~0 0))) (.cse11 (= |timeShift___utac_acc__Specification2_spec__2_~tmp~9#1| 0)) (.cse1 (not (= 0 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2) (or .cse3 .cse4 (and .cse5 .cse6 .cse7) .cse8) (or .cse0 .cse9 .cse3 (and .cse10 .cse6 .cse11) .cse12 (and .cse5 .cse6 .cse11)) (or .cse10 .cse0 .cse9 .cse3 .cse8 .cse2) (or (and .cse10 .cse6 .cse11 .cse7) .cse3 .cse4 .cse12 (and .cse5 .cse6 .cse11 .cse7)) (or .cse0 .cse9 .cse12 .cse11 .cse1)))) [2022-11-23 14:10:55,951 INFO L895 garLoopResultBuilder]: At program point L380(line 380) the Hoare annotation is: (let ((.cse1 (not (<= 1 |old(~pumpRunning~0)|))) (.cse3 (not (= ~methaneLevelCritical~0 1))) (.cse5 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (not (= ~methaneLevelCritical~0 0))) (.cse6 (and (= ~pumpRunning~0 0) (= ~methAndRunningLastTime~0 0))) (.cse4 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 .cse1 .cse2) (or .cse0 .cse1 .cse3) (or .cse4 .cse5 .cse0 .cse3 .cse6) (or .cse4 .cse5 .cse0 .cse2 .cse6) (or .cse4 (not (= 0 ~systemActive~0))))) [2022-11-23 14:10:55,952 INFO L895 garLoopResultBuilder]: At program point L380-1(lines 361 385) the Hoare annotation is: (let ((.cse9 (= ~pumpRunning~0 0)) (.cse4 (= |timeShift_processEnvironment_~tmp~3#1| ~methaneLevelCritical~0))) (let ((.cse5 (not (= ~methaneLevelCritical~0 0))) (.cse3 (<= 1 ~pumpRunning~0)) (.cse8 (= ~methAndRunningLastTime~0 0)) (.cse7 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse0 (and .cse9 .cse4)) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (<= 1 |old(~pumpRunning~0)|))) (.cse10 (not (= ~methaneLevelCritical~0 1))) (.cse6 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 .cse1 .cse2 (and .cse3 .cse4) .cse5) (or .cse6 .cse7 .cse8 .cse1 .cse5) (or .cse7 .cse8 .cse1 .cse2 .cse5) (or .cse3 .cse6 .cse9 .cse7 .cse1 .cse5) (or .cse6 .cse9 (and .cse3 .cse8) .cse7 .cse1 .cse10) (or .cse0 .cse1 .cse2 .cse10) (or .cse6 (not (= 0 ~systemActive~0)))))) [2022-11-23 14:10:55,952 INFO L899 garLoopResultBuilder]: For program point L281-1(lines 280 299) no Hoare annotation was computed. [2022-11-23 14:10:55,952 INFO L899 garLoopResultBuilder]: For program point L901(lines 901 907) no Hoare annotation was computed. [2022-11-23 14:10:55,952 INFO L899 garLoopResultBuilder]: For program point L369(lines 369 377) no Hoare annotation was computed. [2022-11-23 14:10:55,952 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 277 300) the Hoare annotation is: (let ((.cse5 (= ~pumpRunning~0 0)) (.cse8 (= ~methAndRunningLastTime~0 0))) (let ((.cse6 (not (= 0 ~systemActive~0))) (.cse4 (not (= |old(~pumpRunning~0)| 0))) (.cse7 (not (= |old(~methAndRunningLastTime~0)| 0))) (.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse10 (and .cse5 .cse8)) (.cse0 (<= 1 ~pumpRunning~0)) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not (<= 1 |old(~pumpRunning~0)|))) (.cse9 (not (= ~methaneLevelCritical~0 1)))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse4 .cse5 .cse6) (or .cse4 .cse7 .cse8 .cse6) (or .cse7 .cse8 .cse1 .cse2 .cse9) (or .cse7 .cse8 .cse1 .cse2 .cse3) (or .cse4 .cse7 .cse1 .cse9 .cse10) (or .cse4 .cse7 .cse1 .cse3 .cse10) (or .cse0 .cse1 .cse2 .cse9)))) [2022-11-23 14:10:55,952 INFO L899 garLoopResultBuilder]: For program point L365(lines 365 382) no Hoare annotation was computed. [2022-11-23 14:10:55,952 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 277 300) no Hoare annotation was computed. [2022-11-23 14:10:55,953 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 1019) no Hoare annotation was computed. [2022-11-23 14:10:55,953 INFO L902 garLoopResultBuilder]: At program point isMethaneLevelCriticalENTRY(lines 134 142) the Hoare annotation is: true [2022-11-23 14:10:55,953 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 134 142) no Hoare annotation was computed. [2022-11-23 14:10:55,953 INFO L895 garLoopResultBuilder]: At program point L502(line 502) the Hoare annotation is: (and (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (not (= 0 ~systemActive~0))) [2022-11-23 14:10:55,953 INFO L899 garLoopResultBuilder]: For program point L213(lines 212 259) no Hoare annotation was computed. [2022-11-23 14:10:55,953 INFO L899 garLoopResultBuilder]: For program point L242(lines 242 255) no Hoare annotation was computed. [2022-11-23 14:10:55,953 INFO L895 garLoopResultBuilder]: At program point L234(line 234) the Hoare annotation is: (let ((.cse8 (= 0 ~systemActive~0))) (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse0 (<= 1 ~pumpRunning~0)) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= ~methAndRunningLastTime~0 0)) (.cse2 (= 1 ~systemActive~0)) (.cse7 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (not .cse8))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse5 .cse6 .cse1 .cse2 .cse3 .cse4) (and .cse0 .cse2 .cse7 .cse3 .cse4) (and .cse5 .cse6 .cse3 .cse8) (and .cse5 .cse6 .cse2 .cse7 .cse3 .cse4)))) [2022-11-23 14:10:55,954 INFO L902 garLoopResultBuilder]: At program point L263(lines 202 267) the Hoare annotation is: true [2022-11-23 14:10:55,954 INFO L899 garLoopResultBuilder]: For program point L222(lines 222 228) no Hoare annotation was computed. [2022-11-23 14:10:55,954 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-23 14:10:55,954 INFO L899 garLoopResultBuilder]: For program point L222-1(lines 222 228) no Hoare annotation was computed. [2022-11-23 14:10:55,954 INFO L895 garLoopResultBuilder]: At program point L260(lines 211 261) the Hoare annotation is: false [2022-11-23 14:10:55,954 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-23 14:10:55,954 INFO L899 garLoopResultBuilder]: For program point L248(lines 248 254) no Hoare annotation was computed. [2022-11-23 14:10:55,954 INFO L895 garLoopResultBuilder]: At program point L248-2(lines 242 255) the Hoare annotation is: (let ((.cse8 (= 0 ~systemActive~0))) (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse0 (<= 1 ~pumpRunning~0)) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= ~methAndRunningLastTime~0 0)) (.cse2 (= 1 ~systemActive~0)) (.cse7 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (not .cse8))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse5 .cse6 .cse1 .cse2 .cse3 .cse4) (and .cse0 .cse2 .cse7 .cse3 .cse4) (and .cse5 .cse3 .cse8) (and .cse5 .cse6 .cse2 .cse7 .cse3 .cse4)))) [2022-11-23 14:10:55,955 INFO L899 garLoopResultBuilder]: For program point L500(lines 500 506) no Hoare annotation was computed. [2022-11-23 14:10:55,955 INFO L895 garLoopResultBuilder]: At program point L500-1(lines 500 506) the Hoare annotation is: (let ((.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 (not (= 0 ~systemActive~0))) (and .cse0 (= ~methAndRunningLastTime~0 0) .cse1))) [2022-11-23 14:10:55,955 INFO L899 garLoopResultBuilder]: For program point L232(lines 232 238) no Hoare annotation was computed. [2022-11-23 14:10:55,955 INFO L899 garLoopResultBuilder]: For program point L232-1(lines 232 238) no Hoare annotation was computed. [2022-11-23 14:10:55,955 INFO L895 garLoopResultBuilder]: At program point L257(lines 212 259) the Hoare annotation is: (let ((.cse8 (= 0 ~systemActive~0))) (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse0 (<= 1 ~pumpRunning~0)) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= ~methAndRunningLastTime~0 0)) (.cse2 (= 1 ~systemActive~0)) (.cse7 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (not .cse8))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse5 .cse6 .cse1 .cse2 .cse3 .cse4) (and .cse0 .cse2 .cse7 .cse3 .cse4) (and .cse5 .cse6 .cse3 .cse8) (and .cse5 .cse6 .cse2 .cse7 .cse3 .cse4)))) [2022-11-23 14:10:55,955 INFO L895 garLoopResultBuilder]: At program point L224(line 224) the Hoare annotation is: (let ((.cse8 (= 0 ~systemActive~0))) (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse0 (<= 1 ~pumpRunning~0)) (.cse5 (= ~pumpRunning~0 0)) (.cse6 (= ~methAndRunningLastTime~0 0)) (.cse2 (= 1 ~systemActive~0)) (.cse7 (= ~methaneLevelCritical~0 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (not .cse8))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse5 .cse6 .cse1 .cse2 .cse3 .cse4) (and .cse0 .cse2 .cse7 .cse3 .cse4) (and .cse5 .cse6 .cse3 .cse8) (and .cse5 .cse6 .cse2 .cse7 .cse3 .cse4)))) [2022-11-23 14:10:55,956 INFO L895 garLoopResultBuilder]: At program point L1001(lines 1001 1008) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= ~methAndRunningLastTime~0 0) (= ~methaneLevelCritical~0 0) (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0) (= 1 ~systemActive~0)) [2022-11-23 14:10:55,956 INFO L902 garLoopResultBuilder]: At program point L1001-2(lines 1001 1008) the Hoare annotation is: true [2022-11-23 14:10:55,956 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 309 333) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or (<= 1 ~pumpRunning~0) .cse0 (not (<= 1 |old(~pumpRunning~0)|)) .cse1) (or .cse2 .cse3 .cse0 (not (= ~methaneLevelCritical~0 1)) .cse4) (or .cse2 .cse3 .cse0 .cse1 .cse4))) [2022-11-23 14:10:55,956 INFO L895 garLoopResultBuilder]: At program point L323(line 323) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 (not (<= 1 |old(~pumpRunning~0)|)) .cse1) (or .cse2 .cse3 .cse0 (not (= ~methaneLevelCritical~0 1)) .cse4) (or .cse2 .cse3 .cse0 .cse1 .cse4))) [2022-11-23 14:10:55,956 INFO L895 garLoopResultBuilder]: At program point L317(lines 317 325) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 (not (<= 1 |old(~pumpRunning~0)|)) .cse1) (or .cse2 .cse3 .cse0 (not (= ~methaneLevelCritical~0 1)) .cse4) (or .cse2 .cse3 .cse0 .cse1 .cse4))) [2022-11-23 14:10:55,957 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 309 333) no Hoare annotation was computed. [2022-11-23 14:10:55,957 INFO L895 garLoopResultBuilder]: At program point L313(lines 313 330) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or (<= 1 ~pumpRunning~0) .cse0 (not (<= 1 |old(~pumpRunning~0)|)) .cse1) (or .cse2 .cse3 .cse0 (not (= ~methaneLevelCritical~0 1)) .cse4) (or .cse2 .cse3 .cse0 .cse1 .cse4))) [2022-11-23 14:10:55,957 INFO L895 garLoopResultBuilder]: At program point L328(line 328) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse2 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 (not (= ~methaneLevelCritical~0 1)) .cse2) (or (<= 1 ~pumpRunning~0) .cse1 (not (<= 1 |old(~pumpRunning~0)|)) .cse3) (or .cse0 .cse1 .cse3 .cse2))) [2022-11-23 14:10:55,957 INFO L899 garLoopResultBuilder]: For program point L328-1(lines 309 333) no Hoare annotation was computed. [2022-11-23 14:10:55,957 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 110 121) no Hoare annotation was computed. [2022-11-23 14:10:55,957 INFO L902 garLoopResultBuilder]: At program point waterRiseENTRY(lines 110 121) the Hoare annotation is: true [2022-11-23 14:10:55,958 INFO L895 garLoopResultBuilder]: At program point L349(line 349) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse2 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 (not (= ~methaneLevelCritical~0 1)) .cse2) (or (<= 1 ~pumpRunning~0) .cse1 (not (<= 1 |old(~pumpRunning~0)|)) .cse3) (or .cse0 .cse1 .cse3 .cse2))) [2022-11-23 14:10:55,958 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__lowWaterSensorENTRY(lines 335 359) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or (<= 1 ~pumpRunning~0) .cse0 (not (<= 1 |old(~pumpRunning~0)|)) .cse1) (or .cse2 .cse3 .cse0 (not (= ~methaneLevelCritical~0 1)) .cse4) (or .cse2 .cse3 .cse0 .cse1 .cse4))) [2022-11-23 14:10:55,958 INFO L895 garLoopResultBuilder]: At program point L345(line 345) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse2 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 .cse1 (not (= ~methaneLevelCritical~0 1)) .cse2) (or (<= 1 ~pumpRunning~0) .cse1 (not (<= 1 |old(~pumpRunning~0)|)) .cse3) (or .cse0 .cse1 .cse3 .cse2))) [2022-11-23 14:10:55,958 INFO L899 garLoopResultBuilder]: For program point L343(lines 343 351) no Hoare annotation was computed. [2022-11-23 14:10:55,958 INFO L895 garLoopResultBuilder]: At program point L339(lines 339 356) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or (<= 1 ~pumpRunning~0) .cse0 (not (<= 1 |old(~pumpRunning~0)|)) .cse1) (or .cse2 .cse3 .cse0 (not (= ~methaneLevelCritical~0 1)) .cse4) (or .cse2 .cse3 .cse0 .cse1 .cse4))) [2022-11-23 14:10:55,959 INFO L895 garLoopResultBuilder]: At program point L354(line 354) the Hoare annotation is: (let ((.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (= ~pumpRunning~0 0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (= ~methaneLevelCritical~0 0))) (.cse4 (not (= ~methAndRunningLastTime~0 0)))) (and (or .cse0 (not (<= 1 |old(~pumpRunning~0)|)) .cse1) (or .cse2 .cse3 .cse0 (not (= ~methaneLevelCritical~0 1)) .cse4) (or .cse2 .cse3 .cse0 .cse1 .cse4))) [2022-11-23 14:10:55,959 INFO L899 garLoopResultBuilder]: For program point L354-1(lines 335 359) no Hoare annotation was computed. [2022-11-23 14:10:55,959 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__lowWaterSensorEXIT(lines 335 359) no Hoare annotation was computed. [2022-11-23 14:10:55,962 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:10:55,964 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-23 14:10:55,989 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 23.11 02:10:55 BoogieIcfgContainer [2022-11-23 14:10:55,989 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-23 14:10:55,990 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-23 14:10:55,990 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-23 14:10:55,990 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-23 14:10:55,991 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 02:10:30" (3/4) ... [2022-11-23 14:10:55,994 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-23 14:10:55,999 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-23 14:10:55,999 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-23 14:10:55,999 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-23 14:10:55,999 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-23 14:10:55,999 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-23 14:10:55,999 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2022-11-23 14:10:56,000 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 14:10:56,000 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-23 14:10:56,000 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2022-11-23 14:10:56,007 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 49 nodes and edges [2022-11-23 14:10:56,007 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2022-11-23 14:10:56,008 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 6 nodes and edges [2022-11-23 14:10:56,008 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-23 14:10:56,009 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-23 14:10:56,033 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((1 <= pumpRunning || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(0 == systemActive))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || (pumpRunning == 0 && methAndRunningLastTime == 0))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || (pumpRunning == 0 && methAndRunningLastTime == 0))) && (((1 <= pumpRunning || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1)) [2022-11-23 14:10:56,034 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((((pumpRunning == 0 && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || (1 <= pumpRunning && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 0)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0))) && (((((1 <= pumpRunning || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || (1 <= pumpRunning && methAndRunningLastTime == 0)) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && ((((pumpRunning == 0 && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-23 14:10:56,035 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((1 <= pumpRunning || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) [2022-11-23 14:10:56,035 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (methAndRunningLastTime == 0 && tmp == 0)) || !(methaneLevelCritical == 0)) || !(0 == systemActive))) && ((((((pumpRunning == 0 && tmp == 0) && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) || ((1 <= pumpRunning && tmp == 0) && tmp == methaneLevelCritical))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0))) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || (1 <= pumpRunning && methAndRunningLastTime == 0)) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && ((((pumpRunning == 0 && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((1 <= pumpRunning && methAndRunningLastTime == 0) && tmp == 0)) || !(methaneLevelCritical == 0)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 0)) [2022-11-23 14:10:56,035 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((1 <= pumpRunning && aux-isMethaneLevelCritical()-aux == 1) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1)) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || (1 <= pumpRunning && aux-isMethaneLevelCritical()-aux == methaneLevelCritical)) || !(methaneLevelCritical == 0))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-23 14:10:56,035 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((1 <= pumpRunning || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) [2022-11-23 14:10:56,035 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(\old(pumpRunning) == 0) || !(0 == systemActive)) || (pumpRunning == 0 && methAndRunningLastTime == 0)) && (((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((1 <= pumpRunning && methAndRunningLastTime == 0) && tmp == 0)) || !(methaneLevelCritical == 0)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 0))) && (((((1 <= pumpRunning || !(\old(pumpRunning) == 0)) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || (pumpRunning == 0 && methAndRunningLastTime == 0))) && (((((((1 <= pumpRunning && methAndRunningLastTime == 0) && tmp == 0) && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 0) && tmp == methaneLevelCritical))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(methaneLevelCritical == 0)) || tmp == 0) || !(0 == systemActive)) [2022-11-23 14:10:56,036 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-23 14:10:56,040 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) [2022-11-23 14:10:56,090 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/witness.graphml [2022-11-23 14:10:56,091 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-23 14:10:56,092 INFO L158 Benchmark]: Toolchain (without parser) took 27290.49ms. Allocated memory was 140.5MB in the beginning and 404.8MB in the end (delta: 264.2MB). Free memory was 108.5MB in the beginning and 154.9MB in the end (delta: -46.4MB). Peak memory consumption was 219.2MB. Max. memory is 16.1GB. [2022-11-23 14:10:56,092 INFO L158 Benchmark]: CDTParser took 0.28ms. Allocated memory is still 107.0MB. Free memory is still 61.3MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-23 14:10:56,092 INFO L158 Benchmark]: CACSL2BoogieTranslator took 510.57ms. Allocated memory is still 140.5MB. Free memory was 108.1MB in the beginning and 89.1MB in the end (delta: 19.0MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2022-11-23 14:10:56,093 INFO L158 Benchmark]: Boogie Procedure Inliner took 45.72ms. Allocated memory is still 140.5MB. Free memory was 89.1MB in the beginning and 86.7MB in the end (delta: 2.4MB). There was no memory consumed. Max. memory is 16.1GB. [2022-11-23 14:10:56,093 INFO L158 Benchmark]: Boogie Preprocessor took 31.13ms. Allocated memory is still 140.5MB. Free memory was 86.7MB in the beginning and 85.1MB in the end (delta: 1.7MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2022-11-23 14:10:56,093 INFO L158 Benchmark]: RCFGBuilder took 807.24ms. Allocated memory is still 140.5MB. Free memory was 85.1MB in the beginning and 109.9MB in the end (delta: -24.8MB). Peak memory consumption was 30.6MB. Max. memory is 16.1GB. [2022-11-23 14:10:56,094 INFO L158 Benchmark]: TraceAbstraction took 25787.62ms. Allocated memory was 140.5MB in the beginning and 404.8MB in the end (delta: 264.2MB). Free memory was 109.1MB in the beginning and 160.2MB in the end (delta: -51.0MB). Peak memory consumption was 241.1MB. Max. memory is 16.1GB. [2022-11-23 14:10:56,095 INFO L158 Benchmark]: Witness Printer took 101.42ms. Allocated memory is still 404.8MB. Free memory was 160.2MB in the beginning and 154.9MB in the end (delta: 5.2MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-23 14:10:56,098 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.28ms. Allocated memory is still 107.0MB. Free memory is still 61.3MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 510.57ms. Allocated memory is still 140.5MB. Free memory was 108.1MB in the beginning and 89.1MB in the end (delta: 19.0MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 45.72ms. Allocated memory is still 140.5MB. Free memory was 89.1MB in the beginning and 86.7MB in the end (delta: 2.4MB). There was no memory consumed. Max. memory is 16.1GB. * Boogie Preprocessor took 31.13ms. Allocated memory is still 140.5MB. Free memory was 86.7MB in the beginning and 85.1MB in the end (delta: 1.7MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * RCFGBuilder took 807.24ms. Allocated memory is still 140.5MB. Free memory was 85.1MB in the beginning and 109.9MB in the end (delta: -24.8MB). Peak memory consumption was 30.6MB. Max. memory is 16.1GB. * TraceAbstraction took 25787.62ms. Allocated memory was 140.5MB in the beginning and 404.8MB in the end (delta: 264.2MB). Free memory was 109.1MB in the beginning and 160.2MB in the end (delta: -51.0MB). Peak memory consumption was 241.1MB. Max. memory is 16.1GB. * Witness Printer took 101.42ms. Allocated memory is still 404.8MB. Free memory was 160.2MB in the beginning and 154.9MB in the end (delta: 5.2MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 1019]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 10 procedures, 74 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 25.7s, OverallIterations: 10, TraceHistogramMax: 3, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 2.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 4.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 914 SdHoareTripleChecker+Valid, 1.5s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 898 mSDsluCounter, 1950 SdHoareTripleChecker+Invalid, 1.2s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1215 mSDsCounter, 290 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 1813 IncrementalHoareTripleChecker+Invalid, 2103 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 290 mSolverCounterUnsat, 735 mSDtfsCounter, 1813 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 467 GetRequests, 356 SyntacticMatches, 6 SemanticMatches, 105 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1780 ImplicationChecksByTransitivity, 10.3s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=358occurred in iteration=9, InterpolantAutomatonStates: 60, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.3s AutomataMinimizationTime, 10 MinimizatonAttempts, 53 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 42 LocationsWithAnnotation, 1205 PreInvPairs, 1347 NumberOfFragments, 2407 HoareAnnotationTreeSize, 1205 FomulaSimplifications, 1876 FormulaSimplificationTreeSizeReduction, 0.3s HoareSimplificationTime, 42 FomulaSimplificationsInter, 5623 FormulaSimplificationTreeSizeReductionInter, 3.7s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 2.1s InterpolantComputationTime, 675 NumberOfCodeBlocks, 675 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 739 ConstructedInterpolants, 0 QuantifiedInterpolants, 1738 SizeOfPredicates, 14 NumberOfNonLiveVariables, 992 ConjunctsInSsa, 55 ConjunctsInUnsatCore, 14 InterpolantComputations, 9 PerfectInterpolantSequences, 220/259 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 313]: Loop Invariant Derived loop invariant: ((((1 <= pumpRunning || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 1001]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 500]: Loop Invariant Derived loop invariant: ((pumpRunning == 0 && splverifierCounter == 0) && !(0 == systemActive)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && splverifierCounter == 0) - InvariantResult [Line: 888]: Loop Invariant Derived loop invariant: ((((((!(\old(pumpRunning) == 0) || !(0 == systemActive)) || (pumpRunning == 0 && methAndRunningLastTime == 0)) && (((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((1 <= pumpRunning && methAndRunningLastTime == 0) && tmp == 0)) || !(methaneLevelCritical == 0)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 0))) && (((((1 <= pumpRunning || !(\old(pumpRunning) == 0)) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || (pumpRunning == 0 && methAndRunningLastTime == 0))) && (((((((1 <= pumpRunning && methAndRunningLastTime == 0) && tmp == 0) && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 0) && tmp == methaneLevelCritical))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(methaneLevelCritical == 0)) || tmp == 0) || !(0 == systemActive)) - InvariantResult [Line: 277]: Loop Invariant Derived loop invariant: (((((((((1 <= pumpRunning || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(0 == systemActive))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || (pumpRunning == 0 && methAndRunningLastTime == 0))) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || (pumpRunning == 0 && methAndRunningLastTime == 0))) && (((1 <= pumpRunning || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1)) - InvariantResult [Line: 339]: Loop Invariant Derived loop invariant: ((((1 <= pumpRunning || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) - InvariantResult [Line: 896]: Loop Invariant Derived loop invariant: (((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || (methAndRunningLastTime == 0 && tmp == 0)) || !(methaneLevelCritical == 0)) || !(0 == systemActive))) && ((((((pumpRunning == 0 && tmp == 0) && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) || ((1 <= pumpRunning && tmp == 0) && tmp == methaneLevelCritical))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0))) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || (1 <= pumpRunning && methAndRunningLastTime == 0)) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && ((((pumpRunning == 0 && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1))) && (((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || ((1 <= pumpRunning && methAndRunningLastTime == 0) && tmp == 0)) || !(methaneLevelCritical == 0)) || ((pumpRunning == 0 && methAndRunningLastTime == 0) && tmp == 0)) - InvariantResult [Line: 919]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 212]: Loop Invariant Derived loop invariant: (((((((1 <= pumpRunning && methaneLevelCritical == 0) && 1 == systemActive) && splverifierCounter == 0) && !(0 == systemActive)) || (((((pumpRunning == 0 && methAndRunningLastTime == 0) && methaneLevelCritical == 0) && 1 == systemActive) && splverifierCounter == 0) && !(0 == systemActive))) || ((((1 <= pumpRunning && 1 == systemActive) && methaneLevelCritical == 1) && splverifierCounter == 0) && !(0 == systemActive))) || (((pumpRunning == 0 && methAndRunningLastTime == 0) && splverifierCounter == 0) && 0 == systemActive)) || (((((pumpRunning == 0 && methAndRunningLastTime == 0) && 1 == systemActive) && methaneLevelCritical == 1) && splverifierCounter == 0) && !(0 == systemActive)) - InvariantResult [Line: 407]: Loop Invariant Derived loop invariant: ((((((((1 <= pumpRunning && aux-isMethaneLevelCritical()-aux == 1) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1)) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || (1 <= pumpRunning && aux-isMethaneLevelCritical()-aux == methaneLevelCritical)) || !(methaneLevelCritical == 0))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 361]: Loop Invariant Derived loop invariant: ((((((((((pumpRunning == 0 && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || (1 <= pumpRunning && tmp == methaneLevelCritical)) || !(methaneLevelCritical == 0)) && ((((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((((!(\old(methAndRunningLastTime) == 0) || methAndRunningLastTime == 0) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0))) && (((((1 <= pumpRunning || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && (((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || (1 <= pumpRunning && methAndRunningLastTime == 0)) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && ((((pumpRunning == 0 && tmp == methaneLevelCritical) || !(1 == systemActive)) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 202]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 317]: Loop Invariant Derived loop invariant: (((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 1)) || !(methAndRunningLastTime == 0))) && ((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || !(methAndRunningLastTime == 0)) - InvariantResult [Line: 1019]: Loop Invariant Derived loop invariant: (((((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 0)) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 0))) && ((!(1 == systemActive) || !(1 <= \old(pumpRunning))) || !(methaneLevelCritical == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(methAndRunningLastTime) == 0)) || !(1 == systemActive)) || !(methaneLevelCritical == 1))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 1001]: Loop Invariant Derived loop invariant: (((pumpRunning == 0 && methAndRunningLastTime == 0) && methaneLevelCritical == 0) && tmp == systemActive) && 1 == systemActive - InvariantResult [Line: 211]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 929]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2022-11-23 14:10:56,156 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_e0119f6b-0a42-40b2-930a-eecd0f8875da/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE