./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 4e7fbc69 Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash ae631a30e0cfb00652c35b082fd4038988aa5f3b2e1b026ceeb94d0624c45642 --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-4e7fbc6 [2022-11-23 14:59:48,223 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-23 14:59:48,224 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-23 14:59:48,269 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-23 14:59:48,269 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-23 14:59:48,270 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-23 14:59:48,271 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-23 14:59:48,273 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-23 14:59:48,275 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-23 14:59:48,276 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-23 14:59:48,277 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-23 14:59:48,278 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-23 14:59:48,285 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-23 14:59:48,293 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-23 14:59:48,294 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-23 14:59:48,295 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-23 14:59:48,296 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-23 14:59:48,297 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-23 14:59:48,298 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-23 14:59:48,300 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-23 14:59:48,305 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-23 14:59:48,309 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-23 14:59:48,312 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-23 14:59:48,313 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-23 14:59:48,328 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-23 14:59:48,329 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-23 14:59:48,329 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-23 14:59:48,330 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-23 14:59:48,330 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-23 14:59:48,331 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-23 14:59:48,332 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-23 14:59:48,332 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-23 14:59:48,333 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-23 14:59:48,334 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-23 14:59:48,335 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-23 14:59:48,335 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-23 14:59:48,336 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-23 14:59:48,336 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-23 14:59:48,336 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-23 14:59:48,337 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-23 14:59:48,338 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-23 14:59:48,342 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-23 14:59:48,364 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-23 14:59:48,364 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-23 14:59:48,365 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-23 14:59:48,365 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-23 14:59:48,365 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-23 14:59:48,366 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-23 14:59:48,366 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-23 14:59:48,366 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-23 14:59:48,366 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-23 14:59:48,367 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-23 14:59:48,367 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-23 14:59:48,367 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-23 14:59:48,367 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-23 14:59:48,367 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-23 14:59:48,368 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-23 14:59:48,368 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-23 14:59:48,368 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-23 14:59:48,368 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-23 14:59:48,369 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-23 14:59:48,369 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-23 14:59:48,369 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-23 14:59:48,370 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-23 14:59:48,370 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-23 14:59:48,370 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-23 14:59:48,370 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-23 14:59:48,370 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-23 14:59:48,371 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-23 14:59:48,371 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-23 14:59:48,371 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-23 14:59:48,371 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-23 14:59:48,372 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-23 14:59:48,372 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-23 14:59:48,372 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 14:59:48,372 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-23 14:59:48,372 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-23 14:59:48,373 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-23 14:59:48,373 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-23 14:59:48,373 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-23 14:59:48,373 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-23 14:59:48,373 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-23 14:59:48,374 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-23 14:59:48,374 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> ae631a30e0cfb00652c35b082fd4038988aa5f3b2e1b026ceeb94d0624c45642 [2022-11-23 14:59:48,605 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-23 14:59:48,628 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-23 14:59:48,631 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-23 14:59:48,632 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-23 14:59:48,633 INFO L275 PluginConnector]: CDTParser initialized [2022-11-23 14:59:48,634 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/../../sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c [2022-11-23 14:59:51,546 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-23 14:59:51,868 INFO L351 CDTParser]: Found 1 translation units. [2022-11-23 14:59:51,880 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c [2022-11-23 14:59:51,897 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/data/03afeebd6/5be1beaa6a19496aa484739c16270c10/FLAG5b899bae7 [2022-11-23 14:59:51,922 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/data/03afeebd6/5be1beaa6a19496aa484739c16270c10 [2022-11-23 14:59:51,925 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-23 14:59:51,926 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-23 14:59:51,930 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-23 14:59:51,931 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-23 14:59:51,935 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-23 14:59:51,936 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 02:59:51" (1/1) ... [2022-11-23 14:59:51,938 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2d6e1238 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:51, skipping insertion in model container [2022-11-23 14:59:51,939 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 02:59:51" (1/1) ... [2022-11-23 14:59:51,947 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-23 14:59:52,011 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-23 14:59:52,328 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c[13037,13050] [2022-11-23 14:59:52,359 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 14:59:52,369 INFO L203 MainTranslator]: Completed pre-run [2022-11-23 14:59:52,468 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c[13037,13050] [2022-11-23 14:59:52,486 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 14:59:52,511 INFO L208 MainTranslator]: Completed translation [2022-11-23 14:59:52,511 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52 WrapperNode [2022-11-23 14:59:52,512 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-23 14:59:52,513 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-23 14:59:52,513 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-23 14:59:52,514 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-23 14:59:52,521 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,545 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,589 INFO L138 Inliner]: procedures = 57, calls = 102, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 227 [2022-11-23 14:59:52,590 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-23 14:59:52,591 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-23 14:59:52,591 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-23 14:59:52,591 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-23 14:59:52,601 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,602 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,614 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,615 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,623 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,628 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,629 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,631 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,633 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-23 14:59:52,635 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-23 14:59:52,635 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-23 14:59:52,636 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-23 14:59:52,637 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (1/1) ... [2022-11-23 14:59:52,653 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 14:59:52,663 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:59:52,677 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-23 14:59:52,720 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-23 14:59:52,750 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-23 14:59:52,750 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-23 14:59:52,751 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-23 14:59:52,751 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2022-11-23 14:59:52,751 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2022-11-23 14:59:52,751 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-23 14:59:52,751 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-23 14:59:52,751 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-23 14:59:52,751 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-23 14:59:52,752 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 14:59:52,752 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 14:59:52,753 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-23 14:59:52,753 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-23 14:59:52,753 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-23 14:59:52,753 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-23 14:59:52,754 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-23 14:59:52,754 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-23 14:59:52,754 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-23 14:59:52,863 INFO L235 CfgBuilder]: Building ICFG [2022-11-23 14:59:52,866 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-23 14:59:53,191 INFO L276 CfgBuilder]: Performing block encoding [2022-11-23 14:59:53,344 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-23 14:59:53,344 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-23 14:59:53,347 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 02:59:53 BoogieIcfgContainer [2022-11-23 14:59:53,347 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-23 14:59:53,350 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-23 14:59:53,350 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-23 14:59:53,354 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-23 14:59:53,354 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 23.11 02:59:51" (1/3) ... [2022-11-23 14:59:53,355 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3d1c5f3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 02:59:53, skipping insertion in model container [2022-11-23 14:59:53,355 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 02:59:52" (2/3) ... [2022-11-23 14:59:53,356 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3d1c5f3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 02:59:53, skipping insertion in model container [2022-11-23 14:59:53,356 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 02:59:53" (3/3) ... [2022-11-23 14:59:53,357 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec3_product58.cil.c [2022-11-23 14:59:53,378 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-23 14:59:53,379 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-23 14:59:53,431 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-23 14:59:53,439 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@719f7fa8, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-23 14:59:53,440 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-23 14:59:53,444 INFO L276 IsEmpty]: Start isEmpty. Operand has 58 states, 37 states have (on average 1.4324324324324325) internal successors, (53), 45 states have internal predecessors, (53), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 14:59:53,453 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2022-11-23 14:59:53,454 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:59:53,454 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:59:53,455 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:59:53,460 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:59:53,461 INFO L85 PathProgramCache]: Analyzing trace with hash -1778790351, now seen corresponding path program 1 times [2022-11-23 14:59:53,470 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:59:53,470 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1878560731] [2022-11-23 14:59:53,471 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:59:53,471 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:59:53,589 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:59:53,692 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:59:53,693 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:59:53,694 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1878560731] [2022-11-23 14:59:53,695 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1878560731] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:59:53,695 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:59:53,695 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-23 14:59:53,697 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [732442182] [2022-11-23 14:59:53,698 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:59:53,702 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-23 14:59:53,704 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:59:53,750 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-23 14:59:53,751 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 14:59:53,753 INFO L87 Difference]: Start difference. First operand has 58 states, 37 states have (on average 1.4324324324324325) internal successors, (53), 45 states have internal predecessors, (53), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:59:53,856 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:59:53,857 INFO L93 Difference]: Finished difference Result 114 states and 155 transitions. [2022-11-23 14:59:53,858 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-23 14:59:53,860 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2022-11-23 14:59:53,860 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:59:53,869 INFO L225 Difference]: With dead ends: 114 [2022-11-23 14:59:53,869 INFO L226 Difference]: Without dead ends: 53 [2022-11-23 14:59:53,873 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 14:59:53,876 INFO L413 NwaCegarLoop]: 56 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 56 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 14:59:53,877 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 56 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 14:59:53,894 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 53 states. [2022-11-23 14:59:53,922 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 53 to 53. [2022-11-23 14:59:53,923 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 53 states, 34 states have (on average 1.3235294117647058) internal successors, (45), 41 states have internal predecessors, (45), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-23 14:59:53,931 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 53 states to 53 states and 68 transitions. [2022-11-23 14:59:53,934 INFO L78 Accepts]: Start accepts. Automaton has 53 states and 68 transitions. Word has length 17 [2022-11-23 14:59:53,934 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:59:53,935 INFO L495 AbstractCegarLoop]: Abstraction has 53 states and 68 transitions. [2022-11-23 14:59:53,935 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.5) internal successors, (13), 2 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:59:53,936 INFO L276 IsEmpty]: Start isEmpty. Operand 53 states and 68 transitions. [2022-11-23 14:59:53,940 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 19 [2022-11-23 14:59:53,940 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:59:53,940 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:59:53,940 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-23 14:59:53,941 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:59:53,942 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:59:53,942 INFO L85 PathProgramCache]: Analyzing trace with hash 942296326, now seen corresponding path program 1 times [2022-11-23 14:59:53,942 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:59:53,943 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [569614716] [2022-11-23 14:59:53,943 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:59:53,943 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:59:53,986 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:59:54,059 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:59:54,059 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:59:54,059 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [569614716] [2022-11-23 14:59:54,059 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [569614716] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:59:54,060 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:59:54,060 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 14:59:54,060 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1098323065] [2022-11-23 14:59:54,060 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:59:54,080 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 14:59:54,080 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:59:54,081 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 14:59:54,081 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:59:54,081 INFO L87 Difference]: Start difference. First operand 53 states and 68 transitions. Second operand has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:59:54,125 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:59:54,126 INFO L93 Difference]: Finished difference Result 83 states and 107 transitions. [2022-11-23 14:59:54,126 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 14:59:54,127 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 18 [2022-11-23 14:59:54,127 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:59:54,128 INFO L225 Difference]: With dead ends: 83 [2022-11-23 14:59:54,128 INFO L226 Difference]: Without dead ends: 45 [2022-11-23 14:59:54,129 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:59:54,130 INFO L413 NwaCegarLoop]: 42 mSDtfsCounter, 7 mSDsluCounter, 33 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 75 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 14:59:54,131 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 75 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 14:59:54,132 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 45 states. [2022-11-23 14:59:54,138 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 45 to 45. [2022-11-23 14:59:54,138 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 45 states, 29 states have (on average 1.3448275862068966) internal successors, (39), 36 states have internal predecessors, (39), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-23 14:59:54,139 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 45 states to 45 states and 57 transitions. [2022-11-23 14:59:54,139 INFO L78 Accepts]: Start accepts. Automaton has 45 states and 57 transitions. Word has length 18 [2022-11-23 14:59:54,140 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:59:54,140 INFO L495 AbstractCegarLoop]: Abstraction has 45 states and 57 transitions. [2022-11-23 14:59:54,140 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.666666666666667) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:59:54,140 INFO L276 IsEmpty]: Start isEmpty. Operand 45 states and 57 transitions. [2022-11-23 14:59:54,142 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2022-11-23 14:59:54,142 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:59:54,143 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:59:54,143 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-23 14:59:54,143 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:59:54,144 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:59:54,144 INFO L85 PathProgramCache]: Analyzing trace with hash 1782950032, now seen corresponding path program 1 times [2022-11-23 14:59:54,144 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:59:54,144 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2098459674] [2022-11-23 14:59:54,144 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:59:54,145 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:59:54,174 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:59:54,480 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:59:54,480 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:59:54,481 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2098459674] [2022-11-23 14:59:54,481 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2098459674] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:59:54,481 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:59:54,481 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-11-23 14:59:54,482 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [366954755] [2022-11-23 14:59:54,482 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:59:54,482 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-23 14:59:54,482 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:59:54,483 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-23 14:59:54,483 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-11-23 14:59:54,484 INFO L87 Difference]: Start difference. First operand 45 states and 57 transitions. Second operand has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:59:54,705 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:59:54,705 INFO L93 Difference]: Finished difference Result 153 states and 195 transitions. [2022-11-23 14:59:54,706 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-11-23 14:59:54,706 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2022-11-23 14:59:54,707 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:59:54,711 INFO L225 Difference]: With dead ends: 153 [2022-11-23 14:59:54,711 INFO L226 Difference]: Without dead ends: 110 [2022-11-23 14:59:54,714 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2022-11-23 14:59:54,717 INFO L413 NwaCegarLoop]: 53 mSDtfsCounter, 67 mSDsluCounter, 150 mSDsCounter, 0 mSdLazyCounter, 84 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 203 SdHoareTripleChecker+Invalid, 89 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 84 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 14:59:54,720 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 203 Invalid, 89 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 84 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 14:59:54,722 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 110 states. [2022-11-23 14:59:54,747 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 110 to 91. [2022-11-23 14:59:54,748 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 91 states, 60 states have (on average 1.2666666666666666) internal successors, (76), 69 states have internal predecessors, (76), 16 states have call successors, (16), 12 states have call predecessors, (16), 14 states have return successors, (18), 15 states have call predecessors, (18), 16 states have call successors, (18) [2022-11-23 14:59:54,749 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 91 states to 91 states and 110 transitions. [2022-11-23 14:59:54,750 INFO L78 Accepts]: Start accepts. Automaton has 91 states and 110 transitions. Word has length 20 [2022-11-23 14:59:54,750 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:59:54,750 INFO L495 AbstractCegarLoop]: Abstraction has 91 states and 110 transitions. [2022-11-23 14:59:54,750 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 3.4) internal successors, (17), 5 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 14:59:54,751 INFO L276 IsEmpty]: Start isEmpty. Operand 91 states and 110 transitions. [2022-11-23 14:59:54,757 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2022-11-23 14:59:54,757 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:59:54,758 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:59:54,758 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-23 14:59:54,758 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:59:54,761 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:59:54,762 INFO L85 PathProgramCache]: Analyzing trace with hash -1529217304, now seen corresponding path program 1 times [2022-11-23 14:59:54,762 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:59:54,762 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [399904630] [2022-11-23 14:59:54,762 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:59:54,764 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:59:54,782 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:59:54,831 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:59:54,831 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:59:54,832 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [399904630] [2022-11-23 14:59:54,832 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [399904630] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:59:54,832 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:59:54,832 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 14:59:54,832 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [859190019] [2022-11-23 14:59:54,832 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:59:54,833 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 14:59:54,833 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:59:54,833 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 14:59:54,834 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:59:54,834 INFO L87 Difference]: Start difference. First operand 91 states and 110 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-23 14:59:54,870 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:59:54,871 INFO L93 Difference]: Finished difference Result 180 states and 220 transitions. [2022-11-23 14:59:54,871 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 14:59:54,871 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 23 [2022-11-23 14:59:54,872 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:59:54,873 INFO L225 Difference]: With dead ends: 180 [2022-11-23 14:59:54,873 INFO L226 Difference]: Without dead ends: 91 [2022-11-23 14:59:54,874 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:59:54,875 INFO L413 NwaCegarLoop]: 40 mSDtfsCounter, 45 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 16 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 45 SdHoareTripleChecker+Valid, 40 SdHoareTripleChecker+Invalid, 16 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 16 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 14:59:54,875 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [45 Valid, 40 Invalid, 16 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 16 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 14:59:54,876 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 91 states. [2022-11-23 14:59:54,889 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 91 to 91. [2022-11-23 14:59:54,890 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 91 states, 60 states have (on average 1.2333333333333334) internal successors, (74), 69 states have internal predecessors, (74), 16 states have call successors, (16), 12 states have call predecessors, (16), 14 states have return successors, (18), 15 states have call predecessors, (18), 16 states have call successors, (18) [2022-11-23 14:59:54,891 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 91 states to 91 states and 108 transitions. [2022-11-23 14:59:54,891 INFO L78 Accepts]: Start accepts. Automaton has 91 states and 108 transitions. Word has length 23 [2022-11-23 14:59:54,891 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:59:54,892 INFO L495 AbstractCegarLoop]: Abstraction has 91 states and 108 transitions. [2022-11-23 14:59:54,892 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-23 14:59:54,892 INFO L276 IsEmpty]: Start isEmpty. Operand 91 states and 108 transitions. [2022-11-23 14:59:54,907 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2022-11-23 14:59:54,907 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:59:54,907 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:59:54,907 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-23 14:59:54,908 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:59:54,908 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:59:54,908 INFO L85 PathProgramCache]: Analyzing trace with hash 542471680, now seen corresponding path program 1 times [2022-11-23 14:59:54,908 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:59:54,909 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1490494789] [2022-11-23 14:59:54,909 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:59:54,909 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:59:54,926 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:59:54,999 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:59:54,999 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:59:54,999 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1490494789] [2022-11-23 14:59:54,999 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1490494789] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:59:54,999 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:59:55,000 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 14:59:55,000 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [300447075] [2022-11-23 14:59:55,000 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:59:55,001 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 14:59:55,001 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:59:55,001 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 14:59:55,001 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:59:55,002 INFO L87 Difference]: Start difference. First operand 91 states and 108 transitions. Second operand has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-23 14:59:55,059 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:59:55,059 INFO L93 Difference]: Finished difference Result 169 states and 208 transitions. [2022-11-23 14:59:55,059 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 14:59:55,059 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 26 [2022-11-23 14:59:55,060 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:59:55,061 INFO L225 Difference]: With dead ends: 169 [2022-11-23 14:59:55,061 INFO L226 Difference]: Without dead ends: 126 [2022-11-23 14:59:55,061 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 14:59:55,062 INFO L413 NwaCegarLoop]: 52 mSDtfsCounter, 37 mSDsluCounter, 33 mSDsCounter, 0 mSdLazyCounter, 31 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 37 SdHoareTripleChecker+Valid, 85 SdHoareTripleChecker+Invalid, 35 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 31 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 14:59:55,063 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [37 Valid, 85 Invalid, 35 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 31 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 14:59:55,064 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 126 states. [2022-11-23 14:59:55,081 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 126 to 124. [2022-11-23 14:59:55,081 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 124 states, 83 states have (on average 1.2289156626506024) internal successors, (102), 92 states have internal predecessors, (102), 20 states have call successors, (20), 18 states have call predecessors, (20), 20 states have return successors, (26), 21 states have call predecessors, (26), 20 states have call successors, (26) [2022-11-23 14:59:55,083 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 124 states to 124 states and 148 transitions. [2022-11-23 14:59:55,083 INFO L78 Accepts]: Start accepts. Automaton has 124 states and 148 transitions. Word has length 26 [2022-11-23 14:59:55,083 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:59:55,083 INFO L495 AbstractCegarLoop]: Abstraction has 124 states and 148 transitions. [2022-11-23 14:59:55,084 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-23 14:59:55,084 INFO L276 IsEmpty]: Start isEmpty. Operand 124 states and 148 transitions. [2022-11-23 14:59:55,085 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2022-11-23 14:59:55,085 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:59:55,085 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:59:55,085 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-23 14:59:55,086 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:59:55,086 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:59:55,086 INFO L85 PathProgramCache]: Analyzing trace with hash -232290254, now seen corresponding path program 1 times [2022-11-23 14:59:55,087 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:59:55,087 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [678463204] [2022-11-23 14:59:55,087 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:59:55,087 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:59:55,101 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:59:55,378 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:59:55,378 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:59:55,379 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [678463204] [2022-11-23 14:59:55,379 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [678463204] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 14:59:55,380 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 14:59:55,380 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2022-11-23 14:59:55,380 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1810085487] [2022-11-23 14:59:55,380 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 14:59:55,381 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-23 14:59:55,381 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 14:59:55,382 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-23 14:59:55,382 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=50, Unknown=0, NotChecked=0, Total=72 [2022-11-23 14:59:55,382 INFO L87 Difference]: Start difference. First operand 124 states and 148 transitions. Second operand has 9 states, 8 states have (on average 3.125) internal successors, (25), 8 states have internal predecessors, (25), 5 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2022-11-23 14:59:56,084 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 14:59:56,085 INFO L93 Difference]: Finished difference Result 371 states and 471 transitions. [2022-11-23 14:59:56,085 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-23 14:59:56,085 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 8 states have (on average 3.125) internal successors, (25), 8 states have internal predecessors, (25), 5 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 34 [2022-11-23 14:59:56,086 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 14:59:56,088 INFO L225 Difference]: With dead ends: 371 [2022-11-23 14:59:56,088 INFO L226 Difference]: Without dead ends: 295 [2022-11-23 14:59:56,089 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 20 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 36 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=70, Invalid=170, Unknown=0, NotChecked=0, Total=240 [2022-11-23 14:59:56,090 INFO L413 NwaCegarLoop]: 80 mSDtfsCounter, 350 mSDsluCounter, 139 mSDsCounter, 0 mSdLazyCounter, 334 mSolverCounterSat, 172 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 362 SdHoareTripleChecker+Valid, 219 SdHoareTripleChecker+Invalid, 506 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 172 IncrementalHoareTripleChecker+Valid, 334 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-23 14:59:56,090 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [362 Valid, 219 Invalid, 506 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [172 Valid, 334 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2022-11-23 14:59:56,091 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 295 states. [2022-11-23 14:59:56,134 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 295 to 269. [2022-11-23 14:59:56,135 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 269 states, 184 states have (on average 1.2717391304347827) internal successors, (234), 202 states have internal predecessors, (234), 44 states have call successors, (44), 36 states have call predecessors, (44), 40 states have return successors, (61), 43 states have call predecessors, (61), 44 states have call successors, (61) [2022-11-23 14:59:56,138 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 269 states to 269 states and 339 transitions. [2022-11-23 14:59:56,140 INFO L78 Accepts]: Start accepts. Automaton has 269 states and 339 transitions. Word has length 34 [2022-11-23 14:59:56,141 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 14:59:56,141 INFO L495 AbstractCegarLoop]: Abstraction has 269 states and 339 transitions. [2022-11-23 14:59:56,141 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 8 states have (on average 3.125) internal successors, (25), 8 states have internal predecessors, (25), 5 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2022-11-23 14:59:56,141 INFO L276 IsEmpty]: Start isEmpty. Operand 269 states and 339 transitions. [2022-11-23 14:59:56,142 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2022-11-23 14:59:56,143 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 14:59:56,144 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 14:59:56,144 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-23 14:59:56,144 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 14:59:56,145 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 14:59:56,145 INFO L85 PathProgramCache]: Analyzing trace with hash 1779709984, now seen corresponding path program 1 times [2022-11-23 14:59:56,145 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 14:59:56,146 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1340625506] [2022-11-23 14:59:56,146 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:59:56,146 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 14:59:56,166 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:59:56,330 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-23 14:59:56,330 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 14:59:56,331 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1340625506] [2022-11-23 14:59:56,331 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1340625506] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 14:59:56,331 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1693241703] [2022-11-23 14:59:56,331 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 14:59:56,331 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 14:59:56,332 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 14:59:56,335 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 14:59:56,339 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-23 14:59:56,426 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 14:59:56,429 INFO L263 TraceCheckSpWp]: Trace formula consists of 219 conjuncts, 35 conjunts are in the unsatisfiable core [2022-11-23 14:59:56,435 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 14:59:56,746 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 14:59:56,746 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 14:59:57,308 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-23 14:59:57,309 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1693241703] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 14:59:57,309 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1711171946] [2022-11-23 14:59:57,327 INFO L159 IcfgInterpreter]: Started Sifa with 34 locations of interest [2022-11-23 14:59:57,327 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 14:59:57,331 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 14:59:57,337 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 14:59:57,337 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 14:59:57,956 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 114 for LOIs [2022-11-23 14:59:57,975 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 115 for LOIs [2022-11-23 14:59:59,479 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 112 for LOIs [2022-11-23 14:59:59,791 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 44 for LOIs [2022-11-23 14:59:59,798 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:00:12,084 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3105#(and (= (select |#length| 15) 25) (= 9 (select |#length| 5)) (= (select |#length| 9) 21) (= 30 (select |#length| 7)) (= 1 (select |#valid| 5)) (= (select |#length| 3) 12) (= (select |#valid| 15) 1) (= |timeShift_getWaterLevel_~retValue_acc~7#1| |timeShift_getWaterLevel_#res#1|) (= (select |#valid| 9) 1) (= (select |#length| 12) 25) (= (select |#valid| 11) 1) (= ~methaneLevelCritical~0 0) (= 30 (select |#length| 4)) (= ~methaneLevelCritical~0 |timeShift___utac_acc__Specification3_spec__1_~tmp~4#1|) (= 31 (select |#length| 2)) (= ~head~0.offset 0) (= 2 (select |#length| 1)) (= (select |#length| 8) 9) (= (select |#valid| 3) 1) (= (select |#valid| 7) 1) (= |timeShift_getWaterLevel_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|) (= 0 |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~11#1|) (= 30 (select |#length| 13)) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (= 30 (select |#length| 10)) (= (select |#valid| 12) 1) (= (select |#valid| 4) 1) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~11#1|) (= (select |#valid| 1) 1) (= |timeShift_getWaterLevel_~retValue_acc~7#1| ~waterLevel~0) (= (select |#length| 6) 21) (= (select |#valid| 14) 1) (= |old(~waterLevel~0)| ~waterLevel~0) (= 9 (select |#length| 14)) (= (select |#valid| 0) 0) (= ~head~0.base 0) (= (select |#valid| 2) 1) (= |#NULL.offset| 0) (= 9 (select |#length| 11)) (= (select (select |#memory_int| 1) 0) 48) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (= (select |#valid| 6) 1) (= (select (select |#memory_int| 1) 1) 0) (= (select |#valid| 10) 1) (= (select |#valid| 8) 1) (= (select |#valid| 13) 1) (< 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0) (= 2 |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|))' at error location [2022-11-23 15:00:12,084 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:00:12,084 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 15:00:12,085 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 8, 10] total 19 [2022-11-23 15:00:12,085 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1275437454] [2022-11-23 15:00:12,085 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 15:00:12,085 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 19 states [2022-11-23 15:00:12,086 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:00:12,086 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2022-11-23 15:00:12,087 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=239, Invalid=1567, Unknown=0, NotChecked=0, Total=1806 [2022-11-23 15:00:12,087 INFO L87 Difference]: Start difference. First operand 269 states and 339 transitions. Second operand has 19 states, 16 states have (on average 2.9375) internal successors, (47), 16 states have internal predecessors, (47), 4 states have call successors, (10), 3 states have call predecessors, (10), 9 states have return successors, (11), 6 states have call predecessors, (11), 4 states have call successors, (11) [2022-11-23 15:00:14,654 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:00:14,655 INFO L93 Difference]: Finished difference Result 1356 states and 1842 transitions. [2022-11-23 15:00:14,655 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 57 states. [2022-11-23 15:00:14,655 INFO L78 Accepts]: Start accepts. Automaton has has 19 states, 16 states have (on average 2.9375) internal successors, (47), 16 states have internal predecessors, (47), 4 states have call successors, (10), 3 states have call predecessors, (10), 9 states have return successors, (11), 6 states have call predecessors, (11), 4 states have call successors, (11) Word has length 35 [2022-11-23 15:00:14,656 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:00:14,668 INFO L225 Difference]: With dead ends: 1356 [2022-11-23 15:00:14,668 INFO L226 Difference]: Without dead ends: 1196 [2022-11-23 15:00:14,672 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 161 GetRequests, 69 SyntacticMatches, 7 SemanticMatches, 85 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2815 ImplicationChecksByTransitivity, 13.7s TimeCoverageRelationStatistics Valid=802, Invalid=6680, Unknown=0, NotChecked=0, Total=7482 [2022-11-23 15:00:14,673 INFO L413 NwaCegarLoop]: 126 mSDtfsCounter, 746 mSDsluCounter, 588 mSDsCounter, 0 mSdLazyCounter, 1068 mSolverCounterSat, 393 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 754 SdHoareTripleChecker+Valid, 714 SdHoareTripleChecker+Invalid, 1461 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 393 IncrementalHoareTripleChecker+Valid, 1068 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.1s IncrementalHoareTripleChecker+Time [2022-11-23 15:00:14,673 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [754 Valid, 714 Invalid, 1461 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [393 Valid, 1068 Invalid, 0 Unknown, 0 Unchecked, 1.1s Time] [2022-11-23 15:00:14,675 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1196 states. [2022-11-23 15:00:14,801 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1196 to 968. [2022-11-23 15:00:14,803 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 968 states, 683 states have (on average 1.2606149341142021) internal successors, (861), 722 states have internal predecessors, (861), 151 states have call successors, (151), 118 states have call predecessors, (151), 133 states have return successors, (237), 150 states have call predecessors, (237), 151 states have call successors, (237) [2022-11-23 15:00:14,809 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 968 states to 968 states and 1249 transitions. [2022-11-23 15:00:14,810 INFO L78 Accepts]: Start accepts. Automaton has 968 states and 1249 transitions. Word has length 35 [2022-11-23 15:00:14,810 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:00:14,811 INFO L495 AbstractCegarLoop]: Abstraction has 968 states and 1249 transitions. [2022-11-23 15:00:14,811 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 19 states, 16 states have (on average 2.9375) internal successors, (47), 16 states have internal predecessors, (47), 4 states have call successors, (10), 3 states have call predecessors, (10), 9 states have return successors, (11), 6 states have call predecessors, (11), 4 states have call successors, (11) [2022-11-23 15:00:14,811 INFO L276 IsEmpty]: Start isEmpty. Operand 968 states and 1249 transitions. [2022-11-23 15:00:14,812 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2022-11-23 15:00:14,813 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:00:14,813 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:00:14,824 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-23 15:00:15,019 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:00:15,020 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 15:00:15,020 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:00:15,020 INFO L85 PathProgramCache]: Analyzing trace with hash 1154155862, now seen corresponding path program 1 times [2022-11-23 15:00:15,021 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:00:15,021 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1951471800] [2022-11-23 15:00:15,021 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:00:15,021 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:00:15,032 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:00:15,185 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-23 15:00:15,185 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:00:15,185 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1951471800] [2022-11-23 15:00:15,185 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1951471800] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 15:00:15,185 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 15:00:15,185 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2022-11-23 15:00:15,186 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [903196967] [2022-11-23 15:00:15,186 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 15:00:15,205 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-23 15:00:15,206 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:00:15,206 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-23 15:00:15,206 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=18, Invalid=54, Unknown=0, NotChecked=0, Total=72 [2022-11-23 15:00:15,206 INFO L87 Difference]: Start difference. First operand 968 states and 1249 transitions. Second operand has 9 states, 8 states have (on average 3.25) internal successors, (26), 7 states have internal predecessors, (26), 2 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-23 15:00:15,756 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:00:15,756 INFO L93 Difference]: Finished difference Result 2110 states and 2864 transitions. [2022-11-23 15:00:15,757 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-11-23 15:00:15,757 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 8 states have (on average 3.25) internal successors, (26), 7 states have internal predecessors, (26), 2 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 2 states have call successors, (5) Word has length 38 [2022-11-23 15:00:15,757 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:00:15,766 INFO L225 Difference]: With dead ends: 2110 [2022-11-23 15:00:15,766 INFO L226 Difference]: Without dead ends: 1511 [2022-11-23 15:00:15,770 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=55, Invalid=155, Unknown=0, NotChecked=0, Total=210 [2022-11-23 15:00:15,771 INFO L413 NwaCegarLoop]: 102 mSDtfsCounter, 140 mSDsluCounter, 375 mSDsCounter, 0 mSdLazyCounter, 343 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 143 SdHoareTripleChecker+Valid, 477 SdHoareTripleChecker+Invalid, 382 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 343 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-23 15:00:15,771 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [143 Valid, 477 Invalid, 382 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 343 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-23 15:00:15,773 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1511 states. [2022-11-23 15:00:15,935 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1511 to 1134. [2022-11-23 15:00:15,937 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1134 states, 793 states have (on average 1.2307692307692308) internal successors, (976), 846 states have internal predecessors, (976), 176 states have call successors, (176), 140 states have call predecessors, (176), 164 states have return successors, (303), 172 states have call predecessors, (303), 176 states have call successors, (303) [2022-11-23 15:00:15,944 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1134 states to 1134 states and 1455 transitions. [2022-11-23 15:00:15,944 INFO L78 Accepts]: Start accepts. Automaton has 1134 states and 1455 transitions. Word has length 38 [2022-11-23 15:00:15,945 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:00:15,945 INFO L495 AbstractCegarLoop]: Abstraction has 1134 states and 1455 transitions. [2022-11-23 15:00:15,945 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 8 states have (on average 3.25) internal successors, (26), 7 states have internal predecessors, (26), 2 states have call successors, (6), 1 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 2 states have call successors, (5) [2022-11-23 15:00:15,945 INFO L276 IsEmpty]: Start isEmpty. Operand 1134 states and 1455 transitions. [2022-11-23 15:00:15,948 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2022-11-23 15:00:15,948 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:00:15,948 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:00:15,949 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2022-11-23 15:00:15,949 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 15:00:15,949 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:00:15,949 INFO L85 PathProgramCache]: Analyzing trace with hash 1564877046, now seen corresponding path program 1 times [2022-11-23 15:00:15,950 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:00:15,950 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1054273584] [2022-11-23 15:00:15,950 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:00:15,950 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:00:15,963 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:00:16,176 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 0 proven. 15 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-11-23 15:00:16,176 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:00:16,177 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1054273584] [2022-11-23 15:00:16,177 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1054273584] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:00:16,177 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [172436490] [2022-11-23 15:00:16,177 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:00:16,177 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:00:16,178 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:00:16,179 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:00:16,213 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-23 15:00:16,282 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:00:16,284 INFO L263 TraceCheckSpWp]: Trace formula consists of 282 conjuncts, 24 conjunts are in the unsatisfiable core [2022-11-23 15:00:16,287 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:00:16,545 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-23 15:00:16,546 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 15:00:16,546 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [172436490] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 15:00:16,546 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:00:16,546 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [9] total 16 [2022-11-23 15:00:16,547 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1244829556] [2022-11-23 15:00:16,547 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 15:00:16,547 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-23 15:00:16,547 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:00:16,548 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-23 15:00:16,548 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=41, Invalid=199, Unknown=0, NotChecked=0, Total=240 [2022-11-23 15:00:16,548 INFO L87 Difference]: Start difference. First operand 1134 states and 1455 transitions. Second operand has 9 states, 9 states have (on average 4.444444444444445) internal successors, (40), 9 states have internal predecessors, (40), 5 states have call successors, (6), 4 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-23 15:00:17,203 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:00:17,203 INFO L93 Difference]: Finished difference Result 1781 states and 2310 transitions. [2022-11-23 15:00:17,204 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-23 15:00:17,204 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 4.444444444444445) internal successors, (40), 9 states have internal predecessors, (40), 5 states have call successors, (6), 4 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) Word has length 52 [2022-11-23 15:00:17,204 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:00:17,209 INFO L225 Difference]: With dead ends: 1781 [2022-11-23 15:00:17,210 INFO L226 Difference]: Without dead ends: 955 [2022-11-23 15:00:17,212 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 69 GetRequests, 48 SyntacticMatches, 0 SemanticMatches, 21 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 73 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=87, Invalid=419, Unknown=0, NotChecked=0, Total=506 [2022-11-23 15:00:17,213 INFO L413 NwaCegarLoop]: 47 mSDtfsCounter, 133 mSDsluCounter, 137 mSDsCounter, 0 mSdLazyCounter, 316 mSolverCounterSat, 69 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 139 SdHoareTripleChecker+Valid, 184 SdHoareTripleChecker+Invalid, 385 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 69 IncrementalHoareTripleChecker+Valid, 316 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-23 15:00:17,213 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [139 Valid, 184 Invalid, 385 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [69 Valid, 316 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-23 15:00:17,215 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 955 states. [2022-11-23 15:00:17,341 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 955 to 865. [2022-11-23 15:00:17,343 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 865 states, 606 states have (on average 1.216171617161716) internal successors, (737), 642 states have internal predecessors, (737), 132 states have call successors, (132), 110 states have call predecessors, (132), 126 states have return successors, (206), 132 states have call predecessors, (206), 132 states have call successors, (206) [2022-11-23 15:00:17,347 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 865 states to 865 states and 1075 transitions. [2022-11-23 15:00:17,348 INFO L78 Accepts]: Start accepts. Automaton has 865 states and 1075 transitions. Word has length 52 [2022-11-23 15:00:17,348 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:00:17,348 INFO L495 AbstractCegarLoop]: Abstraction has 865 states and 1075 transitions. [2022-11-23 15:00:17,348 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 4.444444444444445) internal successors, (40), 9 states have internal predecessors, (40), 5 states have call successors, (6), 4 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-23 15:00:17,349 INFO L276 IsEmpty]: Start isEmpty. Operand 865 states and 1075 transitions. [2022-11-23 15:00:17,350 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2022-11-23 15:00:17,350 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:00:17,350 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:00:17,361 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-23 15:00:17,556 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable8 [2022-11-23 15:00:17,557 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 15:00:17,557 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:00:17,557 INFO L85 PathProgramCache]: Analyzing trace with hash 53155662, now seen corresponding path program 1 times [2022-11-23 15:00:17,557 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:00:17,557 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [569441227] [2022-11-23 15:00:17,557 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:00:17,557 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:00:17,578 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:00:17,961 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 0 proven. 15 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-11-23 15:00:17,961 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:00:17,962 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [569441227] [2022-11-23 15:00:17,962 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [569441227] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:00:17,962 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [317811916] [2022-11-23 15:00:17,965 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:00:17,965 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:00:17,966 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:00:17,967 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:00:17,987 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-23 15:00:18,076 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:00:18,078 INFO L263 TraceCheckSpWp]: Trace formula consists of 288 conjuncts, 24 conjunts are in the unsatisfiable core [2022-11-23 15:00:18,081 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:00:18,347 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 4 proven. 11 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-11-23 15:00:18,348 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 15:00:18,651 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 6 proven. 2 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2022-11-23 15:00:18,652 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [317811916] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 15:00:18,652 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1521952791] [2022-11-23 15:00:18,658 INFO L159 IcfgInterpreter]: Started Sifa with 37 locations of interest [2022-11-23 15:00:18,658 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 15:00:18,659 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 15:00:18,659 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 15:00:18,659 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 15:00:21,011 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 114 for LOIs [2022-11-23 15:00:21,023 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 119 for LOIs [2022-11-23 15:00:21,507 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 119 for LOIs [2022-11-23 15:00:21,913 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneLevelCritical with input of size 136 for LOIs [2022-11-23 15:00:21,947 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 15:00:28,982 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '16716#(and (= |timeShift_getWaterLevel_~retValue_acc~7#1| |timeShift_getWaterLevel_#res#1|) (= ~methaneLevelCritical~0 |timeShift___utac_acc__Specification3_spec__1_~tmp~4#1|) (= ~head~0.offset 0) (= |timeShift_getWaterLevel_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|) (= 0 |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~11#1|) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (<= 2 |old(~waterLevel~0)|) (= |timeShift___utac_acc__Specification3_spec__1_~tmp~4#1| 0) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~11#1|) (= |timeShift_getWaterLevel_~retValue_acc~7#1| ~waterLevel~0) (= ~head~0.base 0) (= |#NULL.offset| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification3_spec__1_~tmp___1~0#1|) (<= 0 |#StackHeapBarrier|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0) (= 2 |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|))' at error location [2022-11-23 15:00:28,982 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 15:00:28,982 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 15:00:28,982 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 9, 8] total 20 [2022-11-23 15:00:28,982 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1925510639] [2022-11-23 15:00:28,983 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 15:00:28,983 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2022-11-23 15:00:28,983 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:00:28,984 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2022-11-23 15:00:28,984 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=262, Invalid=1630, Unknown=0, NotChecked=0, Total=1892 [2022-11-23 15:00:28,985 INFO L87 Difference]: Start difference. First operand 865 states and 1075 transitions. Second operand has 20 states, 18 states have (on average 4.555555555555555) internal successors, (82), 18 states have internal predecessors, (82), 10 states have call successors, (17), 8 states have call predecessors, (17), 7 states have return successors, (15), 9 states have call predecessors, (15), 10 states have call successors, (15) [2022-11-23 15:00:31,675 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:00:31,676 INFO L93 Difference]: Finished difference Result 2588 states and 3398 transitions. [2022-11-23 15:00:31,676 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 45 states. [2022-11-23 15:00:31,677 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 18 states have (on average 4.555555555555555) internal successors, (82), 18 states have internal predecessors, (82), 10 states have call successors, (17), 8 states have call predecessors, (17), 7 states have return successors, (15), 9 states have call predecessors, (15), 10 states have call successors, (15) Word has length 55 [2022-11-23 15:00:31,677 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:00:31,687 INFO L225 Difference]: With dead ends: 2588 [2022-11-23 15:00:31,687 INFO L226 Difference]: Without dead ends: 1982 [2022-11-23 15:00:31,691 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 226 GetRequests, 138 SyntacticMatches, 9 SemanticMatches, 79 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2644 ImplicationChecksByTransitivity, 8.5s TimeCoverageRelationStatistics Valid=888, Invalid=5592, Unknown=0, NotChecked=0, Total=6480 [2022-11-23 15:00:31,692 INFO L413 NwaCegarLoop]: 77 mSDtfsCounter, 826 mSDsluCounter, 387 mSDsCounter, 0 mSdLazyCounter, 1184 mSolverCounterSat, 479 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 832 SdHoareTripleChecker+Valid, 464 SdHoareTripleChecker+Invalid, 1663 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 479 IncrementalHoareTripleChecker+Valid, 1184 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.1s IncrementalHoareTripleChecker+Time [2022-11-23 15:00:31,692 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [832 Valid, 464 Invalid, 1663 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [479 Valid, 1184 Invalid, 0 Unknown, 0 Unchecked, 1.1s Time] [2022-11-23 15:00:31,694 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1982 states. [2022-11-23 15:00:31,943 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1982 to 1794. [2022-11-23 15:00:31,947 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1794 states, 1244 states have (on average 1.1808681672025723) internal successors, (1469), 1310 states have internal predecessors, (1469), 280 states have call successors, (280), 252 states have call predecessors, (280), 269 states have return successors, (434), 266 states have call predecessors, (434), 280 states have call successors, (434) [2022-11-23 15:00:31,957 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1794 states to 1794 states and 2183 transitions. [2022-11-23 15:00:31,958 INFO L78 Accepts]: Start accepts. Automaton has 1794 states and 2183 transitions. Word has length 55 [2022-11-23 15:00:31,959 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:00:31,960 INFO L495 AbstractCegarLoop]: Abstraction has 1794 states and 2183 transitions. [2022-11-23 15:00:31,960 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 18 states have (on average 4.555555555555555) internal successors, (82), 18 states have internal predecessors, (82), 10 states have call successors, (17), 8 states have call predecessors, (17), 7 states have return successors, (15), 9 states have call predecessors, (15), 10 states have call successors, (15) [2022-11-23 15:00:31,960 INFO L276 IsEmpty]: Start isEmpty. Operand 1794 states and 2183 transitions. [2022-11-23 15:00:31,963 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 70 [2022-11-23 15:00:31,963 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 15:00:31,963 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:00:31,974 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2022-11-23 15:00:32,169 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-23 15:00:32,169 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 15:00:32,170 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 15:00:32,170 INFO L85 PathProgramCache]: Analyzing trace with hash -227513800, now seen corresponding path program 1 times [2022-11-23 15:00:32,170 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 15:00:32,170 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [705141980] [2022-11-23 15:00:32,170 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:00:32,170 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 15:00:32,184 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:00:33,003 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 5 proven. 14 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-11-23 15:00:33,003 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 15:00:33,004 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [705141980] [2022-11-23 15:00:33,004 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [705141980] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 15:00:33,004 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1033834024] [2022-11-23 15:00:33,004 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 15:00:33,004 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:00:33,004 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 15:00:33,005 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 15:00:33,035 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-23 15:00:33,104 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 15:00:33,107 INFO L263 TraceCheckSpWp]: Trace formula consists of 312 conjuncts, 23 conjunts are in the unsatisfiable core [2022-11-23 15:00:33,109 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 15:00:33,215 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 12 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2022-11-23 15:00:33,215 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 15:00:33,215 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1033834024] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 15:00:33,216 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-23 15:00:33,216 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [18] total 21 [2022-11-23 15:00:33,216 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1554050299] [2022-11-23 15:00:33,216 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 15:00:33,217 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-23 15:00:33,217 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 15:00:33,217 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-23 15:00:33,217 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=60, Invalid=360, Unknown=0, NotChecked=0, Total=420 [2022-11-23 15:00:33,218 INFO L87 Difference]: Start difference. First operand 1794 states and 2183 transitions. Second operand has 6 states, 6 states have (on average 6.166666666666667) internal successors, (37), 6 states have internal predecessors, (37), 2 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-11-23 15:00:33,624 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 15:00:33,624 INFO L93 Difference]: Finished difference Result 3358 states and 4112 transitions. [2022-11-23 15:00:33,625 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-11-23 15:00:33,625 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 6.166666666666667) internal successors, (37), 6 states have internal predecessors, (37), 2 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) Word has length 69 [2022-11-23 15:00:33,626 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 15:00:33,629 INFO L225 Difference]: With dead ends: 3358 [2022-11-23 15:00:33,629 INFO L226 Difference]: Without dead ends: 0 [2022-11-23 15:00:33,637 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 96 GetRequests, 73 SyntacticMatches, 1 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 142 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=75, Invalid=477, Unknown=0, NotChecked=0, Total=552 [2022-11-23 15:00:33,639 INFO L413 NwaCegarLoop]: 44 mSDtfsCounter, 47 mSDsluCounter, 132 mSDsCounter, 0 mSdLazyCounter, 113 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 51 SdHoareTripleChecker+Valid, 176 SdHoareTripleChecker+Invalid, 123 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 113 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 15:00:33,639 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [51 Valid, 176 Invalid, 123 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 113 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 15:00:33,639 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-23 15:00:33,640 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-23 15:00:33,640 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 15:00:33,640 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-23 15:00:33,641 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 69 [2022-11-23 15:00:33,641 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 15:00:33,641 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-23 15:00:33,641 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 6.166666666666667) internal successors, (37), 6 states have internal predecessors, (37), 2 states have call successors, (8), 2 states have call predecessors, (8), 2 states have return successors, (9), 2 states have call predecessors, (9), 2 states have call successors, (9) [2022-11-23 15:00:33,641 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-23 15:00:33,642 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-23 15:00:33,645 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-23 15:00:33,655 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-23 15:00:33,852 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 15:00:33,853 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-23 15:00:55,949 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 805 811) no Hoare annotation was computed. [2022-11-23 15:00:55,950 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 805 811) the Hoare annotation is: true [2022-11-23 15:00:55,950 INFO L895 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 596 607) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= ~waterLevel~0 2)))) (and (or (<= 1 ~methaneLevelCritical~0) .cse0 (and (not (<= (+ |old(~methaneLevelCritical~0)| 1) 0)) (not (<= 1 |old(~methaneLevelCritical~0)|))) (<= (+ ~methaneLevelCritical~0 1) 0) .cse1 (< ~waterLevel~0 2) (= ~pumpRunning~0 1)) (or (not (= ~pumpRunning~0 0)) .cse0 .cse1 (not (<= |old(~methaneLevelCritical~0)| 0)) (and (<= ~methaneLevelCritical~0 0) (<= 0 ~methaneLevelCritical~0)) (not (<= 0 |old(~methaneLevelCritical~0)|))))) [2022-11-23 15:00:55,950 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 596 607) no Hoare annotation was computed. [2022-11-23 15:00:55,950 INFO L902 garLoopResultBuilder]: At program point isMethaneLevelCriticalENTRY(lines 608 616) the Hoare annotation is: true [2022-11-23 15:00:55,951 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 608 616) no Hoare annotation was computed. [2022-11-23 15:00:55,951 INFO L895 garLoopResultBuilder]: At program point L853(line 853) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse1 (= ~pumpRunning~0 1)) (or .cse0 (let ((.cse2 (= ~pumpRunning~0 0))) (let ((.cse4 (not .cse2))) (and (<= ~waterLevel~0 1) (let ((.cse3 (= |old(~waterLevel~0)| ~waterLevel~0))) (or (and .cse2 .cse3) (and .cse4 (let ((.cse5 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse5) .cse3) (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse5)))))) (or (not (<= 2 |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|)) .cse4)))) .cse1) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse1))) [2022-11-23 15:00:55,951 INFO L895 garLoopResultBuilder]: At program point L858(line 858) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse1) (or (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse0 .cse1))) [2022-11-23 15:00:55,952 INFO L895 garLoopResultBuilder]: At program point L858-1(lines 839 863) the Hoare annotation is: (let ((.cse10 (= 1 ~systemActive~0)) (.cse8 (not (= |old(~pumpRunning~0)| 0))) (.cse9 (= ~pumpRunning~0 0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse5 (= ~pumpRunning~0 1)) (.cse7 (not (<= |old(~waterLevel~0)| 1))) (.cse3 (and .cse9 .cse6)) (.cse4 (and (not .cse9) (let ((.cse11 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse11) .cse6) (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse11))))) (.cse1 (and .cse9 (<= ~waterLevel~0 1) .cse10 (<= ~waterLevel~0 |old(~waterLevel~0)|) (or .cse8 (<= |old(~waterLevel~0)| ~waterLevel~0)))) (.cse0 (not .cse10)) (.cse2 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse1 .cse2 (and (or .cse3 .cse4) .cse5)) (or .cse0 (and .cse6 (or (<= 1 ~methaneLevelCritical~0) (<= (+ ~methaneLevelCritical~0 1) 0) .cse5)) (= ~waterLevel~0 1) .cse2 (not (<= 2 |old(~waterLevel~0)|))) (or .cse7 .cse8 .cse9 .cse0) (or .cse7 .cse3 .cse0 .cse4 .cse1) (or .cse8 .cse0 .cse6 .cse2)))) [2022-11-23 15:00:55,952 INFO L899 garLoopResultBuilder]: For program point L792-1(lines 792 798) no Hoare annotation was computed. [2022-11-23 15:00:55,952 INFO L899 garLoopResultBuilder]: For program point L693(lines 693 699) no Hoare annotation was computed. [2022-11-23 15:00:55,952 INFO L895 garLoopResultBuilder]: At program point L689(lines 689 702) the Hoare annotation is: (let ((.cse10 (not (= |old(~pumpRunning~0)| 1)))) (let ((.cse1 (< |old(~waterLevel~0)| 2)) (.cse3 (= ~waterLevel~0 1)) (.cse7 (not (<= |old(~waterLevel~0)| 1))) (.cse2 (<= |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1| 1)) (.cse9 (and (= ~methaneLevelCritical~0 0) .cse10)) (.cse6 (= ~pumpRunning~0 1)) (.cse8 (not (= |old(~pumpRunning~0)| 0))) (.cse11 (= ~pumpRunning~0 0)) (.cse5 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse4 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 (and .cse2 .cse3) .cse4 (and .cse5 .cse6)) (or .cse7 .cse8 .cse0 .cse9) (or .cse8 (not (= |old(~waterLevel~0)| 1)) .cse0 (= |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1| 1)) (or .cse0 .cse1 .cse10 .cse3 .cse4) (or .cse7 (and .cse11 .cse2 (<= ~waterLevel~0 |old(~waterLevel~0)|)) .cse0 (and .cse2 (let ((.cse12 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse12) .cse5) (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse12))))) (or .cse11 .cse0 .cse9 .cse4 .cse6) (or .cse8 (and .cse11 .cse5) .cse0 (<= 2 ~waterLevel~0) .cse4)))) [2022-11-23 15:00:55,953 INFO L895 garLoopResultBuilder]: At program point L689-1(lines 674 706) the Hoare annotation is: (let ((.cse12 (= 1 ~systemActive~0)) (.cse11 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (= ~pumpRunning~0 0)) (.cse10 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse6 (not (= |old(~pumpRunning~0)| 1)))) (let ((.cse1 (not (= |timeShift___utac_acc__Specification3_spec__1_~tmp~4#1| 0))) (.cse3 (and (= ~methaneLevelCritical~0 0) .cse6)) (.cse5 (= ~pumpRunning~0 1)) (.cse9 (and (not .cse0) (let ((.cse13 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse13) .cse10) (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse13))))) (.cse7 (and .cse0 (<= ~waterLevel~0 1) .cse12 (<= ~waterLevel~0 |old(~waterLevel~0)|) (or .cse11 (<= |old(~waterLevel~0)| ~waterLevel~0)))) (.cse8 (and .cse0 .cse10)) (.cse2 (not .cse12)) (.cse4 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (or .cse2 .cse6 .cse7 .cse4 (and (or .cse8 .cse9) .cse5)) (or .cse2 (and (or .cse1 .cse5) .cse10 (or (<= 1 ~methaneLevelCritical~0) (<= (+ ~methaneLevelCritical~0 1) 0) .cse5)) (< |old(~waterLevel~0)| 2) (= ~waterLevel~0 1) .cse4) (or .cse11 .cse1 .cse2 .cse3 .cse4 .cse5) (or (not (<= |old(~waterLevel~0)| 1)) .cse8 .cse2 .cse9 .cse7) (or .cse11 .cse8 .cse2 (<= 2 ~waterLevel~0) .cse4)))) [2022-11-23 15:00:55,953 INFO L895 garLoopResultBuilder]: At program point L681(line 681) the Hoare annotation is: (let ((.cse10 (= 1 ~systemActive~0)) (.cse8 (not (= |old(~pumpRunning~0)| 0))) (.cse9 (= ~pumpRunning~0 0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse5 (= ~pumpRunning~0 1)) (.cse7 (not (<= |old(~waterLevel~0)| 1))) (.cse3 (and .cse9 .cse6)) (.cse4 (and (not .cse9) (let ((.cse11 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse11) .cse6) (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse11))))) (.cse1 (and .cse9 (<= ~waterLevel~0 1) .cse10 (<= ~waterLevel~0 |old(~waterLevel~0)|) (or .cse8 (<= |old(~waterLevel~0)| ~waterLevel~0)))) (.cse0 (not .cse10)) (.cse2 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse1 .cse2 (and (or .cse3 .cse4) .cse5)) (or .cse0 (and .cse6 (or (<= 1 ~methaneLevelCritical~0) (<= (+ ~methaneLevelCritical~0 1) 0) .cse5)) (= ~waterLevel~0 1) .cse2 (not (<= 2 |old(~waterLevel~0)|))) (or .cse7 .cse8 .cse9 .cse0) (or .cse7 .cse3 .cse0 .cse4 .cse1) (or .cse8 .cse0 .cse6 .cse2)))) [2022-11-23 15:00:55,953 INFO L899 garLoopResultBuilder]: For program point L681-1(line 681) no Hoare annotation was computed. [2022-11-23 15:00:55,953 INFO L899 garLoopResultBuilder]: For program point L785-1(lines 784 803) no Hoare annotation was computed. [2022-11-23 15:00:55,954 INFO L895 garLoopResultBuilder]: At program point L847(lines 847 855) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse1 (= ~pumpRunning~0 1)) (or .cse0 (let ((.cse2 (= ~pumpRunning~0 0))) (let ((.cse4 (not .cse2))) (and (<= ~waterLevel~0 1) (let ((.cse3 (= |old(~waterLevel~0)| ~waterLevel~0))) (or (and .cse2 .cse3) (and .cse4 (let ((.cse5 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse5) .cse3) (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse5)))))) (or (not (<= 2 |timeShift___utac_acc__Specification3_spec__1_~tmp___0~0#1|)) .cse4)))) .cse1) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse1))) [2022-11-23 15:00:55,954 INFO L895 garLoopResultBuilder]: At program point L843(lines 843 860) the Hoare annotation is: (let ((.cse2 (= ~pumpRunning~0 0))) (let ((.cse4 (not .cse2)) (.cse6 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse1 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 1)) .cse1 (= ~pumpRunning~0 1)) (or (not (<= |old(~waterLevel~0)| 1)) (and .cse2 .cse3) .cse0 (and .cse4 (let ((.cse5 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse5) .cse3) (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse5))))) (or .cse0 (and (or (and .cse4 (<= ~waterLevel~0 1)) (and .cse2 (<= 2 ~waterLevel~0))) (or .cse3 (= ~waterLevel~0 1))) .cse1 (not (<= 2 |old(~waterLevel~0)|))) (or .cse6 .cse2 .cse0 (not (< |old(~waterLevel~0)| 2))) (or .cse6 .cse0 .cse3 .cse1)))) [2022-11-23 15:00:55,954 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 781 804) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= |old(~waterLevel~0)| ~waterLevel~0)) (not (<= |old(~waterLevel~0)| 2))) [2022-11-23 15:00:55,954 INFO L895 garLoopResultBuilder]: At program point L559(line 559) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (not (<= |old(~waterLevel~0)| 2))) [2022-11-23 15:00:55,954 INFO L895 garLoopResultBuilder]: At program point L683(lines 683 703) the Hoare annotation is: (let ((.cse15 (= 1 ~systemActive~0)) (.cse14 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (= ~pumpRunning~0 0)) (.cse13 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse8 (not (= |old(~pumpRunning~0)| 1)))) (let ((.cse7 (= ~pumpRunning~0 1)) (.cse5 (= ~waterLevel~0 1)) (.cse0 (not (= |timeShift___utac_acc__Specification3_spec__1_~tmp~4#1| 0))) (.cse2 (< |old(~waterLevel~0)| 2)) (.cse3 (and (= ~methaneLevelCritical~0 0) .cse8)) (.cse12 (not (<= |old(~waterLevel~0)| 1))) (.cse11 (and (not .cse4) (let ((.cse16 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse16) .cse13) (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse16))))) (.cse9 (and .cse4 (<= ~waterLevel~0 1) .cse15 (<= ~waterLevel~0 |old(~waterLevel~0)|) (or .cse14 (<= |old(~waterLevel~0)| ~waterLevel~0)))) (.cse10 (and .cse4 .cse13)) (.cse1 (not .cse15)) (.cse6 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 .cse1 .cse2 .cse3 (and .cse4 .cse5) .cse6 .cse7) (or .cse1 .cse8 .cse9 .cse6 (and (or .cse10 .cse11) .cse7)) (or .cse12 .cse0 .cse1 .cse3 .cse9 .cse7) (or .cse1 .cse2 (and .cse13 (or (<= 1 ~methaneLevelCritical~0) (<= (+ ~methaneLevelCritical~0 1) 0) .cse7)) .cse5 .cse6) (or .cse14 .cse0 .cse1 (not .cse2) .cse3) (or .cse12 .cse10 .cse1 .cse11 .cse9) (or .cse14 .cse10 .cse1 (<= 2 ~waterLevel~0) .cse6)))) [2022-11-23 15:00:55,955 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 781 804) no Hoare annotation was computed. [2022-11-23 15:00:55,955 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 559) no Hoare annotation was computed. [2022-11-23 15:00:55,955 INFO L902 garLoopResultBuilder]: At program point L66-1(lines 66 70) the Hoare annotation is: true [2022-11-23 15:00:55,955 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 52 81) no Hoare annotation was computed. [2022-11-23 15:00:55,955 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 52 81) the Hoare annotation is: true [2022-11-23 15:00:55,956 INFO L902 garLoopResultBuilder]: At program point L62-2(lines 62 76) the Hoare annotation is: true [2022-11-23 15:00:55,956 INFO L902 garLoopResultBuilder]: At program point L58(line 58) the Hoare annotation is: true [2022-11-23 15:00:55,956 INFO L899 garLoopResultBuilder]: For program point L58-1(line 58) no Hoare annotation was computed. [2022-11-23 15:00:55,956 INFO L902 garLoopResultBuilder]: At program point L77(lines 52 81) the Hoare annotation is: true [2022-11-23 15:00:55,956 INFO L899 garLoopResultBuilder]: For program point L73(line 73) no Hoare annotation was computed. [2022-11-23 15:00:55,956 INFO L899 garLoopResultBuilder]: For program point L66(lines 66 70) no Hoare annotation was computed. [2022-11-23 15:00:55,956 INFO L899 garLoopResultBuilder]: For program point L729(lines 729 735) no Hoare annotation was computed. [2022-11-23 15:00:55,957 INFO L899 garLoopResultBuilder]: For program point L729-1(lines 729 735) no Hoare annotation was computed. [2022-11-23 15:00:55,957 INFO L895 garLoopResultBuilder]: At program point L767(lines 718 768) the Hoare annotation is: false [2022-11-23 15:00:55,957 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-23 15:00:55,957 INFO L895 garLoopResultBuilder]: At program point L140(lines 140 147) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= ~methaneLevelCritical~0 0) (= |ULTIMATE.start_main_~tmp~0#1| 1) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2022-11-23 15:00:55,957 INFO L902 garLoopResultBuilder]: At program point L140-2(lines 140 147) the Hoare annotation is: true [2022-11-23 15:00:55,957 INFO L899 garLoopResultBuilder]: For program point L739(lines 739 745) no Hoare annotation was computed. [2022-11-23 15:00:55,958 INFO L895 garLoopResultBuilder]: At program point L739-1(lines 739 745) the Hoare annotation is: (and (= |ULTIMATE.start_main_~tmp~0#1| 1) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (<= ~waterLevel~0 2)) [2022-11-23 15:00:55,958 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-23 15:00:55,958 INFO L895 garLoopResultBuilder]: At program point L764(lines 719 766) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_main_~tmp~0#1| 1)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 (<= ~waterLevel~0 1) .cse1 .cse2) (and .cse0 .cse1 .cse2 (<= ~waterLevel~0 2) (or (<= 1 ~methaneLevelCritical~0) (<= (+ ~methaneLevelCritical~0 1) 0) (= ~pumpRunning~0 1))))) [2022-11-23 15:00:55,958 INFO L895 garLoopResultBuilder]: At program point L731(line 731) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_main_~tmp~0#1| 1)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (<= ~waterLevel~0 2))) (or (and .cse0 (<= ~waterLevel~0 1) .cse1 .cse2) (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse1 .cse2 .cse3 (or (<= 1 ~methaneLevelCritical~0) (<= (+ ~methaneLevelCritical~0 1) 0) (= ~pumpRunning~0 1))))) [2022-11-23 15:00:55,958 INFO L895 garLoopResultBuilder]: At program point L757-2(lines 749 762) the Hoare annotation is: (and (= |ULTIMATE.start_main_~tmp~0#1| 1) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (<= ~waterLevel~0 2)) [2022-11-23 15:00:55,958 INFO L899 garLoopResultBuilder]: For program point L720(lines 719 766) no Hoare annotation was computed. [2022-11-23 15:00:55,959 INFO L895 garLoopResultBuilder]: At program point L741(line 741) the Hoare annotation is: (and (= |ULTIMATE.start_main_~tmp~0#1| 1) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (<= ~waterLevel~0 2)) [2022-11-23 15:00:55,959 INFO L902 garLoopResultBuilder]: At program point L770(lines 709 774) the Hoare annotation is: true [2022-11-23 15:00:55,959 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 813 837) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (<= ~waterLevel~0 1))) (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (<= ~waterLevel~0 2))))) [2022-11-23 15:00:55,959 INFO L895 garLoopResultBuilder]: At program point L832(line 832) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (<= ~waterLevel~0 1))) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (<= ~waterLevel~0 2))))) [2022-11-23 15:00:55,959 INFO L899 garLoopResultBuilder]: For program point L832-1(lines 813 837) no Hoare annotation was computed. [2022-11-23 15:00:55,960 INFO L895 garLoopResultBuilder]: At program point L903(line 903) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (<= ~waterLevel~0 1))) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (<= ~waterLevel~0 2)) (and (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~6#1| 1))))) [2022-11-23 15:00:55,960 INFO L895 garLoopResultBuilder]: At program point L903-1(line 903) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (not (= |old(~pumpRunning~0)| 0)) .cse0 (not (<= ~waterLevel~0 2)) (and (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~6#1| 1) (= |processEnvironment__wrappee__highWaterSensor_isMethaneAlarm_#t~ret44#1| ~methaneLevelCritical~0))) (or .cse0 (not (<= ~waterLevel~0 1))))) [2022-11-23 15:00:55,960 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 813 837) no Hoare annotation was computed. [2022-11-23 15:00:55,960 INFO L895 garLoopResultBuilder]: At program point L827(line 827) the Hoare annotation is: (let ((.cse1 (not (= 1 ~systemActive~0))) (.cse0 (<= ~waterLevel~0 1))) (and (or (not (= |old(~pumpRunning~0)| 0)) (and .cse0 (= |processEnvironment__wrappee__highWaterSensor_~tmp~6#1| 0)) .cse1 (not (<= ~waterLevel~0 2))) (or .cse1 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= ~pumpRunning~0 0)) (not .cse0)))) [2022-11-23 15:00:55,960 INFO L899 garLoopResultBuilder]: For program point L821(lines 821 829) no Hoare annotation was computed. [2022-11-23 15:00:55,960 INFO L895 garLoopResultBuilder]: At program point L817(lines 817 834) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (<= ~waterLevel~0 1))) (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse0 (not (<= ~waterLevel~0 2))))) [2022-11-23 15:00:55,961 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 584 595) no Hoare annotation was computed. [2022-11-23 15:00:55,961 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 584 595) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (and (not (<= (+ ~methaneLevelCritical~0 1) 0)) (not (<= 1 ~methaneLevelCritical~0)) (not (= ~pumpRunning~0 1))) .cse1 .cse2) (or (not (<= |old(~waterLevel~0)| 1)) .cse0 .cse1) (or (not (= ~pumpRunning~0 0)) .cse0 .cse1 .cse2))) [2022-11-23 15:00:55,964 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 15:00:55,966 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-23 15:00:56,000 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 23.11 03:00:55 BoogieIcfgContainer [2022-11-23 15:00:56,000 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-23 15:00:56,000 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-23 15:00:56,001 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-23 15:00:56,001 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-23 15:00:56,001 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 02:59:53" (3/4) ... [2022-11-23 15:00:56,004 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-23 15:00:56,010 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-23 15:00:56,010 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-23 15:00:56,010 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2022-11-23 15:00:56,010 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-23 15:00:56,011 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-23 15:00:56,011 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 15:00:56,011 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-23 15:00:56,018 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 54 nodes and edges [2022-11-23 15:00:56,019 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 11 nodes and edges [2022-11-23 15:00:56,020 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 6 nodes and edges [2022-11-23 15:00:56,020 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-23 15:00:56,020 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-23 15:00:56,046 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!(1 == systemActive) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(\old(waterLevel) <= 2) [2022-11-23 15:00:56,047 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) && (((!(\old(waterLevel) <= 1) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && (((!(1 == systemActive) || (((!(pumpRunning == 0) && waterLevel <= 1) || (pumpRunning == 0 && 2 <= waterLevel)) && (\old(waterLevel) == waterLevel || waterLevel == 1))) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) < 2))) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) [2022-11-23 15:00:56,048 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel))) || !(\old(waterLevel) <= 2)) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) && pumpRunning == 1)) && ((((!(1 == systemActive) || (\old(waterLevel) == waterLevel && ((1 <= methaneLevelCritical || methaneLevelCritical + 1 <= 0) || pumpRunning == 1))) || waterLevel == 1) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(waterLevel) <= 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(1 == systemActive))) && ((((!(\old(waterLevel) <= 1) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) [2022-11-23 15:00:56,048 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((pumpRunning == \old(pumpRunning) || !(1 == systemActive)) || !(waterLevel <= 1)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel <= 2)) [2022-11-23 15:00:56,048 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((((!(tmp == 0) || !(1 == systemActive)) || \old(waterLevel) < 2) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || (pumpRunning == 0 && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) && ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel))) || !(\old(waterLevel) <= 2)) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) && pumpRunning == 1))) && (((((!(\old(waterLevel) <= 1) || !(tmp == 0)) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel))) || pumpRunning == 1)) && ((((!(1 == systemActive) || \old(waterLevel) < 2) || (\old(waterLevel) == waterLevel && ((1 <= methaneLevelCritical || methaneLevelCritical + 1 <= 0) || pumpRunning == 1))) || waterLevel == 1) || !(\old(waterLevel) <= 2))) && ((((!(\old(pumpRunning) == 0) || !(tmp == 0)) || !(1 == systemActive)) || !(\old(waterLevel) < 2)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1)))) && ((((!(\old(waterLevel) <= 1) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel)))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || 2 <= waterLevel) || !(\old(waterLevel) <= 2)) [2022-11-23 15:00:56,049 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((pumpRunning == 0 || !(tmp == 0)) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) && ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel))) || !(\old(waterLevel) <= 2)) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) && pumpRunning == 1))) && ((((!(1 == systemActive) || (((!(tmp == 0) || pumpRunning == 1) && \old(waterLevel) == waterLevel) && ((1 <= methaneLevelCritical || methaneLevelCritical + 1 <= 0) || pumpRunning == 1))) || \old(waterLevel) < 2) || waterLevel == 1) || !(\old(waterLevel) <= 2))) && (((((!(\old(pumpRunning) == 0) || !(tmp == 0)) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || !(\old(waterLevel) <= 2)) || pumpRunning == 1)) && ((((!(\old(waterLevel) <= 1) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel)))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || 2 <= waterLevel) || !(\old(waterLevel) <= 2)) [2022-11-23 15:00:56,049 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(waterLevel <= 2)) || ((pumpRunning == 0 && tmp == 1) && aux-isMethaneLevelCritical()-aux == methaneLevelCritical)) && (!(1 == systemActive) || !(waterLevel <= 1)) [2022-11-23 15:00:56,050 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((!(1 == systemActive) || \old(waterLevel) < 2) || (tmp___0 <= 1 && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || (\old(waterLevel) == waterLevel && pumpRunning == 1)) && (((!(\old(waterLevel) <= 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || tmp___0 == 1)) && ((((!(1 == systemActive) || \old(waterLevel) < 2) || !(\old(pumpRunning) == 1)) || waterLevel == 1) || !(\old(waterLevel) <= 2))) && (((!(\old(waterLevel) <= 1) || ((pumpRunning == 0 && tmp___0 <= 1) && waterLevel <= \old(waterLevel))) || !(1 == systemActive)) || (tmp___0 <= 1 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && ((((pumpRunning == 0 || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || !(\old(waterLevel) <= 2)) || pumpRunning == 1)) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || 2 <= waterLevel) || !(\old(waterLevel) <= 2)) [2022-11-23 15:00:56,050 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) && ((!(1 == systemActive) || ((waterLevel <= 1 && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && (!(2 <= tmp___0) || !(pumpRunning == 0)))) || !(\old(waterLevel) <= 2))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) [2022-11-23 15:00:56,051 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !(1 == systemActive) || !(\old(waterLevel) <= 2) [2022-11-23 15:00:56,073 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/witness.graphml [2022-11-23 15:00:56,073 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-23 15:00:56,074 INFO L158 Benchmark]: Toolchain (without parser) took 64147.68ms. Allocated memory was 125.8MB in the beginning and 677.4MB in the end (delta: 551.6MB). Free memory was 83.3MB in the beginning and 273.1MB in the end (delta: -189.8MB). Peak memory consumption was 363.2MB. Max. memory is 16.1GB. [2022-11-23 15:00:56,074 INFO L158 Benchmark]: CDTParser took 0.30ms. Allocated memory is still 125.8MB. Free memory is still 67.2MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-23 15:00:56,074 INFO L158 Benchmark]: CACSL2BoogieTranslator took 581.89ms. Allocated memory is still 125.8MB. Free memory was 83.0MB in the beginning and 64.1MB in the end (delta: 18.8MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2022-11-23 15:00:56,075 INFO L158 Benchmark]: Boogie Procedure Inliner took 77.40ms. Allocated memory is still 125.8MB. Free memory was 64.1MB in the beginning and 61.7MB in the end (delta: 2.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-23 15:00:56,075 INFO L158 Benchmark]: Boogie Preprocessor took 42.67ms. Allocated memory is still 125.8MB. Free memory was 61.7MB in the beginning and 60.3MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-23 15:00:56,075 INFO L158 Benchmark]: RCFGBuilder took 712.48ms. Allocated memory was 125.8MB in the beginning and 155.2MB in the end (delta: 29.4MB). Free memory was 59.9MB in the beginning and 104.4MB in the end (delta: -44.5MB). Peak memory consumption was 14.0MB. Max. memory is 16.1GB. [2022-11-23 15:00:56,076 INFO L158 Benchmark]: TraceAbstraction took 62649.94ms. Allocated memory was 155.2MB in the beginning and 677.4MB in the end (delta: 522.2MB). Free memory was 103.6MB in the beginning and 279.4MB in the end (delta: -175.8MB). Peak memory consumption was 391.2MB. Max. memory is 16.1GB. [2022-11-23 15:00:56,076 INFO L158 Benchmark]: Witness Printer took 72.77ms. Allocated memory is still 677.4MB. Free memory was 279.4MB in the beginning and 273.1MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-23 15:00:56,078 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.30ms. Allocated memory is still 125.8MB. Free memory is still 67.2MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 581.89ms. Allocated memory is still 125.8MB. Free memory was 83.0MB in the beginning and 64.1MB in the end (delta: 18.8MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 77.40ms. Allocated memory is still 125.8MB. Free memory was 64.1MB in the beginning and 61.7MB in the end (delta: 2.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 42.67ms. Allocated memory is still 125.8MB. Free memory was 61.7MB in the beginning and 60.3MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 712.48ms. Allocated memory was 125.8MB in the beginning and 155.2MB in the end (delta: 29.4MB). Free memory was 59.9MB in the beginning and 104.4MB in the end (delta: -44.5MB). Peak memory consumption was 14.0MB. Max. memory is 16.1GB. * TraceAbstraction took 62649.94ms. Allocated memory was 155.2MB in the beginning and 677.4MB in the end (delta: 522.2MB). Free memory was 103.6MB in the beginning and 279.4MB in the end (delta: -175.8MB). Peak memory consumption was 391.2MB. Max. memory is 16.1GB. * Witness Printer took 72.77ms. Allocated memory is still 677.4MB. Free memory was 279.4MB in the beginning and 273.1MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 559]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 58 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 62.6s, OverallIterations: 11, TraceHistogramMax: 3, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 8.2s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 22.1s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2440 SdHoareTripleChecker+Valid, 3.7s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2398 mSDsluCounter, 2693 SdHoareTripleChecker+Invalid, 3.0s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1974 mSDsCounter, 1172 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3534 IncrementalHoareTripleChecker+Invalid, 4706 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1172 mSolverCounterUnsat, 719 mSDtfsCounter, 3534 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 609 GetRequests, 350 SyntacticMatches, 17 SemanticMatches, 242 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 5727 ImplicationChecksByTransitivity, 23.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1794occurred in iteration=10, InterpolantAutomatonStates: 170, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.9s AutomataMinimizationTime, 11 MinimizatonAttempts, 930 StatesRemovedByMinimization, 7 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 36 LocationsWithAnnotation, 3724 PreInvPairs, 4919 NumberOfFragments, 1902 HoareAnnotationTreeSize, 3724 FomulaSimplifications, 82052 FormulaSimplificationTreeSizeReduction, 4.2s HoareSimplificationTime, 36 FomulaSimplificationsInter, 157389 FormulaSimplificationTreeSizeReductionInter, 17.7s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 4.4s InterpolantComputationTime, 598 NumberOfCodeBlocks, 598 NumberOfCodeBlocksAsserted, 15 NumberOfCheckSat, 671 ConstructedInterpolants, 0 QuantifiedInterpolants, 2751 SizeOfPredicates, 51 NumberOfNonLiveVariables, 1101 ConjunctsInSsa, 106 ConjunctsInUnsatCore, 17 InterpolantComputations, 9 PerfectInterpolantSequences, 112/173 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 683]: Loop Invariant Derived loop invariant: (((((((((((!(tmp == 0) || !(1 == systemActive)) || \old(waterLevel) < 2) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || (pumpRunning == 0 && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) && ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel))) || !(\old(waterLevel) <= 2)) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) && pumpRunning == 1))) && (((((!(\old(waterLevel) <= 1) || !(tmp == 0)) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel))) || pumpRunning == 1)) && ((((!(1 == systemActive) || \old(waterLevel) < 2) || (\old(waterLevel) == waterLevel && ((1 <= methaneLevelCritical || methaneLevelCritical + 1 <= 0) || pumpRunning == 1))) || waterLevel == 1) || !(\old(waterLevel) <= 2))) && ((((!(\old(pumpRunning) == 0) || !(tmp == 0)) || !(1 == systemActive)) || !(\old(waterLevel) < 2)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1)))) && ((((!(\old(waterLevel) <= 1) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel)))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || 2 <= waterLevel) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 52]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 140]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 839]: Loop Invariant Derived loop invariant: (((((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel))) || !(\old(waterLevel) <= 2)) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) && pumpRunning == 1)) && ((((!(1 == systemActive) || (\old(waterLevel) == waterLevel && ((1 <= methaneLevelCritical || methaneLevelCritical + 1 <= 0) || pumpRunning == 1))) || waterLevel == 1) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(waterLevel) <= 1) || !(\old(pumpRunning) == 0)) || pumpRunning == 0) || !(1 == systemActive))) && ((((!(\old(waterLevel) <= 1) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: 140]: Loop Invariant Derived loop invariant: (((pumpRunning == 0 && methaneLevelCritical == 0) && tmp == 1) && 1 == systemActive) && waterLevel == 1 - InvariantResult [Line: 781]: Loop Invariant Derived loop invariant: (!(1 == systemActive) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(\old(waterLevel) <= 2) - InvariantResult [Line: 718]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 847]: Loop Invariant Derived loop invariant: ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) && ((!(1 == systemActive) || ((waterLevel <= 1 && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && (!(2 <= tmp___0) || !(pumpRunning == 0)))) || !(\old(waterLevel) <= 2))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: 843]: Loop Invariant Derived loop invariant: ((((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) && (((!(\old(waterLevel) <= 1) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && (((!(1 == systemActive) || (((!(pumpRunning == 0) && waterLevel <= 1) || (pumpRunning == 0 && 2 <= waterLevel)) && (\old(waterLevel) == waterLevel || waterLevel == 1))) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) < 2))) && (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: 674]: Loop Invariant Derived loop invariant: (((((((((pumpRunning == 0 || !(tmp == 0)) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || !(\old(waterLevel) <= 2)) || pumpRunning == 1) && ((((!(1 == systemActive) || !(\old(pumpRunning) == 1)) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel))) || !(\old(waterLevel) <= 2)) || (((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) && pumpRunning == 1))) && ((((!(1 == systemActive) || (((!(tmp == 0) || pumpRunning == 1) && \old(waterLevel) == waterLevel) && ((1 <= methaneLevelCritical || methaneLevelCritical + 1 <= 0) || pumpRunning == 1))) || \old(waterLevel) < 2) || waterLevel == 1) || !(\old(waterLevel) <= 2))) && (((((!(\old(pumpRunning) == 0) || !(tmp == 0)) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || !(\old(waterLevel) <= 2)) || pumpRunning == 1)) && ((((!(\old(waterLevel) <= 1) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))))) || ((((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && waterLevel <= \old(waterLevel)) && (!(\old(pumpRunning) == 0) || \old(waterLevel) <= waterLevel)))) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || 2 <= waterLevel) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: 719]: Loop Invariant Derived loop invariant: (((tmp == 1 && waterLevel <= 1) && 1 == systemActive) && splverifierCounter == 0) || ((((tmp == 1 && 1 == systemActive) && splverifierCounter == 0) && waterLevel <= 2) && ((1 <= methaneLevelCritical || methaneLevelCritical + 1 <= 0) || pumpRunning == 1)) - InvariantResult [Line: 817]: Loop Invariant Derived loop invariant: ((pumpRunning == \old(pumpRunning) || !(1 == systemActive)) || !(waterLevel <= 1)) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(1 == systemActive)) || !(waterLevel <= 2)) - InvariantResult [Line: 62]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 739]: Loop Invariant Derived loop invariant: ((tmp == 1 && 1 == systemActive) && splverifierCounter == 0) && waterLevel <= 2 - InvariantResult [Line: 689]: Loop Invariant Derived loop invariant: (((((((((!(1 == systemActive) || \old(waterLevel) < 2) || (tmp___0 <= 1 && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || (\old(waterLevel) == waterLevel && pumpRunning == 1)) && (((!(\old(waterLevel) <= 1) || !(\old(pumpRunning) == 0)) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || tmp___0 == 1)) && ((((!(1 == systemActive) || \old(waterLevel) < 2) || !(\old(pumpRunning) == 1)) || waterLevel == 1) || !(\old(waterLevel) <= 2))) && (((!(\old(waterLevel) <= 1) || ((pumpRunning == 0 && tmp___0 <= 1) && waterLevel <= \old(waterLevel))) || !(1 == systemActive)) || (tmp___0 <= 1 && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && ((((pumpRunning == 0 || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || !(\old(waterLevel) <= 2)) || pumpRunning == 1)) && ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || 2 <= waterLevel) || !(\old(waterLevel) <= 2)) - InvariantResult [Line: 559]: Loop Invariant Derived loop invariant: !(1 == systemActive) || !(\old(waterLevel) <= 2) - InvariantResult [Line: 903]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(waterLevel <= 2)) || ((pumpRunning == 0 && tmp == 1) && aux-isMethaneLevelCritical()-aux == methaneLevelCritical)) && (!(1 == systemActive) || !(waterLevel <= 1)) - InvariantResult [Line: 709]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2022-11-23 15:00:56,114 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_bcaa269f-c7c9-44f5-910b-0725e39fe934/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE