./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec4_product60.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 4e7fbc69 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec4_product60.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 63a498e40ee7fb7960293994084186ed238562f61fafb5e109bd8b394667fc1f --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-4e7fbc6 [2022-11-23 16:08:49,120 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-23 16:08:49,122 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-23 16:08:49,143 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-23 16:08:49,144 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-23 16:08:49,145 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-23 16:08:49,146 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-23 16:08:49,148 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-23 16:08:49,150 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-23 16:08:49,151 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-23 16:08:49,152 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-23 16:08:49,154 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-23 16:08:49,154 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-23 16:08:49,155 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-23 16:08:49,156 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-23 16:08:49,158 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-23 16:08:49,159 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-23 16:08:49,160 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-23 16:08:49,162 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-23 16:08:49,164 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-23 16:08:49,166 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-23 16:08:49,168 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-23 16:08:49,170 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-23 16:08:49,171 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-23 16:08:49,175 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-23 16:08:49,176 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-23 16:08:49,176 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-23 16:08:49,178 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-23 16:08:49,178 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-23 16:08:49,180 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-23 16:08:49,180 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-23 16:08:49,181 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-23 16:08:49,182 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-23 16:08:49,184 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-23 16:08:49,185 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-23 16:08:49,185 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-23 16:08:49,186 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-23 16:08:49,187 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-23 16:08:49,187 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-23 16:08:49,189 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-23 16:08:49,190 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-23 16:08:49,191 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-23 16:08:49,219 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-23 16:08:49,219 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-23 16:08:49,220 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-23 16:08:49,220 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-23 16:08:49,221 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-23 16:08:49,221 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-23 16:08:49,221 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-23 16:08:49,222 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-23 16:08:49,222 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-23 16:08:49,222 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-23 16:08:49,223 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-23 16:08:49,223 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-23 16:08:49,223 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-23 16:08:49,224 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-23 16:08:49,224 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-23 16:08:49,224 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-23 16:08:49,225 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-23 16:08:49,225 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-23 16:08:49,226 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-23 16:08:49,226 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-23 16:08:49,226 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-23 16:08:49,227 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-23 16:08:49,227 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-23 16:08:49,227 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-23 16:08:49,228 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-23 16:08:49,228 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-23 16:08:49,228 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-23 16:08:49,229 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-23 16:08:49,229 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-23 16:08:49,229 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-23 16:08:49,229 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-23 16:08:49,230 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-23 16:08:49,230 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 16:08:49,230 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-23 16:08:49,231 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-23 16:08:49,231 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-23 16:08:49,231 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-23 16:08:49,231 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-23 16:08:49,232 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-23 16:08:49,232 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-23 16:08:49,232 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-23 16:08:49,232 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 63a498e40ee7fb7960293994084186ed238562f61fafb5e109bd8b394667fc1f [2022-11-23 16:08:49,490 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-23 16:08:49,526 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-23 16:08:49,529 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-23 16:08:49,531 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-23 16:08:49,531 INFO L275 PluginConnector]: CDTParser initialized [2022-11-23 16:08:49,532 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/../../sv-benchmarks/c/product-lines/minepump_spec4_product60.cil.c [2022-11-23 16:08:52,947 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-23 16:08:53,319 INFO L351 CDTParser]: Found 1 translation units. [2022-11-23 16:08:53,320 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/sv-benchmarks/c/product-lines/minepump_spec4_product60.cil.c [2022-11-23 16:08:53,344 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/data/7c3abf3c5/230b6d1d86bd4f26821c28702594a01d/FLAG7b5c41cde [2022-11-23 16:08:53,366 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/data/7c3abf3c5/230b6d1d86bd4f26821c28702594a01d [2022-11-23 16:08:53,373 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-23 16:08:53,375 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-23 16:08:53,381 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-23 16:08:53,381 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-23 16:08:53,385 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-23 16:08:53,386 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:53,388 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2746cf9c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53, skipping insertion in model container [2022-11-23 16:08:53,389 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:53,398 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-23 16:08:53,473 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-23 16:08:53,808 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/sv-benchmarks/c/product-lines/minepump_spec4_product60.cil.c[13463,13476] [2022-11-23 16:08:53,875 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 16:08:53,890 INFO L203 MainTranslator]: Completed pre-run [2022-11-23 16:08:53,953 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/sv-benchmarks/c/product-lines/minepump_spec4_product60.cil.c[13463,13476] [2022-11-23 16:08:53,971 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 16:08:53,993 INFO L208 MainTranslator]: Completed translation [2022-11-23 16:08:53,993 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53 WrapperNode [2022-11-23 16:08:53,994 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-23 16:08:53,995 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-23 16:08:53,995 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-23 16:08:53,996 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-23 16:08:54,004 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,020 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,052 INFO L138 Inliner]: procedures = 58, calls = 103, calls flagged for inlining = 27, calls inlined = 24, statements flattened = 230 [2022-11-23 16:08:54,053 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-23 16:08:54,054 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-23 16:08:54,054 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-23 16:08:54,054 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-23 16:08:54,066 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,067 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,069 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,070 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,077 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,093 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,095 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,097 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,100 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-23 16:08:54,101 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-23 16:08:54,101 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-23 16:08:54,101 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-23 16:08:54,113 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (1/1) ... [2022-11-23 16:08:54,127 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 16:08:54,144 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 16:08:54,162 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-23 16:08:54,180 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-23 16:08:54,214 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-23 16:08:54,214 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-23 16:08:54,214 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-23 16:08:54,215 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-23 16:08:54,215 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-23 16:08:54,215 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-23 16:08:54,215 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-23 16:08:54,215 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 16:08:54,215 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 16:08:54,216 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-23 16:08:54,216 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-23 16:08:54,216 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-23 16:08:54,216 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-23 16:08:54,216 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-23 16:08:54,216 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-23 16:08:54,217 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-23 16:08:54,217 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-23 16:08:54,217 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-23 16:08:54,320 INFO L235 CfgBuilder]: Building ICFG [2022-11-23 16:08:54,323 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-23 16:08:54,725 INFO L276 CfgBuilder]: Performing block encoding [2022-11-23 16:08:54,961 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-23 16:08:54,962 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-23 16:08:54,965 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 04:08:54 BoogieIcfgContainer [2022-11-23 16:08:54,965 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-23 16:08:54,968 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-23 16:08:54,968 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-23 16:08:54,973 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-23 16:08:54,973 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 23.11 04:08:53" (1/3) ... [2022-11-23 16:08:54,974 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@c8031fc and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 04:08:54, skipping insertion in model container [2022-11-23 16:08:54,974 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 04:08:53" (2/3) ... [2022-11-23 16:08:54,975 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@c8031fc and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 04:08:54, skipping insertion in model container [2022-11-23 16:08:54,975 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 04:08:54" (3/3) ... [2022-11-23 16:08:54,977 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product60.cil.c [2022-11-23 16:08:55,001 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-23 16:08:55,002 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-23 16:08:55,064 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-23 16:08:55,073 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@56aba4bd, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-23 16:08:55,073 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-23 16:08:55,078 INFO L276 IsEmpty]: Start isEmpty. Operand has 59 states, 38 states have (on average 1.4736842105263157) internal successors, (56), 47 states have internal predecessors, (56), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 9 states have call predecessors, (12), 12 states have call successors, (12) [2022-11-23 16:08:55,089 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2022-11-23 16:08:55,089 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:08:55,090 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:08:55,091 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:08:55,097 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:08:55,098 INFO L85 PathProgramCache]: Analyzing trace with hash -37410934, now seen corresponding path program 1 times [2022-11-23 16:08:55,110 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:08:55,111 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1983005170] [2022-11-23 16:08:55,111 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:08:55,112 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:08:55,276 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:08:55,345 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:08:55,346 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:08:55,346 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1983005170] [2022-11-23 16:08:55,347 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1983005170] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:08:55,347 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 16:08:55,347 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-23 16:08:55,349 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1120310374] [2022-11-23 16:08:55,350 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:08:55,355 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-23 16:08:55,355 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:08:55,395 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-23 16:08:55,397 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 16:08:55,399 INFO L87 Difference]: Start difference. First operand has 59 states, 38 states have (on average 1.4736842105263157) internal successors, (56), 47 states have internal predecessors, (56), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 9 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:08:55,538 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:08:55,539 INFO L93 Difference]: Finished difference Result 116 states and 161 transitions. [2022-11-23 16:08:55,540 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-23 16:08:55,542 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 12 [2022-11-23 16:08:55,542 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:08:55,552 INFO L225 Difference]: With dead ends: 116 [2022-11-23 16:08:55,552 INFO L226 Difference]: Without dead ends: 54 [2022-11-23 16:08:55,556 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 16:08:55,562 INFO L413 NwaCegarLoop]: 59 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 59 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 16:08:55,566 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 59 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 16:08:55,586 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 54 states. [2022-11-23 16:08:55,610 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 54 to 54. [2022-11-23 16:08:55,612 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 54 states, 35 states have (on average 1.3714285714285714) internal successors, (48), 43 states have internal predecessors, (48), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2022-11-23 16:08:55,614 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 54 states to 54 states and 71 transitions. [2022-11-23 16:08:55,617 INFO L78 Accepts]: Start accepts. Automaton has 54 states and 71 transitions. Word has length 12 [2022-11-23 16:08:55,617 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:08:55,617 INFO L495 AbstractCegarLoop]: Abstraction has 54 states and 71 transitions. [2022-11-23 16:08:55,618 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:08:55,618 INFO L276 IsEmpty]: Start isEmpty. Operand 54 states and 71 transitions. [2022-11-23 16:08:55,620 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2022-11-23 16:08:55,620 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:08:55,620 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:08:55,621 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-23 16:08:55,621 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:08:55,622 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:08:55,622 INFO L85 PathProgramCache]: Analyzing trace with hash 2092430191, now seen corresponding path program 1 times [2022-11-23 16:08:55,623 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:08:55,623 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [749212187] [2022-11-23 16:08:55,623 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:08:55,624 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:08:55,645 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:08:55,780 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:08:55,780 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:08:55,781 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [749212187] [2022-11-23 16:08:55,781 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [749212187] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:08:55,781 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 16:08:55,781 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 16:08:55,781 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [972677743] [2022-11-23 16:08:55,782 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:08:55,783 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 16:08:55,783 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:08:55,784 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 16:08:55,784 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 16:08:55,784 INFO L87 Difference]: Start difference. First operand 54 states and 71 transitions. Second operand has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:08:55,838 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:08:55,838 INFO L93 Difference]: Finished difference Result 80 states and 104 transitions. [2022-11-23 16:08:55,839 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 16:08:55,839 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 13 [2022-11-23 16:08:55,840 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:08:55,841 INFO L225 Difference]: With dead ends: 80 [2022-11-23 16:08:55,841 INFO L226 Difference]: Without dead ends: 46 [2022-11-23 16:08:55,842 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 16:08:55,844 INFO L413 NwaCegarLoop]: 45 mSDtfsCounter, 14 mSDsluCounter, 29 mSDsCounter, 0 mSdLazyCounter, 26 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 74 SdHoareTripleChecker+Invalid, 26 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 26 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 16:08:55,844 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 74 Invalid, 26 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 26 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 16:08:55,846 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 46 states. [2022-11-23 16:08:55,854 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 46 to 46. [2022-11-23 16:08:55,854 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 46 states, 30 states have (on average 1.4) internal successors, (42), 38 states have internal predecessors, (42), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 6 states have call predecessors, (9), 9 states have call successors, (9) [2022-11-23 16:08:55,855 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 46 states to 46 states and 60 transitions. [2022-11-23 16:08:55,856 INFO L78 Accepts]: Start accepts. Automaton has 46 states and 60 transitions. Word has length 13 [2022-11-23 16:08:55,856 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:08:55,856 INFO L495 AbstractCegarLoop]: Abstraction has 46 states and 60 transitions. [2022-11-23 16:08:55,857 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:08:55,857 INFO L276 IsEmpty]: Start isEmpty. Operand 46 states and 60 transitions. [2022-11-23 16:08:55,858 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2022-11-23 16:08:55,858 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:08:55,858 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:08:55,858 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-23 16:08:55,859 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:08:55,859 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:08:55,860 INFO L85 PathProgramCache]: Analyzing trace with hash -503628936, now seen corresponding path program 1 times [2022-11-23 16:08:55,860 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:08:55,860 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [897773634] [2022-11-23 16:08:55,860 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:08:55,861 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:08:55,883 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:08:56,003 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:08:56,003 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:08:56,004 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [897773634] [2022-11-23 16:08:56,004 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [897773634] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:08:56,004 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 16:08:56,004 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-23 16:08:56,005 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1715973137] [2022-11-23 16:08:56,005 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:08:56,006 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-23 16:08:56,006 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:08:56,006 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-23 16:08:56,007 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 16:08:56,007 INFO L87 Difference]: Start difference. First operand 46 states and 60 transitions. Second operand has 4 states, 4 states have (on average 3.75) internal successors, (15), 4 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:08:56,126 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:08:56,126 INFO L93 Difference]: Finished difference Result 119 states and 156 transitions. [2022-11-23 16:08:56,126 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-11-23 16:08:56,127 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 3.75) internal successors, (15), 4 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 16 [2022-11-23 16:08:56,127 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:08:56,128 INFO L225 Difference]: With dead ends: 119 [2022-11-23 16:08:56,129 INFO L226 Difference]: Without dead ends: 75 [2022-11-23 16:08:56,130 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2022-11-23 16:08:56,131 INFO L413 NwaCegarLoop]: 49 mSDtfsCounter, 83 mSDsluCounter, 56 mSDsCounter, 0 mSdLazyCounter, 47 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 87 SdHoareTripleChecker+Valid, 105 SdHoareTripleChecker+Invalid, 56 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 47 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 16:08:56,132 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [87 Valid, 105 Invalid, 56 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 47 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 16:08:56,133 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 75 states. [2022-11-23 16:08:56,150 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 75 to 72. [2022-11-23 16:08:56,150 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 72 states, 48 states have (on average 1.3958333333333333) internal successors, (67), 59 states have internal predecessors, (67), 13 states have call successors, (13), 10 states have call predecessors, (13), 10 states have return successors, (14), 9 states have call predecessors, (14), 13 states have call successors, (14) [2022-11-23 16:08:56,153 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 72 states to 72 states and 94 transitions. [2022-11-23 16:08:56,153 INFO L78 Accepts]: Start accepts. Automaton has 72 states and 94 transitions. Word has length 16 [2022-11-23 16:08:56,153 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:08:56,154 INFO L495 AbstractCegarLoop]: Abstraction has 72 states and 94 transitions. [2022-11-23 16:08:56,154 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 3.75) internal successors, (15), 4 states have internal predecessors, (15), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:08:56,154 INFO L276 IsEmpty]: Start isEmpty. Operand 72 states and 94 transitions. [2022-11-23 16:08:56,155 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 20 [2022-11-23 16:08:56,156 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:08:56,156 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:08:56,156 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-23 16:08:56,157 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:08:56,157 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:08:56,158 INFO L85 PathProgramCache]: Analyzing trace with hash 2011774462, now seen corresponding path program 1 times [2022-11-23 16:08:56,158 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:08:56,158 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1503809587] [2022-11-23 16:08:56,159 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:08:56,159 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:08:56,182 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:08:56,555 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:08:56,556 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:08:56,556 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1503809587] [2022-11-23 16:08:56,557 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1503809587] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:08:56,558 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 16:08:56,558 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-23 16:08:56,559 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [990601093] [2022-11-23 16:08:56,559 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:08:56,561 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-23 16:08:56,561 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:08:56,562 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-23 16:08:56,562 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-11-23 16:08:56,563 INFO L87 Difference]: Start difference. First operand 72 states and 94 transitions. Second operand has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:08:56,823 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:08:56,824 INFO L93 Difference]: Finished difference Result 239 states and 319 transitions. [2022-11-23 16:08:56,824 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-11-23 16:08:56,825 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19 [2022-11-23 16:08:56,826 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:08:56,833 INFO L225 Difference]: With dead ends: 239 [2022-11-23 16:08:56,834 INFO L226 Difference]: Without dead ends: 169 [2022-11-23 16:08:56,838 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2022-11-23 16:08:56,845 INFO L413 NwaCegarLoop]: 53 mSDtfsCounter, 71 mSDsluCounter, 141 mSDsCounter, 0 mSdLazyCounter, 82 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 71 SdHoareTripleChecker+Valid, 194 SdHoareTripleChecker+Invalid, 92 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 82 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 16:08:56,846 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [71 Valid, 194 Invalid, 92 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 82 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 16:08:56,847 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 169 states. [2022-11-23 16:08:56,888 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 169 to 142. [2022-11-23 16:08:56,889 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 142 states, 100 states have (on average 1.33) internal successors, (133), 115 states have internal predecessors, (133), 21 states have call successors, (21), 18 states have call predecessors, (21), 20 states have return successors, (26), 19 states have call predecessors, (26), 21 states have call successors, (26) [2022-11-23 16:08:56,891 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 142 states to 142 states and 180 transitions. [2022-11-23 16:08:56,891 INFO L78 Accepts]: Start accepts. Automaton has 142 states and 180 transitions. Word has length 19 [2022-11-23 16:08:56,892 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:08:56,892 INFO L495 AbstractCegarLoop]: Abstraction has 142 states and 180 transitions. [2022-11-23 16:08:56,892 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 3.6) internal successors, (18), 4 states have internal predecessors, (18), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:08:56,892 INFO L276 IsEmpty]: Start isEmpty. Operand 142 states and 180 transitions. [2022-11-23 16:08:56,894 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2022-11-23 16:08:56,894 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:08:56,894 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:08:56,894 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-23 16:08:56,895 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:08:56,895 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:08:56,896 INFO L85 PathProgramCache]: Analyzing trace with hash -1302872931, now seen corresponding path program 1 times [2022-11-23 16:08:56,896 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:08:56,896 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1605171934] [2022-11-23 16:08:56,896 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:08:56,897 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:08:56,918 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:08:57,260 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:08:57,261 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:08:57,261 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1605171934] [2022-11-23 16:08:57,261 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1605171934] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:08:57,261 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 16:08:57,261 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-11-23 16:08:57,262 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [477592456] [2022-11-23 16:08:57,262 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:08:57,262 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-11-23 16:08:57,262 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:08:57,263 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-11-23 16:08:57,263 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-11-23 16:08:57,263 INFO L87 Difference]: Start difference. First operand 142 states and 180 transitions. Second operand has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 16:08:57,893 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:08:57,894 INFO L93 Difference]: Finished difference Result 339 states and 450 transitions. [2022-11-23 16:08:57,894 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-11-23 16:08:57,895 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 22 [2022-11-23 16:08:57,895 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:08:57,898 INFO L225 Difference]: With dead ends: 339 [2022-11-23 16:08:57,898 INFO L226 Difference]: Without dead ends: 269 [2022-11-23 16:08:57,899 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=86, Unknown=0, NotChecked=0, Total=132 [2022-11-23 16:08:57,900 INFO L413 NwaCegarLoop]: 75 mSDtfsCounter, 239 mSDsluCounter, 169 mSDsCounter, 0 mSdLazyCounter, 305 mSolverCounterSat, 90 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 251 SdHoareTripleChecker+Valid, 244 SdHoareTripleChecker+Invalid, 395 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 90 IncrementalHoareTripleChecker+Valid, 305 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2022-11-23 16:08:57,900 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [251 Valid, 244 Invalid, 395 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [90 Valid, 305 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2022-11-23 16:08:57,902 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 269 states. [2022-11-23 16:08:57,946 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 269 to 236. [2022-11-23 16:08:57,947 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 236 states, 165 states have (on average 1.3151515151515152) internal successors, (217), 190 states have internal predecessors, (217), 36 states have call successors, (36), 30 states have call predecessors, (36), 34 states have return successors, (45), 33 states have call predecessors, (45), 36 states have call successors, (45) [2022-11-23 16:08:57,950 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 236 states to 236 states and 298 transitions. [2022-11-23 16:08:57,951 INFO L78 Accepts]: Start accepts. Automaton has 236 states and 298 transitions. Word has length 22 [2022-11-23 16:08:57,951 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:08:57,951 INFO L495 AbstractCegarLoop]: Abstraction has 236 states and 298 transitions. [2022-11-23 16:08:57,952 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 2.7142857142857144) internal successors, (19), 6 states have internal predecessors, (19), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-11-23 16:08:57,952 INFO L276 IsEmpty]: Start isEmpty. Operand 236 states and 298 transitions. [2022-11-23 16:08:57,954 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2022-11-23 16:08:57,955 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:08:57,955 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:08:57,955 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-23 16:08:57,956 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:08:57,956 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:08:57,956 INFO L85 PathProgramCache]: Analyzing trace with hash 870628612, now seen corresponding path program 1 times [2022-11-23 16:08:57,957 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:08:57,957 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [400351841] [2022-11-23 16:08:57,957 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:08:57,957 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:08:57,974 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:08:58,011 INFO L134 CoverageAnalysis]: Checked inductivity of 15 backedges. 15 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:08:58,011 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:08:58,011 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [400351841] [2022-11-23 16:08:58,012 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [400351841] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:08:58,012 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 16:08:58,012 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-23 16:08:58,012 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [546227749] [2022-11-23 16:08:58,013 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:08:58,013 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-23 16:08:58,014 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:08:58,014 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-23 16:08:58,014 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 16:08:58,015 INFO L87 Difference]: Start difference. First operand 236 states and 298 transitions. Second operand has 4 states, 3 states have (on average 13.0) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-23 16:08:58,176 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:08:58,176 INFO L93 Difference]: Finished difference Result 481 states and 605 transitions. [2022-11-23 16:08:58,177 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-23 16:08:58,178 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 13.0) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 44 [2022-11-23 16:08:58,178 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:08:58,180 INFO L225 Difference]: With dead ends: 481 [2022-11-23 16:08:58,180 INFO L226 Difference]: Without dead ends: 247 [2022-11-23 16:08:58,182 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 16:08:58,183 INFO L413 NwaCegarLoop]: 67 mSDtfsCounter, 82 mSDsluCounter, 41 mSDsCounter, 0 mSdLazyCounter, 80 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 82 SdHoareTripleChecker+Valid, 108 SdHoareTripleChecker+Invalid, 84 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 80 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 16:08:58,183 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [82 Valid, 108 Invalid, 84 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 80 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 16:08:58,184 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 247 states. [2022-11-23 16:08:58,223 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 247 to 222. [2022-11-23 16:08:58,224 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 222 states, 156 states have (on average 1.2884615384615385) internal successors, (201), 178 states have internal predecessors, (201), 32 states have call successors, (32), 29 states have call predecessors, (32), 33 states have return successors, (36), 32 states have call predecessors, (36), 32 states have call successors, (36) [2022-11-23 16:08:58,226 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 222 states to 222 states and 269 transitions. [2022-11-23 16:08:58,227 INFO L78 Accepts]: Start accepts. Automaton has 222 states and 269 transitions. Word has length 44 [2022-11-23 16:08:58,227 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:08:58,227 INFO L495 AbstractCegarLoop]: Abstraction has 222 states and 269 transitions. [2022-11-23 16:08:58,228 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 13.0) internal successors, (39), 4 states have internal predecessors, (39), 3 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-23 16:08:58,228 INFO L276 IsEmpty]: Start isEmpty. Operand 222 states and 269 transitions. [2022-11-23 16:08:58,230 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2022-11-23 16:08:58,230 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:08:58,231 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:08:58,231 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-23 16:08:58,231 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:08:58,232 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:08:58,232 INFO L85 PathProgramCache]: Analyzing trace with hash 933952714, now seen corresponding path program 1 times [2022-11-23 16:08:58,232 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:08:58,233 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [397602383] [2022-11-23 16:08:58,233 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:08:58,233 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:08:58,248 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:08:58,460 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 5 proven. 7 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:08:58,461 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:08:58,461 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [397602383] [2022-11-23 16:08:58,461 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [397602383] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 16:08:58,461 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1400679553] [2022-11-23 16:08:58,462 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:08:58,462 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 16:08:58,462 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 16:08:58,467 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 16:08:58,490 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-23 16:08:58,615 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:08:58,619 INFO L263 TraceCheckSpWp]: Trace formula consists of 245 conjuncts, 31 conjunts are in the unsatisfiable core [2022-11-23 16:08:58,626 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 16:08:59,146 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 0 proven. 5 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2022-11-23 16:08:59,147 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 16:08:59,612 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 4 proven. 1 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2022-11-23 16:08:59,612 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1400679553] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 16:08:59,613 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [429649854] [2022-11-23 16:08:59,636 INFO L159 IcfgInterpreter]: Started Sifa with 30 locations of interest [2022-11-23 16:08:59,636 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 16:08:59,641 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 16:08:59,648 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 16:08:59,648 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 16:09:03,856 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 27 for LOIs [2022-11-23 16:09:04,002 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 27 for LOIs [2022-11-23 16:09:04,053 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 16:09:09,835 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3718#(and (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (<= 0 |#NULL.base|) (<= 0 ~systemActive~0) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| 0) (<= |timeShift_isPumpRunning_#res#1| 2147483647) (<= |#NULL.offset| 0) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (<= ~methaneLevelCritical~0 0) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~7#1|) (<= 0 ~head~0.base) (<= |#NULL.base| 0) (<= 0 ~methaneLevelCritical~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~7#1|) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (<= ~head~0.base 0) (<= 0 (+ |timeShift_isPumpRunning_#res#1| 2147483648)) (<= 0 |#NULL.offset|) (<= 0 |#StackHeapBarrier|) (<= ~systemActive~0 1) (= ~cleanupTimeShifts~0 4))' at error location [2022-11-23 16:09:09,835 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 16:09:09,836 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 16:09:09,836 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [6, 8, 10] total 21 [2022-11-23 16:09:09,836 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1807362075] [2022-11-23 16:09:09,837 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 16:09:09,837 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2022-11-23 16:09:09,837 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:09:09,838 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2022-11-23 16:09:09,839 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=318, Invalid=1752, Unknown=0, NotChecked=0, Total=2070 [2022-11-23 16:09:09,840 INFO L87 Difference]: Start difference. First operand 222 states and 269 transitions. Second operand has 21 states, 19 states have (on average 4.7368421052631575) internal successors, (90), 20 states have internal predecessors, (90), 9 states have call successors, (9), 7 states have call predecessors, (9), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-23 16:09:20,709 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:09:20,710 INFO L93 Difference]: Finished difference Result 2640 states and 3730 transitions. [2022-11-23 16:09:20,711 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 197 states. [2022-11-23 16:09:20,712 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 19 states have (on average 4.7368421052631575) internal successors, (90), 20 states have internal predecessors, (90), 9 states have call successors, (9), 7 states have call predecessors, (9), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) Word has length 41 [2022-11-23 16:09:20,712 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:09:20,726 INFO L225 Difference]: With dead ends: 2640 [2022-11-23 16:09:20,726 INFO L226 Difference]: Without dead ends: 2490 [2022-11-23 16:09:20,745 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 354 GetRequests, 130 SyntacticMatches, 0 SemanticMatches, 224 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 21813 ImplicationChecksByTransitivity, 12.0s TimeCoverageRelationStatistics Valid=5653, Invalid=45197, Unknown=0, NotChecked=0, Total=50850 [2022-11-23 16:09:20,746 INFO L413 NwaCegarLoop]: 162 mSDtfsCounter, 2582 mSDsluCounter, 1154 mSDsCounter, 0 mSdLazyCounter, 3929 mSolverCounterSat, 2398 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2596 SdHoareTripleChecker+Valid, 1316 SdHoareTripleChecker+Invalid, 6327 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.1s SdHoareTripleChecker+Time, 2398 IncrementalHoareTripleChecker+Valid, 3929 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.3s IncrementalHoareTripleChecker+Time [2022-11-23 16:09:20,747 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [2596 Valid, 1316 Invalid, 6327 Unknown, 0 Unchecked, 0.1s Time], IncrementalHoareTripleChecker [2398 Valid, 3929 Invalid, 0 Unknown, 0 Unchecked, 4.3s Time] [2022-11-23 16:09:20,750 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2490 states. [2022-11-23 16:09:21,000 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2490 to 1715. [2022-11-23 16:09:21,007 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1715 states, 1262 states have (on average 1.3003169572107764) internal successors, (1641), 1361 states have internal predecessors, (1641), 211 states have call successors, (211), 199 states have call predecessors, (211), 241 states have return successors, (290), 232 states have call predecessors, (290), 211 states have call successors, (290) [2022-11-23 16:09:21,018 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1715 states to 1715 states and 2142 transitions. [2022-11-23 16:09:21,020 INFO L78 Accepts]: Start accepts. Automaton has 1715 states and 2142 transitions. Word has length 41 [2022-11-23 16:09:21,023 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:09:21,024 INFO L495 AbstractCegarLoop]: Abstraction has 1715 states and 2142 transitions. [2022-11-23 16:09:21,024 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 19 states have (on average 4.7368421052631575) internal successors, (90), 20 states have internal predecessors, (90), 9 states have call successors, (9), 7 states have call predecessors, (9), 5 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2022-11-23 16:09:21,024 INFO L276 IsEmpty]: Start isEmpty. Operand 1715 states and 2142 transitions. [2022-11-23 16:09:21,035 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2022-11-23 16:09:21,035 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:09:21,036 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:09:21,049 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-23 16:09:21,243 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable6 [2022-11-23 16:09:21,244 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:09:21,245 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:09:21,245 INFO L85 PathProgramCache]: Analyzing trace with hash -1625036378, now seen corresponding path program 1 times [2022-11-23 16:09:21,245 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:09:21,245 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1044378416] [2022-11-23 16:09:21,245 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:09:21,246 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:09:21,264 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:09:21,566 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:09:21,566 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:09:21,567 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1044378416] [2022-11-23 16:09:21,567 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1044378416] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:09:21,567 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 16:09:21,567 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2022-11-23 16:09:21,567 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [693132791] [2022-11-23 16:09:21,568 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:09:21,569 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-23 16:09:21,569 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:09:21,570 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-23 16:09:21,570 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2022-11-23 16:09:21,570 INFO L87 Difference]: Start difference. First operand 1715 states and 2142 transitions. Second operand has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-23 16:09:22,186 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:09:22,186 INFO L93 Difference]: Finished difference Result 2706 states and 3425 transitions. [2022-11-23 16:09:22,187 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2022-11-23 16:09:22,187 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 44 [2022-11-23 16:09:22,188 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:09:22,198 INFO L225 Difference]: With dead ends: 2706 [2022-11-23 16:09:22,198 INFO L226 Difference]: Without dead ends: 1611 [2022-11-23 16:09:22,202 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 17 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 24 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=60, Invalid=150, Unknown=0, NotChecked=0, Total=210 [2022-11-23 16:09:22,203 INFO L413 NwaCegarLoop]: 63 mSDtfsCounter, 199 mSDsluCounter, 112 mSDsCounter, 0 mSdLazyCounter, 239 mSolverCounterSat, 102 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 211 SdHoareTripleChecker+Valid, 175 SdHoareTripleChecker+Invalid, 341 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 102 IncrementalHoareTripleChecker+Valid, 239 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-23 16:09:22,204 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [211 Valid, 175 Invalid, 341 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [102 Valid, 239 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-23 16:09:22,207 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1611 states. [2022-11-23 16:09:22,396 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1611 to 1451. [2022-11-23 16:09:22,399 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1451 states, 1071 states have (on average 1.3034547152194211) internal successors, (1396), 1157 states have internal predecessors, (1396), 178 states have call successors, (178), 156 states have call predecessors, (178), 201 states have return successors, (271), 193 states have call predecessors, (271), 178 states have call successors, (271) [2022-11-23 16:09:22,405 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1451 states to 1451 states and 1845 transitions. [2022-11-23 16:09:22,406 INFO L78 Accepts]: Start accepts. Automaton has 1451 states and 1845 transitions. Word has length 44 [2022-11-23 16:09:22,406 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:09:22,406 INFO L495 AbstractCegarLoop]: Abstraction has 1451 states and 1845 transitions. [2022-11-23 16:09:22,407 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 4.111111111111111) internal successors, (37), 8 states have internal predecessors, (37), 3 states have call successors, (4), 3 states have call predecessors, (4), 3 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2022-11-23 16:09:22,407 INFO L276 IsEmpty]: Start isEmpty. Operand 1451 states and 1845 transitions. [2022-11-23 16:09:22,411 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2022-11-23 16:09:22,411 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:09:22,412 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:09:22,412 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2022-11-23 16:09:22,412 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:09:22,413 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:09:22,413 INFO L85 PathProgramCache]: Analyzing trace with hash 2035928039, now seen corresponding path program 1 times [2022-11-23 16:09:22,413 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:09:22,413 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1952428173] [2022-11-23 16:09:22,413 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:09:22,413 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:09:22,437 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:09:23,157 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 0 proven. 14 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:09:23,158 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:09:23,158 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1952428173] [2022-11-23 16:09:23,158 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1952428173] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 16:09:23,158 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1218769165] [2022-11-23 16:09:23,158 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:09:23,158 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 16:09:23,158 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 16:09:23,160 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 16:09:23,191 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-23 16:09:23,272 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:09:23,274 INFO L263 TraceCheckSpWp]: Trace formula consists of 270 conjuncts, 35 conjunts are in the unsatisfiable core [2022-11-23 16:09:23,277 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 16:09:23,638 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 0 proven. 9 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2022-11-23 16:09:23,638 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 16:09:24,135 INFO L134 CoverageAnalysis]: Checked inductivity of 14 backedges. 9 proven. 5 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 16:09:24,135 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1218769165] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 16:09:24,135 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [798157781] [2022-11-23 16:09:24,138 INFO L159 IcfgInterpreter]: Started Sifa with 34 locations of interest [2022-11-23 16:09:24,138 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 16:09:24,138 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 16:09:24,138 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 16:09:24,139 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 16:09:28,730 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 149 for LOIs [2022-11-23 16:09:28,794 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 27 for LOIs [2022-11-23 16:09:29,107 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 24 for LOIs [2022-11-23 16:09:29,152 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 30 for LOIs [2022-11-23 16:09:29,155 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 16:09:35,991 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '17580#(and (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (= ~head~0.offset 0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| 0) (<= |#NULL.offset| 0) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (<= ~methaneLevelCritical~0 0) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~7#1|) (<= 0 ~head~0.base) (<= 0 ~methaneLevelCritical~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~7#1|) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (<= ~head~0.base 0) (<= 0 |#NULL.offset|) (<= 0 |#StackHeapBarrier|) (= ~pumpRunning~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-23 16:09:35,991 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 16:09:35,992 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 16:09:35,992 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [15, 11, 13] total 35 [2022-11-23 16:09:35,992 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1026358306] [2022-11-23 16:09:35,992 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 16:09:35,993 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 35 states [2022-11-23 16:09:35,993 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:09:35,993 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 35 interpolants. [2022-11-23 16:09:35,994 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=384, Invalid=3398, Unknown=0, NotChecked=0, Total=3782 [2022-11-23 16:09:35,995 INFO L87 Difference]: Start difference. First operand 1451 states and 1845 transitions. Second operand has 35 states, 32 states have (on average 3.09375) internal successors, (99), 32 states have internal predecessors, (99), 12 states have call successors, (15), 10 states have call predecessors, (15), 9 states have return successors, (12), 11 states have call predecessors, (12), 10 states have call successors, (12) [2022-11-23 16:09:52,788 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:09:52,788 INFO L93 Difference]: Finished difference Result 10243 states and 14422 transitions. [2022-11-23 16:09:52,789 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 187 states. [2022-11-23 16:09:52,789 INFO L78 Accepts]: Start accepts. Automaton has has 35 states, 32 states have (on average 3.09375) internal successors, (99), 32 states have internal predecessors, (99), 12 states have call successors, (15), 10 states have call predecessors, (15), 9 states have return successors, (12), 11 states have call predecessors, (12), 10 states have call successors, (12) Word has length 47 [2022-11-23 16:09:52,790 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:09:52,841 INFO L225 Difference]: With dead ends: 10243 [2022-11-23 16:09:52,841 INFO L226 Difference]: Without dead ends: 9021 [2022-11-23 16:09:52,857 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 360 GetRequests, 128 SyntacticMatches, 0 SemanticMatches, 232 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 22132 ImplicationChecksByTransitivity, 17.6s TimeCoverageRelationStatistics Valid=6059, Invalid=48463, Unknown=0, NotChecked=0, Total=54522 [2022-11-23 16:09:52,858 INFO L413 NwaCegarLoop]: 151 mSDtfsCounter, 2514 mSDsluCounter, 1629 mSDsCounter, 0 mSdLazyCounter, 5843 mSolverCounterSat, 2227 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2526 SdHoareTripleChecker+Valid, 1780 SdHoareTripleChecker+Invalid, 8070 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.1s SdHoareTripleChecker+Time, 2227 IncrementalHoareTripleChecker+Valid, 5843 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 4.9s IncrementalHoareTripleChecker+Time [2022-11-23 16:09:52,858 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [2526 Valid, 1780 Invalid, 8070 Unknown, 0 Unchecked, 0.1s Time], IncrementalHoareTripleChecker [2227 Valid, 5843 Invalid, 0 Unknown, 0 Unchecked, 4.9s Time] [2022-11-23 16:09:52,867 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 9021 states. [2022-11-23 16:09:53,860 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 9021 to 6823. [2022-11-23 16:09:53,870 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 6823 states, 5070 states have (on average 1.2923076923076924) internal successors, (6552), 5430 states have internal predecessors, (6552), 856 states have call successors, (856), 726 states have call predecessors, (856), 896 states have return successors, (1407), 866 states have call predecessors, (1407), 856 states have call successors, (1407) [2022-11-23 16:09:53,906 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6823 states to 6823 states and 8815 transitions. [2022-11-23 16:09:53,908 INFO L78 Accepts]: Start accepts. Automaton has 6823 states and 8815 transitions. Word has length 47 [2022-11-23 16:09:53,908 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:09:53,908 INFO L495 AbstractCegarLoop]: Abstraction has 6823 states and 8815 transitions. [2022-11-23 16:09:53,909 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 35 states, 32 states have (on average 3.09375) internal successors, (99), 32 states have internal predecessors, (99), 12 states have call successors, (15), 10 states have call predecessors, (15), 9 states have return successors, (12), 11 states have call predecessors, (12), 10 states have call successors, (12) [2022-11-23 16:09:53,909 INFO L276 IsEmpty]: Start isEmpty. Operand 6823 states and 8815 transitions. [2022-11-23 16:09:53,915 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2022-11-23 16:09:53,915 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:09:53,915 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:09:53,928 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-23 16:09:54,121 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 16:09:54,122 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:09:54,122 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:09:54,122 INFO L85 PathProgramCache]: Analyzing trace with hash 1708179587, now seen corresponding path program 1 times [2022-11-23 16:09:54,122 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:09:54,122 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [834376911] [2022-11-23 16:09:54,123 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:09:54,123 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:09:54,138 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:09:55,291 INFO L134 CoverageAnalysis]: Checked inductivity of 40 backedges. 0 proven. 39 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-23 16:09:55,291 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:09:55,291 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [834376911] [2022-11-23 16:09:55,292 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [834376911] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 16:09:55,292 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [558603377] [2022-11-23 16:09:55,292 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:09:55,292 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 16:09:55,292 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 16:09:55,294 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 16:09:55,324 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-23 16:09:55,394 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:09:55,396 INFO L263 TraceCheckSpWp]: Trace formula consists of 322 conjuncts, 26 conjunts are in the unsatisfiable core [2022-11-23 16:09:55,398 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 16:09:55,540 INFO L134 CoverageAnalysis]: Checked inductivity of 40 backedges. 27 proven. 2 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-11-23 16:09:55,540 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 16:09:55,767 INFO L134 CoverageAnalysis]: Checked inductivity of 40 backedges. 27 proven. 2 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-11-23 16:09:55,767 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [558603377] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 16:09:55,767 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1078080068] [2022-11-23 16:09:55,771 INFO L159 IcfgInterpreter]: Started Sifa with 37 locations of interest [2022-11-23 16:09:55,772 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 16:09:55,773 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 16:09:55,773 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 16:09:55,773 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 16:09:58,227 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 29 for LOIs [2022-11-23 16:09:58,231 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 43 for LOIs [2022-11-23 16:09:58,532 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 27 for LOIs [2022-11-23 16:09:58,558 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 32 for LOIs [2022-11-23 16:09:58,562 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 16:10:03,582 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '44827#(and (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (<= 0 |#NULL.base|) (<= 0 ~systemActive~0) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| 0) (<= |timeShift_isPumpRunning_#res#1| 2147483647) (<= |#NULL.offset| 0) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (<= ~methaneLevelCritical~0 0) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~7#1|) (<= 0 ~head~0.base) (<= |#NULL.base| 0) (<= 0 ~methaneLevelCritical~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~7#1|) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (<= ~head~0.base 0) (<= 0 (+ |timeShift_isPumpRunning_#res#1| 2147483648)) (<= 0 |#NULL.offset|) (<= 0 |#StackHeapBarrier|) (<= ~systemActive~0 1) (= ~cleanupTimeShifts~0 4))' at error location [2022-11-23 16:10:03,582 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 16:10:03,583 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 16:10:03,583 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 7, 7] total 26 [2022-11-23 16:10:03,583 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [114574285] [2022-11-23 16:10:03,583 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 16:10:03,584 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2022-11-23 16:10:03,584 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:10:03,584 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2022-11-23 16:10:03,585 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=309, Invalid=2771, Unknown=0, NotChecked=0, Total=3080 [2022-11-23 16:10:03,585 INFO L87 Difference]: Start difference. First operand 6823 states and 8815 transitions. Second operand has 26 states, 25 states have (on average 4.28) internal successors, (107), 24 states have internal predecessors, (107), 9 states have call successors, (12), 6 states have call predecessors, (12), 8 states have return successors, (11), 9 states have call predecessors, (11), 6 states have call successors, (11) [2022-11-23 16:10:11,661 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:10:11,661 INFO L93 Difference]: Finished difference Result 15374 states and 21076 transitions. [2022-11-23 16:10:11,662 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 107 states. [2022-11-23 16:10:11,662 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 25 states have (on average 4.28) internal successors, (107), 24 states have internal predecessors, (107), 9 states have call successors, (12), 6 states have call predecessors, (12), 8 states have return successors, (11), 9 states have call predecessors, (11), 6 states have call successors, (11) Word has length 64 [2022-11-23 16:10:11,662 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:10:11,727 INFO L225 Difference]: With dead ends: 15374 [2022-11-23 16:10:11,727 INFO L226 Difference]: Without dead ends: 11281 [2022-11-23 16:10:11,752 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 357 GetRequests, 202 SyntacticMatches, 6 SemanticMatches, 149 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 8751 ImplicationChecksByTransitivity, 9.5s TimeCoverageRelationStatistics Valid=2250, Invalid=20400, Unknown=0, NotChecked=0, Total=22650 [2022-11-23 16:10:11,753 INFO L413 NwaCegarLoop]: 110 mSDtfsCounter, 1696 mSDsluCounter, 1009 mSDsCounter, 0 mSdLazyCounter, 3020 mSolverCounterSat, 1052 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1703 SdHoareTripleChecker+Valid, 1119 SdHoareTripleChecker+Invalid, 4072 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1052 IncrementalHoareTripleChecker+Valid, 3020 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.4s IncrementalHoareTripleChecker+Time [2022-11-23 16:10:11,754 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1703 Valid, 1119 Invalid, 4072 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1052 Valid, 3020 Invalid, 0 Unknown, 0 Unchecked, 2.4s Time] [2022-11-23 16:10:11,860 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 11281 states. [2022-11-23 16:10:13,423 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 11281 to 8818. [2022-11-23 16:10:13,439 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8818 states, 6511 states have (on average 1.2732299185992935) internal successors, (8290), 6973 states have internal predecessors, (8290), 1136 states have call successors, (1136), 963 states have call predecessors, (1136), 1170 states have return successors, (1681), 1128 states have call predecessors, (1681), 1136 states have call successors, (1681) [2022-11-23 16:10:13,465 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 8818 states to 8818 states and 11107 transitions. [2022-11-23 16:10:13,467 INFO L78 Accepts]: Start accepts. Automaton has 8818 states and 11107 transitions. Word has length 64 [2022-11-23 16:10:13,469 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:10:13,469 INFO L495 AbstractCegarLoop]: Abstraction has 8818 states and 11107 transitions. [2022-11-23 16:10:13,469 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 25 states have (on average 4.28) internal successors, (107), 24 states have internal predecessors, (107), 9 states have call successors, (12), 6 states have call predecessors, (12), 8 states have return successors, (11), 9 states have call predecessors, (11), 6 states have call successors, (11) [2022-11-23 16:10:13,470 INFO L276 IsEmpty]: Start isEmpty. Operand 8818 states and 11107 transitions. [2022-11-23 16:10:13,477 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2022-11-23 16:10:13,477 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:10:13,478 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:10:13,489 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-23 16:10:13,684 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-11-23 16:10:13,684 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:10:13,685 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:10:13,685 INFO L85 PathProgramCache]: Analyzing trace with hash 128055544, now seen corresponding path program 1 times [2022-11-23 16:10:13,685 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:10:13,685 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1776055173] [2022-11-23 16:10:13,685 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:10:13,685 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:10:13,701 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:10:13,911 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 42 trivial. 0 not checked. [2022-11-23 16:10:13,911 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:10:13,912 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1776055173] [2022-11-23 16:10:13,912 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1776055173] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:10:13,912 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 16:10:13,912 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-11-23 16:10:13,912 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [698080497] [2022-11-23 16:10:13,912 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:10:13,913 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-23 16:10:13,913 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:10:13,913 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-23 16:10:13,913 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2022-11-23 16:10:13,914 INFO L87 Difference]: Start difference. First operand 8818 states and 11107 transitions. Second operand has 5 states, 5 states have (on average 6.8) internal successors, (34), 5 states have internal predecessors, (34), 2 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 2 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 16:10:15,547 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:10:15,548 INFO L93 Difference]: Finished difference Result 10823 states and 13740 transitions. [2022-11-23 16:10:15,548 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2022-11-23 16:10:15,549 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.8) internal successors, (34), 5 states have internal predecessors, (34), 2 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 2 states have call predecessors, (6), 2 states have call successors, (6) Word has length 72 [2022-11-23 16:10:15,550 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:10:15,606 INFO L225 Difference]: With dead ends: 10823 [2022-11-23 16:10:15,607 INFO L226 Difference]: Without dead ends: 9058 [2022-11-23 16:10:15,616 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=18, Invalid=24, Unknown=0, NotChecked=0, Total=42 [2022-11-23 16:10:15,617 INFO L413 NwaCegarLoop]: 48 mSDtfsCounter, 58 mSDsluCounter, 92 mSDsCounter, 0 mSdLazyCounter, 61 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 59 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 72 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 61 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 16:10:15,617 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [59 Valid, 140 Invalid, 72 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 61 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 16:10:15,627 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 9058 states. [2022-11-23 16:10:16,584 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 9058 to 8670. [2022-11-23 16:10:16,599 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8670 states, 6412 states have (on average 1.2702744853399874) internal successors, (8145), 6842 states have internal predecessors, (8145), 1110 states have call successors, (1110), 951 states have call predecessors, (1110), 1147 states have return successors, (1612), 1120 states have call predecessors, (1612), 1110 states have call successors, (1612) [2022-11-23 16:10:16,623 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 8670 states to 8670 states and 10867 transitions. [2022-11-23 16:10:16,624 INFO L78 Accepts]: Start accepts. Automaton has 8670 states and 10867 transitions. Word has length 72 [2022-11-23 16:10:16,625 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:10:16,625 INFO L495 AbstractCegarLoop]: Abstraction has 8670 states and 10867 transitions. [2022-11-23 16:10:16,625 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.8) internal successors, (34), 5 states have internal predecessors, (34), 2 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 2 states have call predecessors, (6), 2 states have call successors, (6) [2022-11-23 16:10:16,625 INFO L276 IsEmpty]: Start isEmpty. Operand 8670 states and 10867 transitions. [2022-11-23 16:10:16,633 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 78 [2022-11-23 16:10:16,633 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:10:16,633 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:10:16,633 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2022-11-23 16:10:16,634 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:10:16,634 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:10:16,634 INFO L85 PathProgramCache]: Analyzing trace with hash 1876033185, now seen corresponding path program 1 times [2022-11-23 16:10:16,634 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:10:16,634 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [945351047] [2022-11-23 16:10:16,635 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:10:16,635 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:10:16,652 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:10:17,491 INFO L134 CoverageAnalysis]: Checked inductivity of 61 backedges. 30 proven. 19 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2022-11-23 16:10:17,492 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:10:17,492 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [945351047] [2022-11-23 16:10:17,492 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [945351047] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 16:10:17,492 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1531072453] [2022-11-23 16:10:17,492 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:10:17,492 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 16:10:17,492 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 16:10:17,494 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 16:10:17,515 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2022-11-23 16:10:17,594 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:10:17,596 INFO L263 TraceCheckSpWp]: Trace formula consists of 355 conjuncts, 18 conjunts are in the unsatisfiable core [2022-11-23 16:10:17,599 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 16:10:17,708 INFO L134 CoverageAnalysis]: Checked inductivity of 61 backedges. 50 proven. 0 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-11-23 16:10:17,708 INFO L324 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2022-11-23 16:10:17,708 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1531072453] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 16:10:17,709 INFO L184 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2022-11-23 16:10:17,709 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [16] total 19 [2022-11-23 16:10:17,711 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2127519513] [2022-11-23 16:10:17,711 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 16:10:17,712 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-11-23 16:10:17,712 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:10:17,712 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-11-23 16:10:17,712 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=47, Invalid=295, Unknown=0, NotChecked=0, Total=342 [2022-11-23 16:10:17,713 INFO L87 Difference]: Start difference. First operand 8670 states and 10867 transitions. Second operand has 5 states, 5 states have (on average 10.4) internal successors, (52), 5 states have internal predecessors, (52), 3 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-11-23 16:10:18,949 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:10:18,949 INFO L93 Difference]: Finished difference Result 13159 states and 16637 transitions. [2022-11-23 16:10:18,949 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-11-23 16:10:18,949 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 10.4) internal successors, (52), 5 states have internal predecessors, (52), 3 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 77 [2022-11-23 16:10:18,950 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:10:18,975 INFO L225 Difference]: With dead ends: 13159 [2022-11-23 16:10:18,976 INFO L226 Difference]: Without dead ends: 7761 [2022-11-23 16:10:18,988 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 99 GetRequests, 79 SyntacticMatches, 0 SemanticMatches, 20 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 103 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=62, Invalid=400, Unknown=0, NotChecked=0, Total=462 [2022-11-23 16:10:18,989 INFO L413 NwaCegarLoop]: 80 mSDtfsCounter, 67 mSDsluCounter, 174 mSDsCounter, 0 mSdLazyCounter, 140 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 68 SdHoareTripleChecker+Valid, 254 SdHoareTripleChecker+Invalid, 147 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 140 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 16:10:18,989 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [68 Valid, 254 Invalid, 147 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 140 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 16:10:18,997 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 7761 states. [2022-11-23 16:10:19,826 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 7761 to 7606. [2022-11-23 16:10:19,836 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 7606 states, 5676 states have (on average 1.2646229739252994) internal successors, (7178), 6032 states have internal predecessors, (7178), 937 states have call successors, (937), 824 states have call predecessors, (937), 992 states have return successors, (1350), 966 states have call predecessors, (1350), 937 states have call successors, (1350) [2022-11-23 16:10:19,934 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 7606 states to 7606 states and 9465 transitions. [2022-11-23 16:10:19,937 INFO L78 Accepts]: Start accepts. Automaton has 7606 states and 9465 transitions. Word has length 77 [2022-11-23 16:10:19,939 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:10:19,939 INFO L495 AbstractCegarLoop]: Abstraction has 7606 states and 9465 transitions. [2022-11-23 16:10:19,940 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 10.4) internal successors, (52), 5 states have internal predecessors, (52), 3 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2022-11-23 16:10:19,940 INFO L276 IsEmpty]: Start isEmpty. Operand 7606 states and 9465 transitions. [2022-11-23 16:10:19,961 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 91 [2022-11-23 16:10:19,962 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 16:10:19,962 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:10:19,976 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2022-11-23 16:10:20,168 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2022-11-23 16:10:20,168 INFO L420 AbstractCegarLoop]: === Iteration 13 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 16:10:20,169 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 16:10:20,169 INFO L85 PathProgramCache]: Analyzing trace with hash 247591075, now seen corresponding path program 1 times [2022-11-23 16:10:20,169 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 16:10:20,169 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1090891378] [2022-11-23 16:10:20,169 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:10:20,170 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 16:10:20,189 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:10:21,398 INFO L134 CoverageAnalysis]: Checked inductivity of 88 backedges. 6 proven. 59 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2022-11-23 16:10:21,398 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 16:10:21,399 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1090891378] [2022-11-23 16:10:21,399 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1090891378] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 16:10:21,399 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [357935585] [2022-11-23 16:10:21,399 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 16:10:21,399 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 16:10:21,399 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 16:10:21,400 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 16:10:21,423 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2022-11-23 16:10:21,514 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 16:10:21,517 INFO L263 TraceCheckSpWp]: Trace formula consists of 390 conjuncts, 35 conjunts are in the unsatisfiable core [2022-11-23 16:10:21,519 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 16:10:21,740 INFO L134 CoverageAnalysis]: Checked inductivity of 88 backedges. 45 proven. 11 refuted. 0 times theorem prover too weak. 32 trivial. 0 not checked. [2022-11-23 16:10:21,740 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 16:10:22,195 INFO L134 CoverageAnalysis]: Checked inductivity of 88 backedges. 43 proven. 5 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2022-11-23 16:10:22,195 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [357935585] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 16:10:22,195 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1608274936] [2022-11-23 16:10:22,198 INFO L159 IcfgInterpreter]: Started Sifa with 41 locations of interest [2022-11-23 16:10:22,199 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 16:10:22,199 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 16:10:22,199 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 16:10:22,200 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 16:10:26,841 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 150 for LOIs [2022-11-23 16:10:26,877 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 42 for LOIs [2022-11-23 16:10:27,068 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 59 for LOIs [2022-11-23 16:10:27,258 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 41 for LOIs [2022-11-23 16:10:27,265 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 37 for LOIs [2022-11-23 16:10:27,267 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 16:10:34,942 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '145642#(and (= |timeShift_getWaterLevel_~retValue_acc~11#1| ~waterLevel~0) (<= ~methaneLevelCritical~0 1) (<= 0 ~systemActive~0) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1| 0)) (= ~head~0.offset 0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| 0) (<= |timeShift_isPumpRunning_#res#1| 2147483647) (= |timeShift_getWaterLevel_~retValue_acc~11#1| |timeShift_getWaterLevel_#res#1|) (= ~pumpRunning~0 |timeShift_isPumpRunning_~retValue_acc~7#1|) (<= 0 ~methaneLevelCritical~0) (= |timeShift_isPumpRunning_#res#1| |timeShift_isPumpRunning_~retValue_acc~7#1|) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~0#1|) (= ~head~0.base 0) (= |#NULL.offset| 0) (<= 0 (+ |timeShift_isPumpRunning_#res#1| 2147483648)) (<= 0 |#StackHeapBarrier|) (<= ~systemActive~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-23 16:10:34,942 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 16:10:34,942 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 16:10:34,943 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 10, 9] total 30 [2022-11-23 16:10:34,943 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [7413530] [2022-11-23 16:10:34,943 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 16:10:34,943 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 30 states [2022-11-23 16:10:34,944 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 16:10:34,944 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 30 interpolants. [2022-11-23 16:10:34,945 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=358, Invalid=3182, Unknown=0, NotChecked=0, Total=3540 [2022-11-23 16:10:34,945 INFO L87 Difference]: Start difference. First operand 7606 states and 9465 transitions. Second operand has 30 states, 29 states have (on average 4.241379310344827) internal successors, (123), 27 states have internal predecessors, (123), 9 states have call successors, (19), 8 states have call predecessors, (19), 9 states have return successors, (18), 10 states have call predecessors, (18), 7 states have call successors, (18) [2022-11-23 16:10:38,971 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 16:10:38,971 INFO L93 Difference]: Finished difference Result 12447 states and 15660 transitions. [2022-11-23 16:10:38,971 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 75 states. [2022-11-23 16:10:38,972 INFO L78 Accepts]: Start accepts. Automaton has has 30 states, 29 states have (on average 4.241379310344827) internal successors, (123), 27 states have internal predecessors, (123), 9 states have call successors, (19), 8 states have call predecessors, (19), 9 states have return successors, (18), 10 states have call predecessors, (18), 7 states have call successors, (18) Word has length 90 [2022-11-23 16:10:38,972 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 16:10:38,974 INFO L225 Difference]: With dead ends: 12447 [2022-11-23 16:10:38,974 INFO L226 Difference]: Without dead ends: 0 [2022-11-23 16:10:39,003 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 368 GetRequests, 230 SyntacticMatches, 14 SemanticMatches, 124 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6425 ImplicationChecksByTransitivity, 10.0s TimeCoverageRelationStatistics Valid=1847, Invalid=13903, Unknown=0, NotChecked=0, Total=15750 [2022-11-23 16:10:39,003 INFO L413 NwaCegarLoop]: 44 mSDtfsCounter, 758 mSDsluCounter, 511 mSDsCounter, 0 mSdLazyCounter, 1529 mSolverCounterSat, 476 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 763 SdHoareTripleChecker+Valid, 555 SdHoareTripleChecker+Invalid, 2005 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 476 IncrementalHoareTripleChecker+Valid, 1529 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2022-11-23 16:10:39,004 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [763 Valid, 555 Invalid, 2005 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [476 Valid, 1529 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2022-11-23 16:10:39,004 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-23 16:10:39,005 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-23 16:10:39,005 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 16:10:39,005 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-23 16:10:39,006 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 90 [2022-11-23 16:10:39,007 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 16:10:39,007 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-23 16:10:39,007 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 30 states, 29 states have (on average 4.241379310344827) internal successors, (123), 27 states have internal predecessors, (123), 9 states have call successors, (19), 8 states have call predecessors, (19), 9 states have return successors, (18), 10 states have call predecessors, (18), 7 states have call successors, (18) [2022-11-23 16:10:39,007 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-23 16:10:39,007 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-23 16:10:39,010 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-23 16:10:39,016 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2022-11-23 16:10:39,216 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2022-11-23 16:10:39,219 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-23 16:10:46,222 WARN L233 SmtUtils]: Spent 6.98s on a formula simplification. DAG size of input: 750 DAG size of output: 256 (called from [L 182] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.or) [2022-11-23 16:11:08,953 WARN L233 SmtUtils]: Spent 11.61s on a formula simplification. DAG size of input: 302 DAG size of output: 255 (called from [L 182] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.or) [2022-11-23 16:11:16,493 WARN L233 SmtUtils]: Spent 5.15s on a formula simplification. DAG size of input: 629 DAG size of output: 382 (called from [L 182] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.or) [2022-11-23 16:11:52,026 WARN L233 SmtUtils]: Spent 33.37s on a formula simplification. DAG size of input: 414 DAG size of output: 372 (called from [L 182] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.or) [2022-11-23 16:12:34,515 WARN L233 SmtUtils]: Spent 40.48s on a formula simplification. DAG size of input: 1103 DAG size of output: 594 (called from [L 182] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.or) [2022-11-23 16:12:49,026 WARN L233 SmtUtils]: Spent 10.34s on a formula simplification. DAG size of input: 1132 DAG size of output: 50 (called from [L 149] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.combineInter) [2022-11-23 16:12:59,103 WARN L233 SmtUtils]: Spent 10.03s on a formula simplification. DAG size of input: 1042 DAG size of output: 61 (called from [L 149] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.combineInter) [2022-11-23 16:13:09,057 WARN L233 SmtUtils]: Spent 8.60s on a formula simplification. DAG size of input: 1118 DAG size of output: 29 (called from [L 149] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.combineInter) [2022-11-23 16:13:15,169 WARN L233 SmtUtils]: Spent 6.05s on a formula simplification. DAG size of input: 861 DAG size of output: 45 (called from [L 149] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.combineInter) [2022-11-23 16:13:50,357 WARN L233 SmtUtils]: Spent 8.45s on a formula simplification. DAG size of input: 996 DAG size of output: 46 (called from [L 149] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.combineInter) [2022-11-23 16:13:57,075 WARN L233 SmtUtils]: Spent 6.66s on a formula simplification. DAG size of input: 937 DAG size of output: 34 (called from [L 149] de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.HoareAnnotationComposer.combineInter) [2022-11-23 16:14:05,841 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 714 721) the Hoare annotation is: (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) (not (= 1 ~systemActive~0)) (not (<= 1 ~waterLevel~0)) (= |old(~pumpRunning~0)| 0)) [2022-11-23 16:14:05,843 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 714 721) no Hoare annotation was computed. [2022-11-23 16:14:05,843 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 629 635) no Hoare annotation was computed. [2022-11-23 16:14:05,843 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 629 635) the Hoare annotation is: true [2022-11-23 16:14:05,844 INFO L895 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 935 946) the Hoare annotation is: (let ((.cse8 (= ~pumpRunning~0 1))) (let ((.cse10 (= ~methaneLevelCritical~0 0)) (.cse11 (not .cse8)) (.cse2 (= |old(~methaneLevelCritical~0)| 0))) (let ((.cse0 (not (= ~waterLevel~0 1))) (.cse9 (not .cse2)) (.cse5 (not (= 1 ~systemActive~0))) (.cse6 (and .cse2 .cse11)) (.cse1 (not (= ~pumpRunning~0 0))) (.cse7 (not (<= 2 ~waterLevel~0))) (.cse3 (not .cse10)) (.cse4 (not (= 0 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse0 .cse1 .cse5 .cse2 .cse3) (or .cse6 .cse5 .cse7 .cse3 .cse8) (or .cse9 .cse1 .cse10 .cse7 .cse4) (or .cse0 .cse9 .cse1 .cse10 .cse4) (or .cse9 .cse1 .cse10 .cse5 (not (<= 1 ~waterLevel~0))) (or .cse9 .cse10 .cse5 .cse7 .cse11) (or .cse6 .cse1 .cse7 .cse3 .cse4))))) [2022-11-23 16:14:05,844 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 935 946) no Hoare annotation was computed. [2022-11-23 16:14:05,844 INFO L899 garLoopResultBuilder]: For program point L609-1(lines 608 627) no Hoare annotation was computed. [2022-11-23 16:14:05,844 INFO L899 garLoopResultBuilder]: For program point L671(lines 671 679) no Hoare annotation was computed. [2022-11-23 16:14:05,844 INFO L895 garLoopResultBuilder]: At program point L667(lines 667 684) the Hoare annotation is: (let ((.cse3 (= |old(~pumpRunning~0)| 0))) (let ((.cse1 (not (= 1 ~systemActive~0))) (.cse0 (not .cse3)) (.cse2 (not (<= 1 |old(~waterLevel~0)|)))) (and (or .cse0 .cse1 .cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) (or .cse1 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (or (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse3)) (not (<= 2 |old(~waterLevel~0)|))) (or .cse0 (= ~pumpRunning~0 0) (not (= |old(~waterLevel~0)| 1)) .cse1) (or .cse0 .cse2 (not (= 0 ~systemActive~0)))))) [2022-11-23 16:14:05,845 INFO L895 garLoopResultBuilder]: At program point L677(line 677) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (not (<= 1 |old(~waterLevel~0)|))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2) (or .cse0 .cse2 (not (= 0 ~systemActive~0))) (or .cse1 (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-23 16:14:05,845 INFO L895 garLoopResultBuilder]: At program point L673(line 673) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (not (<= 1 |old(~waterLevel~0)|))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2) (or .cse0 .cse2 (not (= 0 ~systemActive~0))) (or .cse1 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (<= 1 |timeShift_processEnvironment_~tmp~6#1|)) (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-23 16:14:05,845 INFO L899 garLoopResultBuilder]: For program point L570(lines 570 576) no Hoare annotation was computed. [2022-11-23 16:14:05,846 INFO L895 garLoopResultBuilder]: At program point L566(lines 566 579) the Hoare annotation is: (let ((.cse8 (= ~pumpRunning~0 0)) (.cse7 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse1 (and .cse8 .cse7)) (.cse9 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1))) (.cse6 (= |old(~pumpRunning~0)| 0))) (let ((.cse2 (= ~methaneLevelCritical~0 0)) (.cse5 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| ~waterLevel~0)) (.cse4 (not (<= 2 |old(~waterLevel~0)|))) (.cse3 (not (= 1 ~systemActive~0))) (.cse0 (not .cse6)) (.cse12 (not (= |old(~waterLevel~0)| 1))) (.cse13 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| 1)) (.cse10 (or .cse1 (and (not .cse8) (let ((.cse14 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse14) .cse7) (and .cse9 .cse14)))))) (.cse11 (not (= 0 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2 .cse3 (not (<= 1 |old(~waterLevel~0)|))) (or .cse0 .cse3 (not .cse2) (= ~pumpRunning~0 1) .cse4) (or .cse3 (and .cse5 .cse6 .cse7) (and .cse8 .cse5 .cse9 (<= 1 |timeShift_processEnvironment_~tmp~6#1|)) .cse4) (or .cse0 (and .cse5 .cse10 .cse7) .cse11 .cse4) (or .cse0 .cse12 .cse3 (and .cse8 .cse13 (= ~waterLevel~0 1))) (or .cse0 .cse12 (and .cse13 .cse10 (<= |old(~waterLevel~0)| ~waterLevel~0)) .cse11))))) [2022-11-23 16:14:05,846 INFO L895 garLoopResultBuilder]: At program point L566-1(lines 558 582) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 0)) (.cse6 (= |timeShift___utac_acc__Specification4_spec__1_~tmp~4#1| ~waterLevel~0)) (.cse8 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse5 (= |old(~pumpRunning~0)| 0))) (let ((.cse2 (= ~methaneLevelCritical~0 0)) (.cse7 (not (<= 2 |old(~waterLevel~0)|))) (.cse3 (not (= 1 ~systemActive~0))) (.cse0 (not .cse5)) (.cse4 (not (<= 1 |old(~waterLevel~0)|))) (.cse9 (and .cse1 .cse6 .cse8))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse3 .cse5 (and .cse1 .cse6 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (<= 1 |timeShift_processEnvironment_~tmp~6#1|)) .cse7) (or .cse0 .cse3 (not .cse2) (= ~pumpRunning~0 1) .cse7) (or .cse0 (and .cse6 (not (= |old(~waterLevel~0)| 1)) .cse8) .cse3 .cse4 .cse9) (or .cse0 .cse4 (not (= 0 ~systemActive~0)) .cse9)))) [2022-11-23 16:14:05,846 INFO L895 garLoopResultBuilder]: At program point L682(line 682) the Hoare annotation is: (let ((.cse3 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not .cse3)) (.cse2 (not (<= 1 |old(~waterLevel~0)|))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse1 .cse2) (or .cse0 .cse2 (not (= 0 ~systemActive~0))) (or .cse1 .cse3 (not (<= 2 |old(~waterLevel~0)|)))))) [2022-11-23 16:14:05,847 INFO L895 garLoopResultBuilder]: At program point L682-1(lines 663 687) the Hoare annotation is: (let ((.cse6 (= |old(~pumpRunning~0)| 0))) (let ((.cse5 (not (<= 1 |old(~waterLevel~0)|))) (.cse1 (= ~pumpRunning~0 0)) (.cse0 (not .cse6)) (.cse4 (not (= 1 ~systemActive~0))) (.cse3 (= ~methaneLevelCritical~0 0)) (.cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (not (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 (and .cse1 .cse2) .cse3 .cse4 .cse5) (or .cse0 .cse5 (not (= 0 ~systemActive~0))) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse4 (and .cse1 (= ~waterLevel~0 1))) (or .cse4 .cse6 (and .cse1 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (<= 1 |timeShift_processEnvironment_~tmp~6#1|)) .cse7) (or .cse0 .cse4 (not .cse3) (and .cse2 (= ~pumpRunning~0 1)) .cse7)))) [2022-11-23 16:14:05,847 INFO L895 garLoopResultBuilder]: At program point L616-1(lines 616 622) the Hoare annotation is: (let ((.cse6 (= |old(~pumpRunning~0)| 0)) (.cse5 (= ~pumpRunning~0 0)) (.cse8 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse1 (and .cse5 .cse8)) (.cse4 (not (<= 1 |old(~waterLevel~0)|))) (.cse0 (not .cse6)) (.cse3 (not (= 1 ~systemActive~0))) (.cse2 (= ~methaneLevelCritical~0 0)) (.cse7 (not (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse3 (and .cse5 (= ~waterLevel~0 1))) (or .cse0 .cse1 .cse4 (not (= 0 ~systemActive~0))) (or .cse3 .cse6 (and .cse5 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (<= 1 |timeShift_processEnvironment_~tmp~6#1|)) .cse7) (or .cse0 .cse3 (not .cse2) (and .cse8 (= ~pumpRunning~0 1)) .cse7)))) [2022-11-23 16:14:05,847 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 605 628) the Hoare annotation is: (let ((.cse1 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (not (<= 1 |old(~waterLevel~0)|))) (.cse2 (not (= 1 ~systemActive~0))) (.cse4 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse1))) (and (or .cse0 (and (= ~pumpRunning~0 0) .cse1) .cse2 .cse3) (or .cse0 .cse3 .cse4 (not (= 0 ~systemActive~0))) (or .cse2 .cse4 (not (<= 2 |old(~waterLevel~0)|)))))) [2022-11-23 16:14:05,847 INFO L895 garLoopResultBuilder]: At program point L588(line 588) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (not (<= 1 |old(~waterLevel~0)|))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2) (or .cse0 .cse2 (not (= 0 ~systemActive~0))) (or .cse1 (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-23 16:14:05,848 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 605 628) no Hoare annotation was computed. [2022-11-23 16:14:05,848 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 588) no Hoare annotation was computed. [2022-11-23 16:14:05,848 INFO L902 garLoopResultBuilder]: At program point L96(line 96) the Hoare annotation is: true [2022-11-23 16:14:05,848 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 90 119) no Hoare annotation was computed. [2022-11-23 16:14:05,849 INFO L899 garLoopResultBuilder]: For program point L96-1(line 96) no Hoare annotation was computed. [2022-11-23 16:14:05,849 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 90 119) the Hoare annotation is: true [2022-11-23 16:14:05,849 INFO L902 garLoopResultBuilder]: At program point L115(lines 90 119) the Hoare annotation is: true [2022-11-23 16:14:05,849 INFO L899 garLoopResultBuilder]: For program point L111(line 111) no Hoare annotation was computed. [2022-11-23 16:14:05,849 INFO L899 garLoopResultBuilder]: For program point L104(lines 104 108) no Hoare annotation was computed. [2022-11-23 16:14:05,849 INFO L902 garLoopResultBuilder]: At program point L104-1(lines 104 108) the Hoare annotation is: true [2022-11-23 16:14:05,849 INFO L902 garLoopResultBuilder]: At program point L100-2(lines 100 114) the Hoare annotation is: true [2022-11-23 16:14:05,850 INFO L899 garLoopResultBuilder]: For program point L820(lines 820 826) no Hoare annotation was computed. [2022-11-23 16:14:05,850 INFO L895 garLoopResultBuilder]: At program point L820-1(lines 820 826) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_main_~tmp~0#1| 1) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (<= 1 ~waterLevel~0)) [2022-11-23 16:14:05,850 INFO L902 garLoopResultBuilder]: At program point L903(lines 840 907) the Hoare annotation is: true [2022-11-23 16:14:05,850 INFO L899 garLoopResultBuilder]: For program point L870(lines 870 876) no Hoare annotation was computed. [2022-11-23 16:14:05,850 INFO L899 garLoopResultBuilder]: For program point L870-1(lines 870 876) no Hoare annotation was computed. [2022-11-23 16:14:05,851 INFO L895 garLoopResultBuilder]: At program point L862(line 862) the Hoare annotation is: (let ((.cse2 (= 1 ~systemActive~0)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~0#1| 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (<= 1 ~waterLevel~0))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse1 (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse2 .cse3) (and .cse0 .cse1 .cse3 .cse4 (= 0 ~systemActive~0)))) [2022-11-23 16:14:05,851 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-23 16:14:05,851 INFO L895 garLoopResultBuilder]: At program point L900(lines 849 901) the Hoare annotation is: false [2022-11-23 16:14:05,851 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-23 16:14:05,851 INFO L899 garLoopResultBuilder]: For program point L888(lines 888 894) no Hoare annotation was computed. [2022-11-23 16:14:05,851 INFO L895 garLoopResultBuilder]: At program point L822(line 822) the Hoare annotation is: (and (not (= ~pumpRunning~0 0)) (= |ULTIMATE.start_main_~tmp~0#1| 1) (<= 2 ~waterLevel~0) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2022-11-23 16:14:05,852 INFO L895 garLoopResultBuilder]: At program point L888-2(lines 880 895) the Hoare annotation is: (let ((.cse6 (= 0 ~systemActive~0))) (let ((.cse4 (= ~pumpRunning~0 0)) (.cse0 (= |ULTIMATE.start_main_~tmp~0#1| 1)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse5 (<= 1 ~waterLevel~0)) (.cse3 (not .cse6))) (or (and .cse0 (<= 2 ~waterLevel~0) .cse1 .cse2 .cse3) (and .cse4 .cse0 .cse2 .cse5 .cse6) (and .cse4 .cse0 .cse1 .cse2 .cse5 .cse3)))) [2022-11-23 16:14:05,852 INFO L899 garLoopResultBuilder]: For program point L851(lines 850 899) no Hoare annotation was computed. [2022-11-23 16:14:05,852 INFO L895 garLoopResultBuilder]: At program point L880(lines 880 895) the Hoare annotation is: (let ((.cse2 (= 1 ~systemActive~0)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~0#1| 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 .cse2 .cse3 (= ~waterLevel~0 1)) (and .cse1 (<= 2 ~waterLevel~0) .cse2 .cse3) (and .cse0 .cse1 .cse3 (<= 1 ~waterLevel~0) (= 0 ~systemActive~0)))) [2022-11-23 16:14:05,852 INFO L895 garLoopResultBuilder]: At program point L872(line 872) the Hoare annotation is: (let ((.cse2 (= 1 ~systemActive~0)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~0#1| 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (<= 1 ~waterLevel~0))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse1 (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse2 .cse3) (and .cse0 .cse1 .cse3 .cse4 (= 0 ~systemActive~0)))) [2022-11-23 16:14:05,852 INFO L895 garLoopResultBuilder]: At program point L897(lines 850 899) the Hoare annotation is: (let ((.cse2 (= 1 ~systemActive~0)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~0#1| 1)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (<= 1 ~waterLevel~0))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse1 (or (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 1)) (<= 2 ~waterLevel~0) .cse2 .cse3) (and .cse0 .cse1 .cse3 .cse4 (= 0 ~systemActive~0)))) [2022-11-23 16:14:05,852 INFO L899 garLoopResultBuilder]: For program point L860(lines 860 866) no Hoare annotation was computed. [2022-11-23 16:14:05,852 INFO L899 garLoopResultBuilder]: For program point L860-1(lines 860 866) no Hoare annotation was computed. [2022-11-23 16:14:05,853 INFO L895 garLoopResultBuilder]: At program point L175(lines 175 182) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= ~methaneLevelCritical~0 0) (= |ULTIMATE.start_main_~tmp~0#1| 1) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2022-11-23 16:14:05,853 INFO L902 garLoopResultBuilder]: At program point L175-2(lines 175 182) the Hoare annotation is: true [2022-11-23 16:14:05,853 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 637 661) the Hoare annotation is: (let ((.cse4 (= |old(~pumpRunning~0)| 0))) (let ((.cse1 (= ~pumpRunning~0 0)) (.cse3 (and (not .cse4) (< 0 ~waterLevel~0))) (.cse2 (not (= 1 ~systemActive~0))) (.cse0 (= ~waterLevel~0 1))) (and (or (not .cse0) .cse1 .cse2 .cse3) (or .cse1 .cse2 (not (<= 2 ~waterLevel~0)) .cse3) (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse2 (and (= ~methaneLevelCritical~0 0) (not (= |old(~pumpRunning~0)| 1))) .cse4 .cse0 (= ~waterLevel~0 0))))) [2022-11-23 16:14:05,853 INFO L895 garLoopResultBuilder]: At program point L651(line 651) the Hoare annotation is: (let ((.cse3 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (= ~waterLevel~0 1)) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (and (not .cse3) (< 0 ~waterLevel~0)))) (and (or (not .cse0) .cse1 (and (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~5#1| 0)) .cse2) (or .cse1 (and (= ~methaneLevelCritical~0 0) (not (= |old(~pumpRunning~0)| 1))) .cse3 .cse0 (= ~waterLevel~0 0)) (or .cse1 (not (<= 2 ~waterLevel~0)) .cse2)))) [2022-11-23 16:14:05,853 INFO L895 garLoopResultBuilder]: At program point L645(lines 645 653) the Hoare annotation is: (let ((.cse4 (= |old(~pumpRunning~0)| 0))) (let ((.cse2 (= ~pumpRunning~0 0)) (.cse3 (and (not .cse4) (< 0 ~waterLevel~0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse0 (= ~waterLevel~0 1))) (and (or (not .cse0) .cse1 (and .cse2 (= |processEnvironment__wrappee__highWaterSensor_~tmp~5#1| 0)) .cse3) (or .cse1 (not (<= 2 ~waterLevel~0)) (and .cse2 (= |processEnvironment__wrappee__highWaterSensor_~tmp~5#1| 1)) .cse3) (or .cse1 (and (= ~methaneLevelCritical~0 0) (not (= |old(~pumpRunning~0)| 1))) .cse4 .cse0 (= ~waterLevel~0 0))))) [2022-11-23 16:14:05,853 INFO L895 garLoopResultBuilder]: At program point L641(lines 641 658) the Hoare annotation is: (let ((.cse4 (= |old(~pumpRunning~0)| 0))) (let ((.cse1 (= ~pumpRunning~0 0)) (.cse3 (and (not .cse4) (< 0 ~waterLevel~0))) (.cse2 (not (= 1 ~systemActive~0))) (.cse0 (= ~waterLevel~0 1))) (and (or (not .cse0) .cse1 .cse2 .cse3) (or .cse1 .cse2 (not (<= 2 ~waterLevel~0)) .cse3) (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse2 (and (= ~methaneLevelCritical~0 0) (not (= |old(~pumpRunning~0)| 1))) .cse4 .cse0 (= ~waterLevel~0 0))))) [2022-11-23 16:14:05,854 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 637 661) no Hoare annotation was computed. [2022-11-23 16:14:05,854 INFO L895 garLoopResultBuilder]: At program point L656(line 656) the Hoare annotation is: (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse0 (not (= 1 ~systemActive~0)))) (and (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (and (= ~methaneLevelCritical~0 0) (not (= |old(~pumpRunning~0)| 1))) .cse1 (= ~waterLevel~0 1) (= ~waterLevel~0 0)) (or (not .cse1) .cse0 (not (<= 1 ~waterLevel~0))))) [2022-11-23 16:14:05,854 INFO L899 garLoopResultBuilder]: For program point L656-1(lines 637 661) no Hoare annotation was computed. [2022-11-23 16:14:05,854 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 923 934) no Hoare annotation was computed. [2022-11-23 16:14:05,854 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 923 934) the Hoare annotation is: (let ((.cse0 (not (= ~pumpRunning~0 0))) (.cse2 (not (<= 1 |old(~waterLevel~0)|))) (.cse1 (not (= 1 ~systemActive~0))) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 .cse2 .cse3 (not (= 0 ~systemActive~0))) (or .cse1 (and (= ~methaneLevelCritical~0 0) (not (= ~pumpRunning~0 1))) .cse3 (not (<= 2 |old(~waterLevel~0)|))))) [2022-11-23 16:14:05,857 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 16:14:05,859 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-23 16:14:05,890 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 23.11 04:14:05 BoogieIcfgContainer [2022-11-23 16:14:05,890 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-23 16:14:05,891 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-23 16:14:05,891 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-23 16:14:05,891 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-23 16:14:05,892 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 04:08:54" (3/4) ... [2022-11-23 16:14:05,895 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-23 16:14:05,900 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-23 16:14:05,900 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-23 16:14:05,901 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-23 16:14:05,901 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-23 16:14:05,901 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-23 16:14:05,901 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 16:14:05,901 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-23 16:14:05,908 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 51 nodes and edges [2022-11-23 16:14:05,909 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 14 nodes and edges [2022-11-23 16:14:05,909 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2022-11-23 16:14:05,910 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-23 16:14:05,910 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-23 16:14:05,936 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && ((!(1 == systemActive) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(2 <= \old(waterLevel))) [2022-11-23 16:14:05,936 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || methaneLevelCritical == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1))) && (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 <= \old(waterLevel))) || !(0 == systemActive))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel + 1) && 1 <= tmp)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || (\old(waterLevel) == waterLevel && pumpRunning == 1)) || !(2 <= \old(waterLevel))) [2022-11-23 16:14:05,937 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) || \old(waterLevel) == waterLevel) && ((!(1 == systemActive) || (pumpRunning == \old(pumpRunning) && (\old(waterLevel) == waterLevel + 1 || \old(pumpRunning) == 0))) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || !(0 == systemActive)) [2022-11-23 16:14:05,937 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || methaneLevelCritical == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel + 1) && 1 <= tmp)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || (\old(waterLevel) == waterLevel && pumpRunning == 1)) || !(2 <= \old(waterLevel))) [2022-11-23 16:14:05,937 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(waterLevel == 1) || pumpRunning == 0) || !(1 == systemActive)) || (!(\old(pumpRunning) == 0) && 0 < waterLevel)) && (((pumpRunning == 0 || !(1 == systemActive)) || !(2 <= waterLevel)) || (!(\old(pumpRunning) == 0) && 0 < waterLevel))) && (((((pumpRunning == \old(pumpRunning) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || \old(pumpRunning) == 0) || waterLevel == 1) || waterLevel == 0) [2022-11-23 16:14:05,938 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || methaneLevelCritical == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || pumpRunning == 1) || !(2 <= \old(waterLevel)))) && (((!(1 == systemActive) || ((tmp == waterLevel && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel)) || (((pumpRunning == 0 && tmp == waterLevel) && \old(waterLevel) == waterLevel + 1) && 1 <= tmp)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || ((tmp == waterLevel && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == 1) && waterLevel == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || ((tmp == 1 && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && \old(waterLevel) <= waterLevel)) || !(0 == systemActive)) [2022-11-23 16:14:05,939 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || methaneLevelCritical == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || (((pumpRunning == 0 && tmp == waterLevel) && \old(waterLevel) == waterLevel + 1) && 1 <= tmp)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || pumpRunning == 1) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || ((tmp == waterLevel && !(\old(waterLevel) == 1)) && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) || ((pumpRunning == 0 && tmp == waterLevel) && \old(waterLevel) == waterLevel))) && (((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || !(0 == systemActive)) || ((pumpRunning == 0 && tmp == waterLevel) && \old(waterLevel) == waterLevel)) [2022-11-23 16:14:05,939 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || !(0 == systemActive))) && (!(1 == systemActive) || !(2 <= \old(waterLevel))) [2022-11-23 16:14:05,940 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(waterLevel == 1) || !(1 == systemActive)) || (pumpRunning == 0 && tmp == 0)) || (!(\old(pumpRunning) == 0) && 0 < waterLevel)) && (((!(1 == systemActive) || !(2 <= waterLevel)) || (pumpRunning == 0 && tmp == 1)) || (!(\old(pumpRunning) == 0) && 0 < waterLevel))) && ((((!(1 == systemActive) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || \old(pumpRunning) == 0) || waterLevel == 1) || waterLevel == 0) [2022-11-23 16:14:05,965 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/witness.graphml [2022-11-23 16:14:05,965 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-23 16:14:05,966 INFO L158 Benchmark]: Toolchain (without parser) took 312590.51ms. Allocated memory was 157.3MB in the beginning and 2.0GB in the end (delta: 1.8GB). Free memory was 100.0MB in the beginning and 760.7MB in the end (delta: -660.6MB). Peak memory consumption was 1.2GB. Max. memory is 16.1GB. [2022-11-23 16:14:05,966 INFO L158 Benchmark]: CDTParser took 0.25ms. Allocated memory is still 111.1MB. Free memory was 65.6MB in the beginning and 65.4MB in the end (delta: 178.3kB). There was no memory consumed. Max. memory is 16.1GB. [2022-11-23 16:14:05,966 INFO L158 Benchmark]: CACSL2BoogieTranslator took 613.56ms. Allocated memory is still 157.3MB. Free memory was 99.7MB in the beginning and 80.8MB in the end (delta: 18.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2022-11-23 16:14:05,967 INFO L158 Benchmark]: Boogie Procedure Inliner took 58.21ms. Allocated memory is still 157.3MB. Free memory was 80.8MB in the beginning and 78.7MB in the end (delta: 2.2MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-23 16:14:05,967 INFO L158 Benchmark]: Boogie Preprocessor took 46.10ms. Allocated memory is still 157.3MB. Free memory was 78.4MB in the beginning and 76.9MB in the end (delta: 1.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-23 16:14:05,967 INFO L158 Benchmark]: RCFGBuilder took 864.61ms. Allocated memory is still 157.3MB. Free memory was 76.9MB in the beginning and 117.6MB in the end (delta: -40.7MB). Peak memory consumption was 22.3MB. Max. memory is 16.1GB. [2022-11-23 16:14:05,968 INFO L158 Benchmark]: TraceAbstraction took 310922.28ms. Allocated memory was 157.3MB in the beginning and 2.0GB in the end (delta: 1.8GB). Free memory was 117.0MB in the beginning and 766.0MB in the end (delta: -649.0MB). Peak memory consumption was 1.2GB. Max. memory is 16.1GB. [2022-11-23 16:14:05,968 INFO L158 Benchmark]: Witness Printer took 74.25ms. Allocated memory is still 2.0GB. Free memory was 766.0MB in the beginning and 760.7MB in the end (delta: 5.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-23 16:14:05,970 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.25ms. Allocated memory is still 111.1MB. Free memory was 65.6MB in the beginning and 65.4MB in the end (delta: 178.3kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 613.56ms. Allocated memory is still 157.3MB. Free memory was 99.7MB in the beginning and 80.8MB in the end (delta: 18.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 58.21ms. Allocated memory is still 157.3MB. Free memory was 80.8MB in the beginning and 78.7MB in the end (delta: 2.2MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 46.10ms. Allocated memory is still 157.3MB. Free memory was 78.4MB in the beginning and 76.9MB in the end (delta: 1.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 864.61ms. Allocated memory is still 157.3MB. Free memory was 76.9MB in the beginning and 117.6MB in the end (delta: -40.7MB). Peak memory consumption was 22.3MB. Max. memory is 16.1GB. * TraceAbstraction took 310922.28ms. Allocated memory was 157.3MB in the beginning and 2.0GB in the end (delta: 1.8GB). Free memory was 117.0MB in the beginning and 766.0MB in the end (delta: -649.0MB). Peak memory consumption was 1.2GB. Max. memory is 16.1GB. * Witness Printer took 74.25ms. Allocated memory is still 2.0GB. Free memory was 766.0MB in the beginning and 760.7MB in the end (delta: 5.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 588]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 59 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 310.8s, OverallIterations: 13, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 45.1s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 206.6s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 8435 SdHoareTripleChecker+Valid, 14.0s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 8363 mSDsluCounter, 6123 SdHoareTripleChecker+Invalid, 11.9s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 5117 mSDsCounter, 6387 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 15319 IncrementalHoareTripleChecker+Invalid, 21706 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 6387 mSolverCounterUnsat, 1006 mSDtfsCounter, 15319 mSolverCounterSat, 0.2s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1596 GetRequests, 788 SyntacticMatches, 20 SemanticMatches, 788 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 59264 ImplicationChecksByTransitivity, 49.7s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=8818occurred in iteration=10, InterpolantAutomatonStates: 625, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 5.4s AutomataMinimizationTime, 13 MinimizatonAttempts, 6227 StatesRemovedByMinimization, 10 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 36 LocationsWithAnnotation, 16013 PreInvPairs, 18899 NumberOfFragments, 1697 HoareAnnotationTreeSize, 16013 FomulaSimplifications, 844246 FormulaSimplificationTreeSizeReduction, 115.6s HoareSimplificationTime, 36 FomulaSimplificationsInter, 4065325 FormulaSimplificationTreeSizeReductionInter, 90.3s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 8.7s InterpolantComputationTime, 880 NumberOfCodeBlocks, 880 NumberOfCodeBlocksAsserted, 18 NumberOfCheckSat, 1100 ConstructedInterpolants, 0 QuantifiedInterpolants, 4814 SizeOfPredicates, 58 NumberOfNonLiveVariables, 1582 ConjunctsInSsa, 145 ConjunctsInUnsatCore, 22 InterpolantComputations, 9 PerfectInterpolantSequences, 484/662 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 840]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 880]: Loop Invariant Derived loop invariant: (((((pumpRunning == 0 && tmp == 1) && 1 == systemActive) && splverifierCounter == 0) && waterLevel == 1) || (((tmp == 1 && 2 <= waterLevel) && 1 == systemActive) && splverifierCounter == 0)) || ((((pumpRunning == 0 && tmp == 1) && splverifierCounter == 0) && 1 <= waterLevel) && 0 == systemActive) - InvariantResult [Line: 641]: Loop Invariant Derived loop invariant: ((((!(waterLevel == 1) || pumpRunning == 0) || !(1 == systemActive)) || (!(\old(pumpRunning) == 0) && 0 < waterLevel)) && (((pumpRunning == 0 || !(1 == systemActive)) || !(2 <= waterLevel)) || (!(\old(pumpRunning) == 0) && 0 < waterLevel))) && (((((pumpRunning == \old(pumpRunning) || !(1 == systemActive)) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || \old(pumpRunning) == 0) || waterLevel == 1) || waterLevel == 0) - InvariantResult [Line: 175]: Loop Invariant Derived loop invariant: (((pumpRunning == 0 && methaneLevelCritical == 0) && tmp == 1) && 1 == systemActive) && waterLevel == 1 - InvariantResult [Line: 849]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 90]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 558]: Loop Invariant Derived loop invariant: (((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || methaneLevelCritical == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || (((pumpRunning == 0 && tmp == waterLevel) && \old(waterLevel) == waterLevel + 1) && 1 <= tmp)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || pumpRunning == 1) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || ((tmp == waterLevel && !(\old(waterLevel) == 1)) && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) || ((pumpRunning == 0 && tmp == waterLevel) && \old(waterLevel) == waterLevel))) && (((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || !(0 == systemActive)) || ((pumpRunning == 0 && tmp == waterLevel) && \old(waterLevel) == waterLevel)) - InvariantResult [Line: 645]: Loop Invariant Derived loop invariant: ((((!(waterLevel == 1) || !(1 == systemActive)) || (pumpRunning == 0 && tmp == 0)) || (!(\old(pumpRunning) == 0) && 0 < waterLevel)) && (((!(1 == systemActive) || !(2 <= waterLevel)) || (pumpRunning == 0 && tmp == 1)) || (!(\old(pumpRunning) == 0) && 0 < waterLevel))) && ((((!(1 == systemActive) || (methaneLevelCritical == 0 && !(\old(pumpRunning) == 1))) || \old(pumpRunning) == 0) || waterLevel == 1) || waterLevel == 0) - InvariantResult [Line: 566]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || methaneLevelCritical == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || pumpRunning == 1) || !(2 <= \old(waterLevel)))) && (((!(1 == systemActive) || ((tmp == waterLevel && \old(pumpRunning) == 0) && \old(waterLevel) == waterLevel)) || (((pumpRunning == 0 && tmp == waterLevel) && \old(waterLevel) == waterLevel + 1) && 1 <= tmp)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || ((tmp == waterLevel && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && \old(waterLevel) == waterLevel)) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || ((pumpRunning == 0 && tmp == 1) && waterLevel == 1))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || ((tmp == 1 && ((pumpRunning == 0 && \old(waterLevel) == waterLevel) || (!(pumpRunning == 0) && ((!(0 < \old(waterLevel)) && \old(waterLevel) == waterLevel) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)))))) && \old(waterLevel) <= waterLevel)) || !(0 == systemActive)) - InvariantResult [Line: 175]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 605]: Loop Invariant Derived loop invariant: ((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(0 == systemActive))) && ((!(1 == systemActive) || (pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel)) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 663]: Loop Invariant Derived loop invariant: (((((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || methaneLevelCritical == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || !(0 == systemActive))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel + 1) && 1 <= tmp)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || (\old(waterLevel) == waterLevel && pumpRunning == 1)) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 850]: Loop Invariant Derived loop invariant: (((((pumpRunning == 0 && tmp == 1) && 1 == systemActive) && splverifierCounter == 0) && 1 <= waterLevel) || ((((tmp == 1 && (!(methaneLevelCritical == 0) || pumpRunning == 1)) && 2 <= waterLevel) && 1 == systemActive) && splverifierCounter == 0)) || ((((pumpRunning == 0 && tmp == 1) && splverifierCounter == 0) && 1 <= waterLevel) && 0 == systemActive) - InvariantResult [Line: 820]: Loop Invariant Derived loop invariant: ((pumpRunning == 0 && tmp == 1) && splverifierCounter == 0) && 1 <= waterLevel - InvariantResult [Line: 588]: Loop Invariant Derived loop invariant: (((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && ((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || !(0 == systemActive))) && (!(1 == systemActive) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 616]: Loop Invariant Derived loop invariant: (((((((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || methaneLevelCritical == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive)) || (pumpRunning == 0 && waterLevel == 1))) && (((!(\old(pumpRunning) == 0) || (pumpRunning == 0 && \old(waterLevel) == waterLevel)) || !(1 <= \old(waterLevel))) || !(0 == systemActive))) && (((!(1 == systemActive) || \old(pumpRunning) == 0) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel + 1) && 1 <= tmp)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(methaneLevelCritical == 0)) || (\old(waterLevel) == waterLevel && pumpRunning == 1)) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 667]: Loop Invariant Derived loop invariant: (((((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(1 <= \old(waterLevel))) || \old(waterLevel) == waterLevel) && ((!(1 == systemActive) || (pumpRunning == \old(pumpRunning) && (\old(waterLevel) == waterLevel + 1 || \old(pumpRunning) == 0))) || !(2 <= \old(waterLevel)))) && (((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(\old(waterLevel) == 1)) || !(1 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(1 <= \old(waterLevel))) || !(0 == systemActive)) - InvariantResult [Line: 100]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2022-11-23 16:14:06,027 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_36d6efb1-aa6d-4a53-9315-7cf2d5d3fbea/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE