./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 4e7fbc69 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash b18268074b12ff6db81668668ee2d33af663d931f7be534d8799200934e1992a --- Real Ultimate output --- [0.001s][warning][os,container] Duplicate cpuset controllers detected. Picking /sys/fs/cgroup/cpuset, skipping /sys/fs/cgroup/cpuset. This is Ultimate 0.2.2-dev-4e7fbc6 [2022-11-23 13:42:08,080 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-11-23 13:42:08,083 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-11-23 13:42:08,104 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-11-23 13:42:08,105 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-11-23 13:42:08,106 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-11-23 13:42:08,107 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-11-23 13:42:08,109 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-11-23 13:42:08,111 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-11-23 13:42:08,112 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-11-23 13:42:08,113 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-11-23 13:42:08,114 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-11-23 13:42:08,114 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-11-23 13:42:08,115 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-11-23 13:42:08,116 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-11-23 13:42:08,118 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-11-23 13:42:08,118 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-11-23 13:42:08,120 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-11-23 13:42:08,121 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-11-23 13:42:08,123 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-11-23 13:42:08,124 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-11-23 13:42:08,126 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-11-23 13:42:08,127 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-11-23 13:42:08,128 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-11-23 13:42:08,131 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-11-23 13:42:08,132 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-11-23 13:42:08,132 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-11-23 13:42:08,133 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-11-23 13:42:08,134 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-11-23 13:42:08,135 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-11-23 13:42:08,135 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-11-23 13:42:08,136 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-11-23 13:42:08,137 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-11-23 13:42:08,137 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-11-23 13:42:08,139 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-11-23 13:42:08,139 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-11-23 13:42:08,140 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-11-23 13:42:08,140 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-11-23 13:42:08,141 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-11-23 13:42:08,142 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-11-23 13:42:08,142 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-11-23 13:42:08,143 INFO L101 SettingsManager]: Beginning loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/config/svcomp-Reach-32bit-Taipan_Default.epf [2022-11-23 13:42:08,171 INFO L113 SettingsManager]: Loading preferences was successful [2022-11-23 13:42:08,181 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-11-23 13:42:08,182 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-11-23 13:42:08,182 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-11-23 13:42:08,183 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-11-23 13:42:08,184 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-11-23 13:42:08,184 INFO L138 SettingsManager]: * User list type=DISABLED [2022-11-23 13:42:08,184 INFO L136 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2022-11-23 13:42:08,185 INFO L138 SettingsManager]: * Explicit value domain=true [2022-11-23 13:42:08,185 INFO L138 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2022-11-23 13:42:08,186 INFO L138 SettingsManager]: * Octagon Domain=false [2022-11-23 13:42:08,186 INFO L138 SettingsManager]: * Abstract domain=CompoundDomain [2022-11-23 13:42:08,187 INFO L138 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2022-11-23 13:42:08,187 INFO L138 SettingsManager]: * Use the RCFG-of-the-future interface=true [2022-11-23 13:42:08,187 INFO L138 SettingsManager]: * Interval Domain=false [2022-11-23 13:42:08,187 INFO L136 SettingsManager]: Preferences of Sifa differ from their defaults: [2022-11-23 13:42:08,188 INFO L138 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2022-11-23 13:42:08,188 INFO L138 SettingsManager]: * Simplification Technique=POLY_PAC [2022-11-23 13:42:08,189 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-11-23 13:42:08,189 INFO L138 SettingsManager]: * sizeof long=4 [2022-11-23 13:42:08,189 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-11-23 13:42:08,189 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-11-23 13:42:08,190 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-11-23 13:42:08,190 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-11-23 13:42:08,190 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-11-23 13:42:08,190 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-11-23 13:42:08,190 INFO L138 SettingsManager]: * sizeof long double=12 [2022-11-23 13:42:08,191 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-11-23 13:42:08,191 INFO L138 SettingsManager]: * Use constant arrays=true [2022-11-23 13:42:08,191 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-11-23 13:42:08,192 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-11-23 13:42:08,192 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-11-23 13:42:08,192 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 13:42:08,193 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-11-23 13:42:08,193 INFO L138 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES [2022-11-23 13:42:08,193 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-11-23 13:42:08,193 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-11-23 13:42:08,193 INFO L138 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2022-11-23 13:42:08,194 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-11-23 13:42:08,194 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-11-23 13:42:08,194 INFO L138 SettingsManager]: * Trace refinement exception blacklist=NONE [2022-11-23 13:42:08,194 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> b18268074b12ff6db81668668ee2d33af663d931f7be534d8799200934e1992a [2022-11-23 13:42:08,445 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-11-23 13:42:08,482 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-11-23 13:42:08,485 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-11-23 13:42:08,486 INFO L271 PluginConnector]: Initializing CDTParser... [2022-11-23 13:42:08,486 INFO L275 PluginConnector]: CDTParser initialized [2022-11-23 13:42:08,488 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/../../sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c [2022-11-23 13:42:11,498 INFO L500 CDTParser]: Created temporary CDT project at NULL [2022-11-23 13:42:11,802 INFO L351 CDTParser]: Found 1 translation units. [2022-11-23 13:42:11,803 INFO L172 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c [2022-11-23 13:42:11,832 INFO L394 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/data/df01a2901/04e3caeca35b43fa85c200face830eb9/FLAGae1078f6e [2022-11-23 13:42:11,847 INFO L402 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/data/df01a2901/04e3caeca35b43fa85c200face830eb9 [2022-11-23 13:42:11,849 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-11-23 13:42:11,851 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-11-23 13:42:11,853 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-11-23 13:42:11,853 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-11-23 13:42:11,857 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-11-23 13:42:11,858 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 01:42:11" (1/1) ... [2022-11-23 13:42:11,859 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@3bc83749 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:11, skipping insertion in model container [2022-11-23 13:42:11,859 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 01:42:11" (1/1) ... [2022-11-23 13:42:11,867 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-11-23 13:42:11,902 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-11-23 13:42:12,113 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c[2897,2910] [2022-11-23 13:42:12,249 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 13:42:12,260 INFO L203 MainTranslator]: Completed pre-run [2022-11-23 13:42:12,280 WARN L237 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c[2897,2910] [2022-11-23 13:42:12,357 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-11-23 13:42:12,383 INFO L208 MainTranslator]: Completed translation [2022-11-23 13:42:12,383 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12 WrapperNode [2022-11-23 13:42:12,384 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-11-23 13:42:12,388 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-11-23 13:42:12,388 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-11-23 13:42:12,388 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-11-23 13:42:12,396 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,414 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,447 INFO L138 Inliner]: procedures = 60, calls = 109, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 243 [2022-11-23 13:42:12,449 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-11-23 13:42:12,450 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-11-23 13:42:12,450 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-11-23 13:42:12,451 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-11-23 13:42:12,460 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,461 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,463 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,464 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,469 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,474 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,488 INFO L185 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,489 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,492 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-11-23 13:42:12,492 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-11-23 13:42:12,493 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-11-23 13:42:12,493 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-11-23 13:42:12,494 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (1/1) ... [2022-11-23 13:42:12,500 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-11-23 13:42:12,513 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:42:12,526 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-11-23 13:42:12,550 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-11-23 13:42:12,574 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-11-23 13:42:12,574 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-11-23 13:42:12,574 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-11-23 13:42:12,575 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-11-23 13:42:12,575 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-11-23 13:42:12,575 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-11-23 13:42:12,575 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-11-23 13:42:12,575 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 13:42:12,575 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 13:42:12,576 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-11-23 13:42:12,576 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-11-23 13:42:12,576 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2022-11-23 13:42:12,576 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2022-11-23 13:42:12,576 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2022-11-23 13:42:12,576 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2022-11-23 13:42:12,577 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2022-11-23 13:42:12,577 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2022-11-23 13:42:12,577 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-11-23 13:42:12,577 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-11-23 13:42:12,577 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-11-23 13:42:12,577 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-11-23 13:42:12,578 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-11-23 13:42:12,578 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-11-23 13:42:12,578 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-11-23 13:42:12,656 INFO L235 CfgBuilder]: Building ICFG [2022-11-23 13:42:12,659 INFO L261 CfgBuilder]: Building CFG for each procedure with an implementation [2022-11-23 13:42:13,040 INFO L276 CfgBuilder]: Performing block encoding [2022-11-23 13:42:13,169 INFO L295 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-11-23 13:42:13,169 INFO L300 CfgBuilder]: Removed 2 assume(true) statements. [2022-11-23 13:42:13,172 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 01:42:13 BoogieIcfgContainer [2022-11-23 13:42:13,172 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-11-23 13:42:13,175 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-11-23 13:42:13,175 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-11-23 13:42:13,179 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-11-23 13:42:13,179 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 23.11 01:42:11" (1/3) ... [2022-11-23 13:42:13,180 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@49babaf8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 01:42:13, skipping insertion in model container [2022-11-23 13:42:13,180 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 01:42:12" (2/3) ... [2022-11-23 13:42:13,181 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@49babaf8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 01:42:13, skipping insertion in model container [2022-11-23 13:42:13,181 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 01:42:13" (3/3) ... [2022-11-23 13:42:13,182 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product63.cil.c [2022-11-23 13:42:13,202 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-11-23 13:42:13,203 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-11-23 13:42:13,273 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-11-23 13:42:13,285 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@5cf0ac94, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2022-11-23 13:42:13,286 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-11-23 13:42:13,290 INFO L276 IsEmpty]: Start isEmpty. Operand has 80 states, 49 states have (on average 1.4285714285714286) internal successors, (70), 60 states have internal predecessors, (70), 19 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 14 states have call predecessors, (19), 19 states have call successors, (19) [2022-11-23 13:42:13,307 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2022-11-23 13:42:13,307 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:13,309 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:13,311 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:13,317 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:13,317 INFO L85 PathProgramCache]: Analyzing trace with hash -1367258911, now seen corresponding path program 1 times [2022-11-23 13:42:13,328 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:13,329 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [860675781] [2022-11-23 13:42:13,329 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:13,330 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:13,452 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:13,535 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-23 13:42:13,536 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:13,536 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [860675781] [2022-11-23 13:42:13,537 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [860675781] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:42:13,537 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:42:13,537 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-11-23 13:42:13,539 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1699800253] [2022-11-23 13:42:13,540 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:42:13,544 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-11-23 13:42:13,545 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:13,596 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-11-23 13:42:13,597 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 13:42:13,600 INFO L87 Difference]: Start difference. First operand has 80 states, 49 states have (on average 1.4285714285714286) internal successors, (70), 60 states have internal predecessors, (70), 19 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 14 states have call predecessors, (19), 19 states have call successors, (19) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-23 13:42:13,721 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:13,722 INFO L93 Difference]: Finished difference Result 158 states and 217 transitions. [2022-11-23 13:42:13,724 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-11-23 13:42:13,725 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2022-11-23 13:42:13,726 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:13,738 INFO L225 Difference]: With dead ends: 158 [2022-11-23 13:42:13,739 INFO L226 Difference]: Without dead ends: 75 [2022-11-23 13:42:13,744 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-11-23 13:42:13,749 INFO L413 NwaCegarLoop]: 87 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 87 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:13,751 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 87 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 13:42:13,769 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 75 states. [2022-11-23 13:42:13,793 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 75 to 75. [2022-11-23 13:42:13,794 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 75 states, 46 states have (on average 1.3478260869565217) internal successors, (62), 56 states have internal predecessors, (62), 19 states have call successors, (19), 10 states have call predecessors, (19), 9 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2022-11-23 13:42:13,797 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 75 states to 75 states and 99 transitions. [2022-11-23 13:42:13,799 INFO L78 Accepts]: Start accepts. Automaton has 75 states and 99 transitions. Word has length 21 [2022-11-23 13:42:13,799 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:13,799 INFO L495 AbstractCegarLoop]: Abstraction has 75 states and 99 transitions. [2022-11-23 13:42:13,799 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-23 13:42:13,800 INFO L276 IsEmpty]: Start isEmpty. Operand 75 states and 99 transitions. [2022-11-23 13:42:13,802 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2022-11-23 13:42:13,802 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:13,802 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:13,802 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-11-23 13:42:13,803 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:13,804 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:13,804 INFO L85 PathProgramCache]: Analyzing trace with hash 735666244, now seen corresponding path program 1 times [2022-11-23 13:42:13,804 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:13,804 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1773625292] [2022-11-23 13:42:13,805 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:13,805 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:13,826 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:13,913 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-23 13:42:13,913 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:13,913 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1773625292] [2022-11-23 13:42:13,913 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1773625292] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:42:13,914 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:42:13,914 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 13:42:13,914 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [858528158] [2022-11-23 13:42:13,914 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:42:13,922 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 13:42:13,922 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:13,923 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 13:42:13,923 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 13:42:13,923 INFO L87 Difference]: Start difference. First operand 75 states and 99 transitions. Second operand has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-23 13:42:13,990 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:13,990 INFO L93 Difference]: Finished difference Result 122 states and 160 transitions. [2022-11-23 13:42:13,992 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 13:42:13,993 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 22 [2022-11-23 13:42:13,993 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:13,994 INFO L225 Difference]: With dead ends: 122 [2022-11-23 13:42:13,994 INFO L226 Difference]: Without dead ends: 67 [2022-11-23 13:42:13,995 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 13:42:13,998 INFO L413 NwaCegarLoop]: 73 mSDtfsCounter, 14 mSDsluCounter, 56 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 129 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:13,998 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 129 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-11-23 13:42:14,001 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 67 states. [2022-11-23 13:42:14,011 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 67 to 67. [2022-11-23 13:42:14,011 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 67 states, 41 states have (on average 1.3658536585365855) internal successors, (56), 51 states have internal predecessors, (56), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 11 states have call predecessors, (16), 16 states have call successors, (16) [2022-11-23 13:42:14,013 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 67 states to 67 states and 88 transitions. [2022-11-23 13:42:14,013 INFO L78 Accepts]: Start accepts. Automaton has 67 states and 88 transitions. Word has length 22 [2022-11-23 13:42:14,013 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:14,013 INFO L495 AbstractCegarLoop]: Abstraction has 67 states and 88 transitions. [2022-11-23 13:42:14,013 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-23 13:42:14,014 INFO L276 IsEmpty]: Start isEmpty. Operand 67 states and 88 transitions. [2022-11-23 13:42:14,016 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2022-11-23 13:42:14,016 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:14,016 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:14,016 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-11-23 13:42:14,016 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:14,017 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:14,017 INFO L85 PathProgramCache]: Analyzing trace with hash 2139523816, now seen corresponding path program 1 times [2022-11-23 13:42:14,017 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:14,018 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1554100071] [2022-11-23 13:42:14,018 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:14,018 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:14,040 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:14,151 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-23 13:42:14,152 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:14,152 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1554100071] [2022-11-23 13:42:14,152 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1554100071] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:42:14,152 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:42:14,152 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-11-23 13:42:14,153 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [620898674] [2022-11-23 13:42:14,153 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:42:14,153 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-11-23 13:42:14,153 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:14,154 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-11-23 13:42:14,154 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 13:42:14,154 INFO L87 Difference]: Start difference. First operand 67 states and 88 transitions. Second operand has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-23 13:42:14,254 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:14,254 INFO L93 Difference]: Finished difference Result 197 states and 261 transitions. [2022-11-23 13:42:14,255 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-11-23 13:42:14,255 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 25 [2022-11-23 13:42:14,256 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:14,257 INFO L225 Difference]: With dead ends: 197 [2022-11-23 13:42:14,258 INFO L226 Difference]: Without dead ends: 132 [2022-11-23 13:42:14,259 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-11-23 13:42:14,260 INFO L413 NwaCegarLoop]: 99 mSDtfsCounter, 73 mSDsluCounter, 71 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 73 SdHoareTripleChecker+Valid, 170 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:14,261 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [73 Valid, 170 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 13:42:14,262 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 132 states. [2022-11-23 13:42:14,284 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 132 to 129. [2022-11-23 13:42:14,284 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 129 states, 78 states have (on average 1.3717948717948718) internal successors, (107), 97 states have internal predecessors, (107), 32 states have call successors, (32), 18 states have call predecessors, (32), 18 states have return successors, (32), 21 states have call predecessors, (32), 32 states have call successors, (32) [2022-11-23 13:42:14,287 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 129 states to 129 states and 171 transitions. [2022-11-23 13:42:14,287 INFO L78 Accepts]: Start accepts. Automaton has 129 states and 171 transitions. Word has length 25 [2022-11-23 13:42:14,287 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:14,288 INFO L495 AbstractCegarLoop]: Abstraction has 129 states and 171 transitions. [2022-11-23 13:42:14,288 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-11-23 13:42:14,288 INFO L276 IsEmpty]: Start isEmpty. Operand 129 states and 171 transitions. [2022-11-23 13:42:14,290 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2022-11-23 13:42:14,290 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:14,290 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:14,290 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-11-23 13:42:14,291 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:14,291 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:14,292 INFO L85 PathProgramCache]: Analyzing trace with hash 671873530, now seen corresponding path program 1 times [2022-11-23 13:42:14,292 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:14,292 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [891053062] [2022-11-23 13:42:14,292 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:14,293 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:14,311 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:14,439 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2022-11-23 13:42:14,440 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:14,440 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [891053062] [2022-11-23 13:42:14,440 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [891053062] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:42:14,440 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:42:14,440 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-11-23 13:42:14,441 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1424681204] [2022-11-23 13:42:14,441 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:42:14,441 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-23 13:42:14,442 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:14,442 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-23 13:42:14,442 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2022-11-23 13:42:14,446 INFO L87 Difference]: Start difference. First operand 129 states and 171 transitions. Second operand has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-23 13:42:14,680 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:14,680 INFO L93 Difference]: Finished difference Result 350 states and 475 transitions. [2022-11-23 13:42:14,681 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-11-23 13:42:14,681 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 28 [2022-11-23 13:42:14,682 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:14,691 INFO L225 Difference]: With dead ends: 350 [2022-11-23 13:42:14,692 INFO L226 Difference]: Without dead ends: 223 [2022-11-23 13:42:14,696 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2022-11-23 13:42:14,700 INFO L413 NwaCegarLoop]: 81 mSDtfsCounter, 46 mSDsluCounter, 263 mSDsCounter, 0 mSdLazyCounter, 134 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 47 SdHoareTripleChecker+Valid, 344 SdHoareTripleChecker+Invalid, 144 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 134 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:14,700 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [47 Valid, 344 Invalid, 144 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 134 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 13:42:14,701 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 223 states. [2022-11-23 13:42:14,746 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 223 to 214. [2022-11-23 13:42:14,746 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 214 states, 137 states have (on average 1.2919708029197081) internal successors, (177), 154 states have internal predecessors, (177), 42 states have call successors, (42), 34 states have call predecessors, (42), 34 states have return successors, (54), 37 states have call predecessors, (54), 42 states have call successors, (54) [2022-11-23 13:42:14,749 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 214 states to 214 states and 273 transitions. [2022-11-23 13:42:14,749 INFO L78 Accepts]: Start accepts. Automaton has 214 states and 273 transitions. Word has length 28 [2022-11-23 13:42:14,750 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:14,750 INFO L495 AbstractCegarLoop]: Abstraction has 214 states and 273 transitions. [2022-11-23 13:42:14,750 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2022-11-23 13:42:14,750 INFO L276 IsEmpty]: Start isEmpty. Operand 214 states and 273 transitions. [2022-11-23 13:42:14,752 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 43 [2022-11-23 13:42:14,752 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:14,752 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:14,752 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-11-23 13:42:14,753 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:14,753 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:14,753 INFO L85 PathProgramCache]: Analyzing trace with hash -802916337, now seen corresponding path program 1 times [2022-11-23 13:42:14,754 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:14,754 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1830023104] [2022-11-23 13:42:14,754 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:14,754 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:14,773 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:15,112 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-23 13:42:15,113 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:15,113 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1830023104] [2022-11-23 13:42:15,114 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1830023104] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:42:15,114 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:42:15,114 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-11-23 13:42:15,114 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [311756766] [2022-11-23 13:42:15,114 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:42:15,115 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-11-23 13:42:15,115 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:15,115 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-11-23 13:42:15,115 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2022-11-23 13:42:15,116 INFO L87 Difference]: Start difference. First operand 214 states and 273 transitions. Second operand has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-23 13:42:15,416 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:15,416 INFO L93 Difference]: Finished difference Result 622 states and 794 transitions. [2022-11-23 13:42:15,417 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-11-23 13:42:15,417 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) Word has length 42 [2022-11-23 13:42:15,417 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:15,423 INFO L225 Difference]: With dead ends: 622 [2022-11-23 13:42:15,423 INFO L226 Difference]: Without dead ends: 410 [2022-11-23 13:42:15,424 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2022-11-23 13:42:15,427 INFO L413 NwaCegarLoop]: 115 mSDtfsCounter, 103 mSDsluCounter, 257 mSDsCounter, 0 mSdLazyCounter, 192 mSolverCounterSat, 12 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 104 SdHoareTripleChecker+Valid, 372 SdHoareTripleChecker+Invalid, 204 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 12 IncrementalHoareTripleChecker+Valid, 192 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:15,428 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [104 Valid, 372 Invalid, 204 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [12 Valid, 192 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-11-23 13:42:15,430 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 410 states. [2022-11-23 13:42:15,497 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 410 to 400. [2022-11-23 13:42:15,500 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 400 states, 259 states have (on average 1.277992277992278) internal successors, (331), 287 states have internal predecessors, (331), 75 states have call successors, (75), 63 states have call predecessors, (75), 65 states have return successors, (99), 68 states have call predecessors, (99), 75 states have call successors, (99) [2022-11-23 13:42:15,506 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 400 states to 400 states and 505 transitions. [2022-11-23 13:42:15,506 INFO L78 Accepts]: Start accepts. Automaton has 400 states and 505 transitions. Word has length 42 [2022-11-23 13:42:15,507 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:15,507 INFO L495 AbstractCegarLoop]: Abstraction has 400 states and 505 transitions. [2022-11-23 13:42:15,507 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2022-11-23 13:42:15,507 INFO L276 IsEmpty]: Start isEmpty. Operand 400 states and 505 transitions. [2022-11-23 13:42:15,516 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 46 [2022-11-23 13:42:15,516 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:15,517 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:15,517 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-11-23 13:42:15,519 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:15,520 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:15,520 INFO L85 PathProgramCache]: Analyzing trace with hash 258075070, now seen corresponding path program 1 times [2022-11-23 13:42:15,520 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:15,520 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [724719747] [2022-11-23 13:42:15,520 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:15,520 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:15,558 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:15,950 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-23 13:42:15,951 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:15,951 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [724719747] [2022-11-23 13:42:15,951 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [724719747] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:42:15,951 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:42:15,951 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-11-23 13:42:15,952 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [531368250] [2022-11-23 13:42:15,952 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:42:15,952 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-11-23 13:42:15,953 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:15,953 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-11-23 13:42:15,954 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2022-11-23 13:42:15,955 INFO L87 Difference]: Start difference. First operand 400 states and 505 transitions. Second operand has 8 states, 7 states have (on average 4.428571428571429) internal successors, (31), 7 states have internal predecessors, (31), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) [2022-11-23 13:42:16,614 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:16,615 INFO L93 Difference]: Finished difference Result 944 states and 1217 transitions. [2022-11-23 13:42:16,615 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2022-11-23 13:42:16,616 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 4.428571428571429) internal successors, (31), 7 states have internal predecessors, (31), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) Word has length 45 [2022-11-23 13:42:16,616 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:16,619 INFO L225 Difference]: With dead ends: 944 [2022-11-23 13:42:16,620 INFO L226 Difference]: Without dead ends: 658 [2022-11-23 13:42:16,621 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 30 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=67, Invalid=143, Unknown=0, NotChecked=0, Total=210 [2022-11-23 13:42:16,622 INFO L413 NwaCegarLoop]: 86 mSDtfsCounter, 335 mSDsluCounter, 177 mSDsCounter, 0 mSdLazyCounter, 335 mSolverCounterSat, 144 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 345 SdHoareTripleChecker+Valid, 263 SdHoareTripleChecker+Invalid, 479 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 144 IncrementalHoareTripleChecker+Valid, 335 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:16,623 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [345 Valid, 263 Invalid, 479 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [144 Valid, 335 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2022-11-23 13:42:16,624 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 658 states. [2022-11-23 13:42:16,702 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 658 to 594. [2022-11-23 13:42:16,704 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 594 states, 390 states have (on average 1.2692307692307692) internal successors, (495), 430 states have internal predecessors, (495), 108 states have call successors, (108), 82 states have call predecessors, (108), 95 states have return successors, (147), 107 states have call predecessors, (147), 108 states have call successors, (147) [2022-11-23 13:42:16,707 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 594 states to 594 states and 750 transitions. [2022-11-23 13:42:16,707 INFO L78 Accepts]: Start accepts. Automaton has 594 states and 750 transitions. Word has length 45 [2022-11-23 13:42:16,708 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:16,708 INFO L495 AbstractCegarLoop]: Abstraction has 594 states and 750 transitions. [2022-11-23 13:42:16,708 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 4.428571428571429) internal successors, (31), 7 states have internal predecessors, (31), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) [2022-11-23 13:42:16,709 INFO L276 IsEmpty]: Start isEmpty. Operand 594 states and 750 transitions. [2022-11-23 13:42:16,710 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2022-11-23 13:42:16,711 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:16,711 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:16,711 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-11-23 13:42:16,711 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:16,712 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:16,712 INFO L85 PathProgramCache]: Analyzing trace with hash 964910539, now seen corresponding path program 1 times [2022-11-23 13:42:16,712 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:16,713 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [972201334] [2022-11-23 13:42:16,713 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:16,713 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:16,727 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:16,760 INFO L134 CoverageAnalysis]: Checked inductivity of 20 backedges. 14 proven. 0 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-11-23 13:42:16,760 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:16,760 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [972201334] [2022-11-23 13:42:16,760 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [972201334] provided 1 perfect and 0 imperfect interpolant sequences [2022-11-23 13:42:16,761 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-11-23 13:42:16,761 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-11-23 13:42:16,761 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1526576637] [2022-11-23 13:42:16,761 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-11-23 13:42:16,762 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2022-11-23 13:42:16,762 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:16,762 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2022-11-23 13:42:16,763 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 13:42:16,763 INFO L87 Difference]: Start difference. First operand 594 states and 750 transitions. Second operand has 4 states, 3 states have (on average 15.666666666666666) internal successors, (47), 4 states have internal predecessors, (47), 4 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 4 states have call successors, (8) [2022-11-23 13:42:16,916 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:16,916 INFO L93 Difference]: Finished difference Result 700 states and 884 transitions. [2022-11-23 13:42:16,917 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2022-11-23 13:42:16,917 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 15.666666666666666) internal successors, (47), 4 states have internal predecessors, (47), 4 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 4 states have call successors, (8) Word has length 66 [2022-11-23 13:42:16,917 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:16,919 INFO L225 Difference]: With dead ends: 700 [2022-11-23 13:42:16,919 INFO L226 Difference]: Without dead ends: 287 [2022-11-23 13:42:16,921 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2022-11-23 13:42:16,921 INFO L413 NwaCegarLoop]: 98 mSDtfsCounter, 113 mSDsluCounter, 56 mSDsCounter, 0 mSdLazyCounter, 92 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 113 SdHoareTripleChecker+Valid, 154 SdHoareTripleChecker+Invalid, 94 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 92 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:16,922 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [113 Valid, 154 Invalid, 94 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 92 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-11-23 13:42:16,923 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 287 states. [2022-11-23 13:42:16,957 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 287 to 287. [2022-11-23 13:42:16,958 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 287 states, 189 states have (on average 1.2222222222222223) internal successors, (231), 207 states have internal predecessors, (231), 51 states have call successors, (51), 39 states have call predecessors, (51), 46 states have return successors, (70), 52 states have call predecessors, (70), 51 states have call successors, (70) [2022-11-23 13:42:16,960 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 287 states to 287 states and 352 transitions. [2022-11-23 13:42:16,960 INFO L78 Accepts]: Start accepts. Automaton has 287 states and 352 transitions. Word has length 66 [2022-11-23 13:42:16,960 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:16,961 INFO L495 AbstractCegarLoop]: Abstraction has 287 states and 352 transitions. [2022-11-23 13:42:16,961 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 15.666666666666666) internal successors, (47), 4 states have internal predecessors, (47), 4 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 4 states have call successors, (8) [2022-11-23 13:42:16,961 INFO L276 IsEmpty]: Start isEmpty. Operand 287 states and 352 transitions. [2022-11-23 13:42:16,962 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 81 [2022-11-23 13:42:16,963 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:16,963 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:16,963 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-11-23 13:42:16,963 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:16,964 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:16,964 INFO L85 PathProgramCache]: Analyzing trace with hash -170410244, now seen corresponding path program 1 times [2022-11-23 13:42:16,964 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:16,965 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2094140740] [2022-11-23 13:42:16,965 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:16,965 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:16,988 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:17,557 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 0 proven. 17 refuted. 0 times theorem prover too weak. 20 trivial. 0 not checked. [2022-11-23 13:42:17,557 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:17,558 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2094140740] [2022-11-23 13:42:17,558 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2094140740] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 13:42:17,558 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [369814546] [2022-11-23 13:42:17,558 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:17,559 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:42:17,559 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:42:17,567 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:42:17,582 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-11-23 13:42:17,690 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:17,708 INFO L263 TraceCheckSpWp]: Trace formula consists of 358 conjuncts, 22 conjunts are in the unsatisfiable core [2022-11-23 13:42:17,715 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:42:18,137 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 36 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-11-23 13:42:18,138 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:42:18,390 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 16 proven. 1 refuted. 0 times theorem prover too weak. 20 trivial. 0 not checked. [2022-11-23 13:42:18,391 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [369814546] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 13:42:18,391 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [727171709] [2022-11-23 13:42:18,413 INFO L159 IcfgInterpreter]: Started Sifa with 46 locations of interest [2022-11-23 13:42:18,413 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:42:18,417 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:42:18,422 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:42:18,423 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:42:22,006 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 52 for LOIs [2022-11-23 13:42:22,017 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 31 for LOIs [2022-11-23 13:42:22,475 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 44 for LOIs [2022-11-23 13:42:22,482 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 26 for LOIs [2022-11-23 13:42:22,539 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 27 for LOIs [2022-11-23 13:42:22,689 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 28 for LOIs [2022-11-23 13:42:22,692 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:42:29,355 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7943#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~0#1|) (= ~head~0.offset 0) (<= 1 ~systemActive~0) (<= |#NULL.offset| 0) (= |old(~pumpRunning~0)| 0) (<= ~methaneLevelCritical~0 0) (<= 0 ~head~0.base) (<= 0 ~methaneLevelCritical~0) (= |old(~waterLevel~0)| ~waterLevel~0) (<= ~head~0.base 0) (<= 2 |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1|) (<= 0 |#NULL.offset|) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| 2)) (= ~switchedOnBeforeTS~0 0) (<= |timeShift_getWaterLevel_~retValue_acc~8#1| 2147483647) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (= ~pumpRunning~0 1) (<= ~systemActive~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0) (= |old(~switchedOnBeforeTS~0)| 0))' at error location [2022-11-23 13:42:29,356 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:42:29,356 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 13:42:29,356 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 6, 6] total 14 [2022-11-23 13:42:29,356 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1045595277] [2022-11-23 13:42:29,356 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 13:42:29,357 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2022-11-23 13:42:29,357 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:29,357 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2022-11-23 13:42:29,358 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=244, Invalid=1918, Unknown=0, NotChecked=0, Total=2162 [2022-11-23 13:42:29,359 INFO L87 Difference]: Start difference. First operand 287 states and 352 transitions. Second operand has 14 states, 13 states have (on average 6.153846153846154) internal successors, (80), 13 states have internal predecessors, (80), 7 states have call successors, (19), 5 states have call predecessors, (19), 5 states have return successors, (18), 6 states have call predecessors, (18), 7 states have call successors, (18) [2022-11-23 13:42:31,224 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:31,224 INFO L93 Difference]: Finished difference Result 812 states and 1029 transitions. [2022-11-23 13:42:31,225 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 34 states. [2022-11-23 13:42:31,225 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 13 states have (on average 6.153846153846154) internal successors, (80), 13 states have internal predecessors, (80), 7 states have call successors, (19), 5 states have call predecessors, (19), 5 states have return successors, (18), 6 states have call predecessors, (18), 7 states have call successors, (18) Word has length 80 [2022-11-23 13:42:31,225 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:31,228 INFO L225 Difference]: With dead ends: 812 [2022-11-23 13:42:31,228 INFO L226 Difference]: Without dead ends: 527 [2022-11-23 13:42:31,231 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 288 GetRequests, 205 SyntacticMatches, 14 SemanticMatches, 69 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2148 ImplicationChecksByTransitivity, 7.6s TimeCoverageRelationStatistics Valid=597, Invalid=4373, Unknown=0, NotChecked=0, Total=4970 [2022-11-23 13:42:31,233 INFO L413 NwaCegarLoop]: 59 mSDtfsCounter, 569 mSDsluCounter, 320 mSDsCounter, 0 mSdLazyCounter, 867 mSolverCounterSat, 408 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 576 SdHoareTripleChecker+Valid, 379 SdHoareTripleChecker+Invalid, 1275 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 408 IncrementalHoareTripleChecker+Valid, 867 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:31,235 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [576 Valid, 379 Invalid, 1275 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [408 Valid, 867 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2022-11-23 13:42:31,236 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 527 states. [2022-11-23 13:42:31,280 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 527 to 471. [2022-11-23 13:42:31,281 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 471 states, 311 states have (on average 1.1961414790996785) internal successors, (372), 343 states have internal predecessors, (372), 78 states have call successors, (78), 62 states have call predecessors, (78), 81 states have return successors, (131), 84 states have call predecessors, (131), 78 states have call successors, (131) [2022-11-23 13:42:31,283 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 471 states to 471 states and 581 transitions. [2022-11-23 13:42:31,283 INFO L78 Accepts]: Start accepts. Automaton has 471 states and 581 transitions. Word has length 80 [2022-11-23 13:42:31,285 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:31,285 INFO L495 AbstractCegarLoop]: Abstraction has 471 states and 581 transitions. [2022-11-23 13:42:31,286 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 13 states have (on average 6.153846153846154) internal successors, (80), 13 states have internal predecessors, (80), 7 states have call successors, (19), 5 states have call predecessors, (19), 5 states have return successors, (18), 6 states have call predecessors, (18), 7 states have call successors, (18) [2022-11-23 13:42:31,286 INFO L276 IsEmpty]: Start isEmpty. Operand 471 states and 581 transitions. [2022-11-23 13:42:31,288 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 85 [2022-11-23 13:42:31,289 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:31,289 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:31,300 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-11-23 13:42:31,494 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:42:31,495 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:31,495 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:31,495 INFO L85 PathProgramCache]: Analyzing trace with hash -1726813961, now seen corresponding path program 1 times [2022-11-23 13:42:31,496 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:31,496 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2012652286] [2022-11-23 13:42:31,496 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:31,496 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:31,516 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:31,609 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 7 proven. 1 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2022-11-23 13:42:31,609 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:31,610 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2012652286] [2022-11-23 13:42:31,610 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2012652286] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 13:42:31,610 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [396007378] [2022-11-23 13:42:31,610 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:31,610 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:42:31,610 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:42:31,611 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:42:31,638 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2022-11-23 13:42:31,721 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:31,726 INFO L263 TraceCheckSpWp]: Trace formula consists of 365 conjuncts, 13 conjunts are in the unsatisfiable core [2022-11-23 13:42:31,728 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:42:31,783 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 20 proven. 1 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2022-11-23 13:42:31,783 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:42:31,906 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 7 proven. 1 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2022-11-23 13:42:31,906 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [396007378] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 13:42:31,906 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [504885259] [2022-11-23 13:42:31,909 INFO L159 IcfgInterpreter]: Started Sifa with 55 locations of interest [2022-11-23 13:42:31,909 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:42:31,909 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:42:31,910 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:42:31,910 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:42:34,963 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 53 for LOIs [2022-11-23 13:42:34,972 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 48 for LOIs [2022-11-23 13:42:35,524 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 20 for LOIs [2022-11-23 13:42:35,526 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 63 for LOIs [2022-11-23 13:42:36,097 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 52 for LOIs [2022-11-23 13:42:36,398 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 58 for LOIs [2022-11-23 13:42:36,412 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 32 for LOIs [2022-11-23 13:42:36,414 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:42:44,558 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10461#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~0#1| 0)) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~0#1|) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (= ~head~0.offset 0) (<= |old(~pumpRunning~0)| 2147483647) (= 1 ~systemActive~0) (<= ~methaneLevelCritical~0 0) (<= 0 ~head~0.base) (<= 0 ~methaneLevelCritical~0) (<= 0 (+ |timeShift___utac_acc__Specification5_spec__3_~tmp___0~0#1| 2147483648)) (<= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~0#1| 2147483647) (<= ~head~0.base 0) (= |#NULL.offset| 0) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| 2)) (= ~switchedOnBeforeTS~0 0) (<= |timeShift_getWaterLevel_~retValue_acc~8#1| 2147483647) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0) (<= 0 (+ |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| 2147483648)))' at error location [2022-11-23 13:42:44,558 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:42:44,559 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 13:42:44,559 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [6, 6, 6] total 9 [2022-11-23 13:42:44,559 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [470521760] [2022-11-23 13:42:44,559 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 13:42:44,560 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-11-23 13:42:44,560 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:44,561 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-11-23 13:42:44,561 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=264, Invalid=2186, Unknown=0, NotChecked=0, Total=2450 [2022-11-23 13:42:44,562 INFO L87 Difference]: Start difference. First operand 471 states and 581 transitions. Second operand has 9 states, 7 states have (on average 8.571428571428571) internal successors, (60), 7 states have internal predecessors, (60), 2 states have call successors, (16), 2 states have call predecessors, (16), 4 states have return successors, (18), 4 states have call predecessors, (18), 2 states have call successors, (18) [2022-11-23 13:42:45,194 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:42:45,194 INFO L93 Difference]: Finished difference Result 941 states and 1189 transitions. [2022-11-23 13:42:45,195 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2022-11-23 13:42:45,195 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 7 states have (on average 8.571428571428571) internal successors, (60), 7 states have internal predecessors, (60), 2 states have call successors, (16), 2 states have call predecessors, (16), 4 states have return successors, (18), 4 states have call predecessors, (18), 2 states have call successors, (18) Word has length 84 [2022-11-23 13:42:45,195 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:42:45,198 INFO L225 Difference]: With dead ends: 941 [2022-11-23 13:42:45,199 INFO L226 Difference]: Without dead ends: 588 [2022-11-23 13:42:45,201 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 271 GetRequests, 207 SyntacticMatches, 5 SemanticMatches, 59 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1385 ImplicationChecksByTransitivity, 8.4s TimeCoverageRelationStatistics Valid=350, Invalid=3310, Unknown=0, NotChecked=0, Total=3660 [2022-11-23 13:42:45,202 INFO L413 NwaCegarLoop]: 144 mSDtfsCounter, 207 mSDsluCounter, 263 mSDsCounter, 0 mSdLazyCounter, 315 mSolverCounterSat, 128 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 209 SdHoareTripleChecker+Valid, 407 SdHoareTripleChecker+Invalid, 443 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 128 IncrementalHoareTripleChecker+Valid, 315 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-11-23 13:42:45,202 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [209 Valid, 407 Invalid, 443 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [128 Valid, 315 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-11-23 13:42:45,203 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 588 states. [2022-11-23 13:42:45,260 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 588 to 548. [2022-11-23 13:42:45,261 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 548 states, 361 states have (on average 1.1772853185595569) internal successors, (425), 400 states have internal predecessors, (425), 93 states have call successors, (93), 77 states have call predecessors, (93), 93 states have return successors, (147), 95 states have call predecessors, (147), 93 states have call successors, (147) [2022-11-23 13:42:45,263 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 548 states to 548 states and 665 transitions. [2022-11-23 13:42:45,264 INFO L78 Accepts]: Start accepts. Automaton has 548 states and 665 transitions. Word has length 84 [2022-11-23 13:42:45,264 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:42:45,264 INFO L495 AbstractCegarLoop]: Abstraction has 548 states and 665 transitions. [2022-11-23 13:42:45,265 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 7 states have (on average 8.571428571428571) internal successors, (60), 7 states have internal predecessors, (60), 2 states have call successors, (16), 2 states have call predecessors, (16), 4 states have return successors, (18), 4 states have call predecessors, (18), 2 states have call successors, (18) [2022-11-23 13:42:45,265 INFO L276 IsEmpty]: Start isEmpty. Operand 548 states and 665 transitions. [2022-11-23 13:42:45,270 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 114 [2022-11-23 13:42:45,271 INFO L187 NwaCegarLoop]: Found error trace [2022-11-23 13:42:45,271 INFO L195 NwaCegarLoop]: trace histogram [5, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:42:45,283 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2022-11-23 13:42:45,477 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:42:45,477 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-11-23 13:42:45,478 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-11-23 13:42:45,478 INFO L85 PathProgramCache]: Analyzing trace with hash 2024548739, now seen corresponding path program 1 times [2022-11-23 13:42:45,478 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2022-11-23 13:42:45,478 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1697488664] [2022-11-23 13:42:45,478 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:45,479 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-11-23 13:42:45,503 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:46,372 INFO L134 CoverageAnalysis]: Checked inductivity of 92 backedges. 16 proven. 45 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2022-11-23 13:42:46,372 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2022-11-23 13:42:46,373 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1697488664] [2022-11-23 13:42:46,373 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1697488664] provided 0 perfect and 1 imperfect interpolant sequences [2022-11-23 13:42:46,373 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [94478273] [2022-11-23 13:42:46,373 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-11-23 13:42:46,373 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:42:46,373 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 [2022-11-23 13:42:46,374 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-11-23 13:42:46,397 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2022-11-23 13:42:46,491 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-11-23 13:42:46,493 INFO L263 TraceCheckSpWp]: Trace formula consists of 462 conjuncts, 34 conjunts are in the unsatisfiable core [2022-11-23 13:42:46,498 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-11-23 13:42:46,961 INFO L134 CoverageAnalysis]: Checked inductivity of 92 backedges. 31 proven. 59 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-11-23 13:42:46,962 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-11-23 13:42:47,860 INFO L134 CoverageAnalysis]: Checked inductivity of 92 backedges. 56 proven. 5 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2022-11-23 13:42:47,861 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [94478273] provided 0 perfect and 2 imperfect interpolant sequences [2022-11-23 13:42:47,861 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [821576647] [2022-11-23 13:42:47,864 INFO L159 IcfgInterpreter]: Started Sifa with 52 locations of interest [2022-11-23 13:42:47,864 INFO L166 IcfgInterpreter]: Building call graph [2022-11-23 13:42:47,864 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2022-11-23 13:42:47,864 INFO L176 IcfgInterpreter]: Starting interpretation [2022-11-23 13:42:47,865 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2022-11-23 13:42:50,666 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 55 for LOIs [2022-11-23 13:42:50,676 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 49 for LOIs [2022-11-23 13:42:51,401 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 41 for LOIs [2022-11-23 13:42:51,408 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 26 for LOIs [2022-11-23 13:42:51,455 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 26 for LOIs [2022-11-23 13:42:51,556 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 58 for LOIs [2022-11-23 13:42:51,569 INFO L180 IcfgInterpreter]: Interpretation finished [2022-11-23 13:42:58,698 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13450#(and (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| |timeShift_getWaterLevel_#res#1|) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~0#1| 0)) (<= 0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~0#1|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| ~waterLevel~0) (<= 0 |old(~pumpRunning~0)|) (<= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~0#1| 1) (= ~head~0.offset 0) (<= 1 ~systemActive~0) (<= |#NULL.offset| 0) (<= |old(~pumpRunning~0)| 0) (<= 2 |old(~waterLevel~0)|) (<= ~methaneLevelCritical~0 0) (<= 0 ~head~0.base) (<= 0 ~methaneLevelCritical~0) (<= ~head~0.base 0) (<= 2 |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1|) (<= 0 |#NULL.offset|) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| 2)) (= ~switchedOnBeforeTS~0 0) (<= |timeShift_getWaterLevel_~retValue_acc~8#1| 2147483647) (<= 0 |#StackHeapBarrier|) (= |timeShift_getWaterLevel_~retValue_acc~8#1| |timeShift_getWaterLevel_#res#1|) (= ~pumpRunning~0 1) (<= ~systemActive~0 1) (= ~cleanupTimeShifts~0 4) (= |#NULL.base| 0))' at error location [2022-11-23 13:42:58,699 WARN L310 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2022-11-23 13:42:58,699 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-11-23 13:42:58,699 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 13, 11] total 32 [2022-11-23 13:42:58,699 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [36376318] [2022-11-23 13:42:58,699 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-11-23 13:42:58,700 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 32 states [2022-11-23 13:42:58,700 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2022-11-23 13:42:58,701 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 32 interpolants. [2022-11-23 13:42:58,702 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=467, Invalid=3955, Unknown=0, NotChecked=0, Total=4422 [2022-11-23 13:42:58,702 INFO L87 Difference]: Start difference. First operand 548 states and 665 transitions. Second operand has 32 states, 30 states have (on average 6.0) internal successors, (180), 31 states have internal predecessors, (180), 19 states have call successors, (42), 9 states have call predecessors, (42), 13 states have return successors, (41), 18 states have call predecessors, (41), 18 states have call successors, (41) [2022-11-23 13:43:03,829 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-11-23 13:43:03,830 INFO L93 Difference]: Finished difference Result 1196 states and 1495 transitions. [2022-11-23 13:43:03,830 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 66 states. [2022-11-23 13:43:03,831 INFO L78 Accepts]: Start accepts. Automaton has has 32 states, 30 states have (on average 6.0) internal successors, (180), 31 states have internal predecessors, (180), 19 states have call successors, (42), 9 states have call predecessors, (42), 13 states have return successors, (41), 18 states have call predecessors, (41), 18 states have call successors, (41) Word has length 113 [2022-11-23 13:43:03,832 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-11-23 13:43:03,832 INFO L225 Difference]: With dead ends: 1196 [2022-11-23 13:43:03,833 INFO L226 Difference]: Without dead ends: 0 [2022-11-23 13:43:03,844 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 455 GetRequests, 318 SyntacticMatches, 9 SemanticMatches, 128 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6857 ImplicationChecksByTransitivity, 10.2s TimeCoverageRelationStatistics Valid=2052, Invalid=14718, Unknown=0, NotChecked=0, Total=16770 [2022-11-23 13:43:03,845 INFO L413 NwaCegarLoop]: 107 mSDtfsCounter, 1579 mSDsluCounter, 981 mSDsCounter, 0 mSdLazyCounter, 2965 mSolverCounterSat, 1191 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1580 SdHoareTripleChecker+Valid, 1088 SdHoareTripleChecker+Invalid, 4156 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1191 IncrementalHoareTripleChecker+Valid, 2965 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.2s IncrementalHoareTripleChecker+Time [2022-11-23 13:43:03,846 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1580 Valid, 1088 Invalid, 4156 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1191 Valid, 2965 Invalid, 0 Unknown, 0 Unchecked, 2.2s Time] [2022-11-23 13:43:03,847 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2022-11-23 13:43:03,847 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2022-11-23 13:43:03,847 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-11-23 13:43:03,847 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2022-11-23 13:43:03,848 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 113 [2022-11-23 13:43:03,848 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-11-23 13:43:03,848 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2022-11-23 13:43:03,848 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 32 states, 30 states have (on average 6.0) internal successors, (180), 31 states have internal predecessors, (180), 19 states have call successors, (42), 9 states have call predecessors, (42), 13 states have return successors, (41), 18 states have call predecessors, (41), 18 states have call successors, (41) [2022-11-23 13:43:03,848 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2022-11-23 13:43:03,849 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2022-11-23 13:43:03,851 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-11-23 13:43:03,858 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2022-11-23 13:43:04,057 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-11-23 13:43:04,059 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2022-11-23 13:43:11,994 INFO L895 garLoopResultBuilder]: At program point deactivatePumpENTRY(lines 466 473) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (not (<= ~waterLevel~0 2)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) (= ~switchedOnBeforeTS~0 0) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2022-11-23 13:43:11,994 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 466 473) no Hoare annotation was computed. [2022-11-23 13:43:11,995 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 356 362) no Hoare annotation was computed. [2022-11-23 13:43:11,995 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 356 362) the Hoare annotation is: true [2022-11-23 13:43:11,995 INFO L895 garLoopResultBuilder]: At program point L409(line 409) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= ~waterLevel~0 2))) (.cse2 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 .cse1 (= ~switchedOnBeforeTS~0 0) .cse2) (or .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse2))) [2022-11-23 13:43:11,995 INFO L899 garLoopResultBuilder]: For program point L409-1(lines 390 414) no Hoare annotation was computed. [2022-11-23 13:43:11,995 INFO L895 garLoopResultBuilder]: At program point L404(line 404) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= ~waterLevel~0 2))) (.cse2 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse2) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse1 .cse2))) [2022-11-23 13:43:11,996 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__methaneQueryENTRY(lines 390 414) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (not (<= ~waterLevel~0 2)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2022-11-23 13:43:11,996 INFO L895 garLoopResultBuilder]: At program point L400(line 400) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= ~waterLevel~0 2))) (.cse2 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse2) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse1 .cse2))) [2022-11-23 13:43:11,996 INFO L899 garLoopResultBuilder]: For program point L398(lines 398 406) no Hoare annotation was computed. [2022-11-23 13:43:11,996 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__methaneQueryEXIT(lines 390 414) no Hoare annotation was computed. [2022-11-23 13:43:11,996 INFO L895 garLoopResultBuilder]: At program point L394(lines 394 411) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (not (<= ~waterLevel~0 2)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2022-11-23 13:43:11,997 INFO L899 garLoopResultBuilder]: For program point isPumpRunningEXIT(lines 485 493) no Hoare annotation was computed. [2022-11-23 13:43:11,997 INFO L902 garLoopResultBuilder]: At program point isPumpRunningENTRY(lines 485 493) the Hoare annotation is: true [2022-11-23 13:43:11,997 INFO L902 garLoopResultBuilder]: At program point changeMethaneLevelENTRY(lines 610 621) the Hoare annotation is: true [2022-11-23 13:43:11,997 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 610 621) no Hoare annotation was computed. [2022-11-23 13:43:11,997 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 222 251) no Hoare annotation was computed. [2022-11-23 13:43:11,997 INFO L902 garLoopResultBuilder]: At program point cleanupENTRY(lines 222 251) the Hoare annotation is: true [2022-11-23 13:43:11,997 INFO L902 garLoopResultBuilder]: At program point L247(lines 222 251) the Hoare annotation is: true [2022-11-23 13:43:11,998 INFO L899 garLoopResultBuilder]: For program point L243(line 243) no Hoare annotation was computed. [2022-11-23 13:43:11,998 INFO L899 garLoopResultBuilder]: For program point L236(lines 236 240) no Hoare annotation was computed. [2022-11-23 13:43:11,998 INFO L902 garLoopResultBuilder]: At program point L236-1(lines 236 240) the Hoare annotation is: true [2022-11-23 13:43:11,998 INFO L902 garLoopResultBuilder]: At program point L232-2(lines 232 246) the Hoare annotation is: true [2022-11-23 13:43:12,000 INFO L902 garLoopResultBuilder]: At program point L228(line 228) the Hoare annotation is: true [2022-11-23 13:43:12,000 INFO L899 garLoopResultBuilder]: For program point L228-1(line 228) no Hoare annotation was computed. [2022-11-23 13:43:12,000 INFO L899 garLoopResultBuilder]: For program point L85(lines 85 91) no Hoare annotation was computed. [2022-11-23 13:43:12,000 INFO L899 garLoopResultBuilder]: For program point L424(lines 424 432) no Hoare annotation was computed. [2022-11-23 13:43:12,000 INFO L899 garLoopResultBuilder]: For program point L420(lines 420 437) no Hoare annotation was computed. [2022-11-23 13:43:12,001 INFO L895 garLoopResultBuilder]: At program point L82(line 82) the Hoare annotation is: (let ((.cse9 (+ ~waterLevel~0 1)) (.cse7 (= ~pumpRunning~0 0))) (let ((.cse11 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse8 (<= |old(~waterLevel~0)| 0)) (.cse12 (not (= |old(~pumpRunning~0)| 0))) (.cse13 (not (= 0 ~systemActive~0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (not .cse7)) (.cse10 (= |old(~waterLevel~0)| .cse9)) (.cse5 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse14 (not (<= |old(~waterLevel~0)| 2))) (.cse6 (not (= ~switchedOnBeforeTS~0 0))) (.cse3 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| ~waterLevel~0)) (.cse15 (= ~waterLevel~0 1)) (.cse16 (not (<= 2 |old(~waterLevel~0)|)))) (and (let ((.cse4 (or (and .cse10 (< 0 |old(~waterLevel~0)|)) .cse11))) (or .cse0 (not (<= |old(~waterLevel~0)| 1)) .cse1 (and .cse2 .cse3 (<= ~waterLevel~0 0) .cse4 .cse5) (and .cse6 .cse7 .cse3 .cse4 (or .cse8 (<= .cse9 |old(~waterLevel~0)|))) (= |old(~switchedOnBeforeTS~0)| 0))) (or .cse12 .cse7 .cse13) (or .cse12 .cse1 .cse14 (and .cse7 .cse3 .cse11 .cse5)) (or .cse0 (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse7 .cse1 (not .cse8)) (or .cse12 (not (= |old(~waterLevel~0)| 1)) .cse15 .cse13) (or .cse12 .cse14 .cse13 .cse16) (or .cse1 (and .cse2 .cse3 .cse10 .cse5) .cse14 (and .cse6 .cse7 .cse3 .cse15) .cse16)))) [2022-11-23 13:43:12,001 INFO L899 garLoopResultBuilder]: For program point L82-1(line 82) no Hoare annotation was computed. [2022-11-23 13:43:12,001 INFO L895 garLoopResultBuilder]: At program point L144(line 144) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= |old(~waterLevel~0)| 2))) (.cse2 (not (= |old(~pumpRunning~0)| 0)))) (and (or (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|)) (not (<= |old(~waterLevel~0)| 1)) .cse0) (or .cse0 .cse1 (not (<= 2 |old(~waterLevel~0)|))) (or .cse2 .cse0 .cse1) (or .cse2 (not (= 0 ~systemActive~0))))) [2022-11-23 13:43:12,002 INFO L895 garLoopResultBuilder]: At program point L343-1(lines 343 349) the Hoare annotation is: (let ((.cse12 (+ ~waterLevel~0 1)) (.cse3 (= ~pumpRunning~0 0))) (let ((.cse8 (not .cse3)) (.cse14 (= |old(~waterLevel~0)| .cse12)) (.cse4 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse10 (not (= ~switchedOnBeforeTS~0 0))) (.cse15 (= ~waterLevel~0 1)) (.cse19 (= 1 ~systemActive~0))) (let ((.cse11 (<= |old(~waterLevel~0)| 0)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse6 (not (= 0 ~systemActive~0))) (.cse7 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse13 (= |old(~switchedOnBeforeTS~0)| 0)) (.cse2 (not .cse19)) (.cse17 (and .cse10 .cse3 .cse19 .cse15)) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse18 (and .cse8 .cse14 .cse19 .cse4)) (.cse5 (not (<= |old(~waterLevel~0)| 2))) (.cse16 (not (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 (and (= 2 ~waterLevel~0) .cse1) .cse2 (and .cse3 .cse1 .cse4) .cse5) (or .cse0 .cse3 .cse6) (let ((.cse9 (or (and .cse14 (< 0 |old(~waterLevel~0)|)) .cse1))) (or .cse7 (not (<= |old(~waterLevel~0)| 1)) .cse2 (and .cse8 (<= ~waterLevel~0 0) .cse9 .cse4) (and .cse10 .cse3 .cse9 (or .cse11 (<= .cse12 |old(~waterLevel~0)|))) .cse13)) (or .cse7 (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse3 .cse2 (not .cse11)) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse15 .cse6) (or .cse0 .cse1 .cse5 .cse6 .cse16) (or .cse7 .cse2 .cse17 .cse18 .cse5 .cse16 .cse13) (or .cse2 .cse17 .cse1 .cse18 .cse5 .cse16))))) [2022-11-23 13:43:12,002 INFO L895 garLoopResultBuilder]: At program point L430(line 430) the Hoare annotation is: (let ((.cse1 (not (= ~pumpRunning~0 0))) (.cse2 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1))) (.cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse4 (not (<= |old(~waterLevel~0)| 2))) (.cse5 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse0 (not (= 1 ~systemActive~0))) (.cse7 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (and .cse1 .cse2 .cse3) .cse4 (not (<= 2 |old(~waterLevel~0)|))) (or .cse5 (and .cse1 (let ((.cse6 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse6) (= |old(~waterLevel~0)| ~waterLevel~0)) (and .cse2 .cse6))) .cse3) .cse0 .cse4) (or .cse7 .cse0 .cse4) (or .cse5 (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (<= |old(~waterLevel~0)| 0))) (or .cse7 (not (= 0 ~systemActive~0))))) [2022-11-23 13:43:12,003 INFO L895 garLoopResultBuilder]: At program point L426(line 426) the Hoare annotation is: (let ((.cse1 (not (= ~pumpRunning~0 0))) (.cse2 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1))) (.cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse4 (not (<= |old(~waterLevel~0)| 2))) (.cse5 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse0 (not (= 1 ~systemActive~0))) (.cse7 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (and .cse1 .cse2 .cse3) .cse4 (not (<= 2 |old(~waterLevel~0)|))) (or .cse5 (and .cse1 (let ((.cse6 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse6) (= |old(~waterLevel~0)| ~waterLevel~0)) (and .cse2 .cse6))) .cse3) .cse0 .cse4) (or .cse7 .cse0 .cse4) (or .cse5 (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (<= |old(~waterLevel~0)| 0))) (or .cse7 (not (= 0 ~systemActive~0))))) [2022-11-23 13:43:12,003 INFO L895 garLoopResultBuilder]: At program point L422(line 422) the Hoare annotation is: (let ((.cse1 (not (= ~pumpRunning~0 0))) (.cse2 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1))) (.cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse4 (not (<= |old(~waterLevel~0)| 2))) (.cse5 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse0 (not (= 1 ~systemActive~0))) (.cse7 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (and .cse1 .cse2 .cse3) .cse4 (not (<= 2 |old(~waterLevel~0)|))) (or .cse5 (and .cse1 (let ((.cse6 (< 0 |old(~waterLevel~0)|))) (or (and (not .cse6) (= |old(~waterLevel~0)| ~waterLevel~0)) (and .cse2 .cse6))) .cse3) .cse0 .cse4) (or .cse7 .cse0 .cse4) (or .cse5 (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (<= |old(~waterLevel~0)| 0))) (or .cse7 (not (= 0 ~systemActive~0))))) [2022-11-23 13:43:12,003 INFO L899 garLoopResultBuilder]: For program point L422-1(line 422) no Hoare annotation was computed. [2022-11-23 13:43:12,003 INFO L895 garLoopResultBuilder]: At program point L67(line 67) the Hoare annotation is: (let ((.cse4 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse5 (not (= 0 ~systemActive~0))) (.cse2 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse4)) (.cse6 (not (<= 2 |old(~waterLevel~0)|))) (.cse3 (not (= |old(~pumpRunning~0)| 0))) (.cse7 (= ~pumpRunning~0 0)) (.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse1 (not (= 1 ~systemActive~0))) (.cse8 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (<= |old(~waterLevel~0)| 1)) .cse1 .cse2) (or .cse3 .cse4 .cse5 .cse6) (or .cse3 .cse5 (and .cse7 (or .cse4 (= ~waterLevel~0 1)))) (or .cse1 .cse2 .cse8 .cse6) (or .cse3 .cse1 .cse8 (and (not (= ~switchedOnBeforeTS~0 0)) .cse7 .cse4) (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse0 .cse1 .cse8 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))))) [2022-11-23 13:43:12,004 INFO L895 garLoopResultBuilder]: At program point L67-1(line 67) the Hoare annotation is: (let ((.cse2 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse3 (= |timeShift___utac_acc__Specification5_spec__2_#t~ret4#1| ~pumpRunning~0))) (let ((.cse6 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse2 .cse3)) (.cse1 (= ~pumpRunning~0 0)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse9 (not (= 0 ~systemActive~0))) (.cse7 (not (<= 2 |old(~waterLevel~0)|))) (.cse8 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse4 (not (= 1 ~systemActive~0))) (.cse5 (not (<= |old(~waterLevel~0)| 2))) (.cse10 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (and (or .cse0 (and .cse1 .cse2 .cse3) .cse4 .cse5) (or .cse6 .cse4 .cse5 .cse7) (or .cse8 (not (<= |old(~waterLevel~0)| 1)) .cse6 .cse4) (or .cse0 .cse9 (and .cse1 (or .cse2 (= ~waterLevel~0 1)))) (or .cse8 .cse4 .cse5 .cse10 .cse7) (or .cse0 .cse2 .cse5 .cse9 .cse7) (or .cse8 .cse4 .cse5 .cse10 (= |old(~switchedOnBeforeTS~0)| 0))))) [2022-11-23 13:43:12,004 INFO L899 garLoopResultBuilder]: For program point L84(lines 84 94) no Hoare annotation was computed. [2022-11-23 13:43:12,004 INFO L895 garLoopResultBuilder]: At program point L435(line 435) the Hoare annotation is: (let ((.cse2 (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0) (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse3 (not (<= |old(~waterLevel~0)| 2))) (.cse0 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse1 .cse2 .cse3 (not (<= 2 |old(~waterLevel~0)|))) (or (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|)) .cse1 .cse3 (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse0 (not (= 0 ~systemActive~0))))) [2022-11-23 13:43:12,004 INFO L895 garLoopResultBuilder]: At program point L435-1(lines 416 440) the Hoare annotation is: (let ((.cse11 (+ ~waterLevel~0 1)) (.cse3 (= ~pumpRunning~0 0))) (let ((.cse7 (not .cse3)) (.cse13 (= |old(~waterLevel~0)| .cse11)) (.cse4 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse9 (not (= ~switchedOnBeforeTS~0 0))) (.cse17 (= 1 ~systemActive~0))) (let ((.cse10 (<= |old(~waterLevel~0)| 0)) (.cse6 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse12 (= |old(~switchedOnBeforeTS~0)| 0)) (.cse2 (not .cse17)) (.cse14 (and .cse9 .cse3 .cse17 (= ~waterLevel~0 1))) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse15 (and .cse7 .cse13 .cse17 .cse4)) (.cse5 (not (<= |old(~waterLevel~0)| 2))) (.cse16 (not (<= 2 |old(~waterLevel~0)|))) (.cse0 (not (= |old(~pumpRunning~0)| 0)))) (and (or .cse0 (and (= 2 ~waterLevel~0) .cse1) .cse2 (and .cse3 .cse1 .cse4) .cse5) (let ((.cse8 (or (and .cse13 (< 0 |old(~waterLevel~0)|)) .cse1))) (or .cse6 (not (<= |old(~waterLevel~0)| 1)) .cse2 (and .cse7 (<= ~waterLevel~0 0) .cse8 .cse4) (and .cse9 .cse3 .cse8 (or .cse10 (<= .cse11 |old(~waterLevel~0)|))) .cse12)) (or .cse6 (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse3 .cse2 (not .cse10)) (or .cse6 .cse2 .cse14 .cse15 .cse5 .cse16 .cse12) (or .cse2 .cse14 .cse1 .cse15 .cse5 .cse16) (or .cse0 (not (= 0 ~systemActive~0))))))) [2022-11-23 13:43:12,004 INFO L899 garLoopResultBuilder]: For program point L80(lines 80 97) no Hoare annotation was computed. [2022-11-23 13:43:12,004 INFO L895 garLoopResultBuilder]: At program point timeShiftENTRY(lines 329 355) the Hoare annotation is: (let ((.cse4 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse5 (not (= 0 ~systemActive~0))) (.cse2 (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse4)) (.cse6 (not (<= 2 |old(~waterLevel~0)|))) (.cse3 (not (= |old(~pumpRunning~0)| 0))) (.cse7 (= ~pumpRunning~0 0)) (.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse1 (not (= 1 ~systemActive~0))) (.cse8 (not (<= |old(~waterLevel~0)| 2)))) (and (or .cse0 (not (<= |old(~waterLevel~0)| 1)) .cse1 .cse2) (or .cse3 .cse4 .cse5 .cse6) (or .cse3 .cse5 (and .cse7 (or .cse4 (= ~waterLevel~0 1)))) (or .cse1 .cse2 .cse8 .cse6) (or .cse3 .cse1 .cse8 (and (not (= ~switchedOnBeforeTS~0 0)) .cse7 .cse4) (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse0 .cse1 .cse8 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))))) [2022-11-23 13:43:12,005 INFO L895 garLoopResultBuilder]: At program point L80-1(lines 72 100) the Hoare annotation is: (let ((.cse12 (= 1 ~systemActive~0)) (.cse16 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse1 (= ~pumpRunning~0 0)) (.cse19 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1))) (.cse5 (< 0 |old(~waterLevel~0)|))) (let ((.cse8 (= |old(~switchedOnBeforeTS~0)| 0)) (.cse6 (and .cse19 .cse5)) (.cse2 (not (= 0 ~systemActive~0))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse14 (not .cse1)) (.cse15 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse10 (not (= ~switchedOnBeforeTS~0 0))) (.cse11 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| ~waterLevel~0)) (.cse9 (= ~waterLevel~0 1)) (.cse7 (not (<= |old(~waterLevel~0)| 2))) (.cse17 (and .cse16 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~0#1| 2))) (.cse18 (not (<= 2 |old(~waterLevel~0)|))) (.cse3 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse4 (not .cse12))) (and (or .cse0 .cse1 .cse2) (or .cse3 .cse4 (not .cse5) .cse6 .cse7 .cse8) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse9 .cse2) (let ((.cse13 (or .cse6 .cse16))) (or .cse3 (not (<= |old(~waterLevel~0)| 1)) (and .cse10 .cse1 .cse11 .cse12 .cse13) .cse4 (and .cse14 .cse11 .cse13 .cse15) .cse8)) (or .cse0 .cse7 .cse2 .cse17 .cse18) (or .cse0 (and .cse1 .cse11 .cse12 .cse16 .cse15) .cse4 (and (<= 2 ~waterLevel~0) .cse16) .cse7) (or .cse4 (and .cse14 .cse11 .cse19 .cse15) (and .cse10 .cse1 .cse11 .cse12 .cse9) .cse7 .cse17 .cse18) (or .cse3 (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse4 (and .cse1 .cse12) (not (<= |old(~waterLevel~0)| 0)))))) [2022-11-23 13:43:12,005 INFO L899 garLoopResultBuilder]: For program point L336-2(lines 332 354) no Hoare annotation was computed. [2022-11-23 13:43:12,005 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 329 355) no Hoare annotation was computed. [2022-11-23 13:43:12,005 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 144) no Hoare annotation was computed. [2022-11-23 13:43:12,005 INFO L899 garLoopResultBuilder]: For program point L572(lines 572 578) no Hoare annotation was computed. [2022-11-23 13:43:12,005 INFO L895 garLoopResultBuilder]: At program point L572-1(lines 572 578) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2022-11-23 13:43:12,005 INFO L899 garLoopResultBuilder]: For program point L184(lines 184 190) no Hoare annotation was computed. [2022-11-23 13:43:12,005 INFO L899 garLoopResultBuilder]: For program point L184-1(lines 184 190) no Hoare annotation was computed. [2022-11-23 13:43:12,006 INFO L895 garLoopResultBuilder]: At program point L209(lines 164 211) the Hoare annotation is: (let ((.cse3 (= ~pumpRunning~0 0)) (.cse2 (<= ~waterLevel~0 1)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1) (and .cse2 .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse3 .cse1 (= 0 ~systemActive~0)) (and .cse3 .cse2 .cse0 .cse1))) [2022-11-23 13:43:12,006 INFO L895 garLoopResultBuilder]: At program point L176(line 176) the Hoare annotation is: (let ((.cse3 (= ~pumpRunning~0 0)) (.cse2 (<= ~waterLevel~0 1)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1) (and .cse2 .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse3 .cse1 (= 0 ~systemActive~0)) (and .cse3 .cse2 .cse0 .cse1))) [2022-11-23 13:43:12,006 INFO L902 garLoopResultBuilder]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2022-11-23 13:43:12,006 INFO L895 garLoopResultBuilder]: At program point L305(lines 305 312) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1) (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) [2022-11-23 13:43:12,006 INFO L902 garLoopResultBuilder]: At program point L305-2(lines 305 312) the Hoare annotation is: true [2022-11-23 13:43:12,006 INFO L899 garLoopResultBuilder]: For program point L165(lines 164 211) no Hoare annotation was computed. [2022-11-23 13:43:12,006 INFO L899 garLoopResultBuilder]: For program point L194(lines 194 207) no Hoare annotation was computed. [2022-11-23 13:43:12,006 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2022-11-23 13:43:12,006 INFO L895 garLoopResultBuilder]: At program point L574(line 574) the Hoare annotation is: (let ((.cse0 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 1 ~systemActive~0) .cse0) (and (<= 2 ~waterLevel~0) .cse0 (not (= 0 ~systemActive~0))))) [2022-11-23 13:43:12,007 INFO L895 garLoopResultBuilder]: At program point L186(line 186) the Hoare annotation is: (let ((.cse2 (= ~pumpRunning~0 0)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1) (and (<= ~waterLevel~0 1) .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse2 .cse1 (= 0 ~systemActive~0)) (and .cse2 .cse0 .cse1 (<= ~waterLevel~0 2)))) [2022-11-23 13:43:12,007 INFO L902 garLoopResultBuilder]: At program point L215(lines 154 219) the Hoare annotation is: true [2022-11-23 13:43:12,007 INFO L899 garLoopResultBuilder]: For program point L174(lines 174 180) no Hoare annotation was computed. [2022-11-23 13:43:12,007 INFO L899 garLoopResultBuilder]: For program point L174-1(lines 174 180) no Hoare annotation was computed. [2022-11-23 13:43:12,007 INFO L895 garLoopResultBuilder]: At program point L212(lines 163 213) the Hoare annotation is: false [2022-11-23 13:43:12,007 INFO L899 garLoopResultBuilder]: For program point L200(lines 200 206) no Hoare annotation was computed. [2022-11-23 13:43:12,007 INFO L895 garLoopResultBuilder]: At program point L200-2(lines 194 207) the Hoare annotation is: (let ((.cse2 (= ~pumpRunning~0 0)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1) (and (<= ~waterLevel~0 1) .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse2 .cse1 (= 0 ~systemActive~0)) (and .cse2 .cse0 .cse1 (<= ~waterLevel~0 2)))) [2022-11-23 13:43:12,007 INFO L895 garLoopResultBuilder]: At program point processEnvironment__wrappee__highWaterSensorENTRY(lines 364 388) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (not (<= ~waterLevel~0 2)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2022-11-23 13:43:12,008 INFO L895 garLoopResultBuilder]: At program point L378(line 378) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= ~waterLevel~0 2))) (.cse2 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 .cse1 (= ~switchedOnBeforeTS~0 0) .cse2) (or .cse0 (not (<= ~waterLevel~0 1)) (= |processEnvironment__wrappee__highWaterSensor_~tmp~3#1| 0) .cse2) (or .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse2))) [2022-11-23 13:43:12,008 INFO L899 garLoopResultBuilder]: For program point L372(lines 372 380) no Hoare annotation was computed. [2022-11-23 13:43:12,008 INFO L895 garLoopResultBuilder]: At program point L368(lines 368 385) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (not (<= ~waterLevel~0 2)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2022-11-23 13:43:12,008 INFO L895 garLoopResultBuilder]: At program point L383(line 383) the Hoare annotation is: (let ((.cse0 (not (= 1 ~systemActive~0))) (.cse1 (not (<= ~waterLevel~0 2))) (.cse2 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 .cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse2) (or (not (= |old(~pumpRunning~0)| 0)) .cse0 .cse1 .cse2))) [2022-11-23 13:43:12,008 INFO L899 garLoopResultBuilder]: For program point L383-1(lines 364 388) no Hoare annotation was computed. [2022-11-23 13:43:12,008 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 364 388) no Hoare annotation was computed. [2022-11-23 13:43:12,008 INFO L895 garLoopResultBuilder]: At program point L454(line 454) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (and (= ~pumpRunning~0 0) (<= 2 ~waterLevel~0) (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (not (<= ~waterLevel~0 2)) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2022-11-23 13:43:12,008 INFO L895 garLoopResultBuilder]: At program point L454-1(line 454) the Hoare annotation is: (or (not (= 1 ~systemActive~0)) (and (= ~pumpRunning~0 0) (<= 2 ~waterLevel~0) (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (not (<= ~waterLevel~0 2)) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2022-11-23 13:43:12,009 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 598 609) no Hoare annotation was computed. [2022-11-23 13:43:12,009 INFO L895 garLoopResultBuilder]: At program point waterRiseENTRY(lines 598 609) the Hoare annotation is: (let ((.cse0 (not (<= |old(~waterLevel~0)| 1))) (.cse3 (not (= ~pumpRunning~0 0))) (.cse1 (not (= 1 ~systemActive~0))) (.cse2 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or .cse0 .cse1 (not (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) .cse2) (or .cse0 .cse3 .cse1 .cse2) (or .cse3 .cse2 (= ~waterLevel~0 1) (not (= 0 ~systemActive~0))) (or .cse1 (not (= |old(~waterLevel~0)| 2)) .cse2))) [2022-11-23 13:43:12,009 INFO L902 garLoopResultBuilder]: At program point isMethaneAlarmENTRY(lines 474 484) the Hoare annotation is: true [2022-11-23 13:43:12,009 INFO L899 garLoopResultBuilder]: For program point isMethaneAlarmEXIT(lines 474 484) no Hoare annotation was computed. [2022-11-23 13:43:12,012 INFO L444 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-11-23 13:43:12,014 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2022-11-23 13:43:12,045 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 23.11 01:43:12 BoogieIcfgContainer [2022-11-23 13:43:12,045 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-11-23 13:43:12,046 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-11-23 13:43:12,046 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-11-23 13:43:12,046 INFO L275 PluginConnector]: Witness Printer initialized [2022-11-23 13:43:12,046 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 01:42:13" (3/4) ... [2022-11-23 13:43:12,049 INFO L137 WitnessPrinter]: Generating witness for correct program [2022-11-23 13:43:12,055 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2022-11-23 13:43:12,055 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2022-11-23 13:43:12,055 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2022-11-23 13:43:12,055 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2022-11-23 13:43:12,055 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2022-11-23 13:43:12,056 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2022-11-23 13:43:12,056 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2022-11-23 13:43:12,056 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2022-11-23 13:43:12,056 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2022-11-23 13:43:12,056 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2022-11-23 13:43:12,063 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 53 nodes and edges [2022-11-23 13:43:12,064 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 14 nodes and edges [2022-11-23 13:43:12,064 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 6 nodes and edges [2022-11-23 13:43:12,065 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-23 13:43:12,065 INFO L915 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2022-11-23 13:43:12,090 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && aux-isPumpRunning()-aux == pumpRunning)) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) && (((((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && aux-isPumpRunning()-aux == pumpRunning) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || ((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && aux-isPumpRunning()-aux == pumpRunning)) || !(1 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(0 == systemActive)) || (pumpRunning == 0 && (\old(waterLevel) == waterLevel || waterLevel == 1)))) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) || pumpRunning == switchedOnBeforeTS) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) || pumpRunning == switchedOnBeforeTS) || \old(switchedOnBeforeTS) == 0) [2022-11-23 13:43:12,091 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((((!(\old(pumpRunning) == 0) || (2 == waterLevel && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) && ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive))) && (((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) || (((!(pumpRunning == 0) && waterLevel <= 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && pumpRunning == switchedOnBeforeTS)) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && (\old(waterLevel) <= 0 || waterLevel + 1 <= \old(waterLevel)))) || \old(switchedOnBeforeTS) == 0)) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || pumpRunning == \old(pumpRunning)) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 0))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && ((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && 1 == systemActive) && waterLevel == 1)) || (((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && 1 == systemActive) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) || \old(switchedOnBeforeTS) == 0)) && (((((!(1 == systemActive) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && 1 == systemActive) && waterLevel == 1)) || \old(waterLevel) == waterLevel) || (((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && 1 == systemActive) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) [2022-11-23 13:43:12,092 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && (((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || !(0 < \old(waterLevel))) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))) || !(\old(waterLevel) <= 2)) || \old(switchedOnBeforeTS) == 0)) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && (((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || ((((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && tmp == waterLevel) && 1 == systemActive) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel))) || !(1 == systemActive)) || (((!(pumpRunning == 0) && tmp == waterLevel) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && pumpRunning == switchedOnBeforeTS)) || \old(switchedOnBeforeTS) == 0)) && ((((!(\old(pumpRunning) == 0) || !(\old(waterLevel) <= 2)) || !(0 == systemActive)) || (\old(waterLevel) == waterLevel && tmp == 2)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || ((((pumpRunning == 0 && tmp == waterLevel) && 1 == systemActive) && \old(waterLevel) == waterLevel) && pumpRunning == switchedOnBeforeTS)) || !(1 == systemActive)) || (2 <= waterLevel && \old(waterLevel) == waterLevel)) || !(\old(waterLevel) <= 2))) && (((((!(1 == systemActive) || (((!(pumpRunning == 0) && tmp == waterLevel) && \old(waterLevel) == waterLevel + 1) && pumpRunning == switchedOnBeforeTS)) || ((((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && tmp == waterLevel) && 1 == systemActive) && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || (\old(waterLevel) == waterLevel && tmp == 2)) || !(2 <= \old(waterLevel)))) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || pumpRunning == \old(pumpRunning)) || !(1 == systemActive)) || (pumpRunning == 0 && 1 == systemActive)) || !(\old(waterLevel) <= 0)) [2022-11-23 13:43:12,092 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) && ((!(1 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-23 13:43:12,092 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((((!(\old(pumpRunning) == 0) || (2 == waterLevel && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) && (((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) || (((!(pumpRunning == 0) && waterLevel <= 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && pumpRunning == switchedOnBeforeTS)) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && (\old(waterLevel) <= 0 || waterLevel + 1 <= \old(waterLevel)))) || \old(switchedOnBeforeTS) == 0)) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || pumpRunning == \old(pumpRunning)) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 0))) && ((((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && 1 == systemActive) && waterLevel == 1)) || (((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && 1 == systemActive) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) || \old(switchedOnBeforeTS) == 0)) && (((((!(1 == systemActive) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && 1 == systemActive) && waterLevel == 1)) || \old(waterLevel) == waterLevel) || (((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && 1 == systemActive) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) [2022-11-23 13:43:12,093 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((!(1 == systemActive) || !(waterLevel <= 2)) || pumpRunning == switchedOnBeforeTS) || !(switchedOnBeforeTS == \old(pumpRunning)) [2022-11-23 13:43:12,093 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((!(1 == systemActive) || !(waterLevel <= 2)) || pumpRunning == switchedOnBeforeTS) || !(switchedOnBeforeTS == \old(pumpRunning)) [2022-11-23 13:43:12,094 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((!(1 == systemActive) || ((pumpRunning == 0 && 2 <= waterLevel) && pumpRunning == switchedOnBeforeTS)) || !(waterLevel <= 2)) || !(switchedOnBeforeTS == \old(pumpRunning)) [2022-11-23 13:43:12,145 INFO L141 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/witness.graphml [2022-11-23 13:43:12,145 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-11-23 13:43:12,146 INFO L158 Benchmark]: Toolchain (without parser) took 60295.05ms. Allocated memory was 138.4MB in the beginning and 578.8MB in the end (delta: 440.4MB). Free memory was 108.8MB in the beginning and 364.5MB in the end (delta: -255.7MB). Peak memory consumption was 186.4MB. Max. memory is 16.1GB. [2022-11-23 13:43:12,146 INFO L158 Benchmark]: CDTParser took 0.26ms. Allocated memory is still 113.2MB. Free memory is still 65.8MB. There was no memory consumed. Max. memory is 16.1GB. [2022-11-23 13:43:12,147 INFO L158 Benchmark]: CACSL2BoogieTranslator took 531.87ms. Allocated memory is still 138.4MB. Free memory was 108.2MB in the beginning and 89.3MB in the end (delta: 18.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2022-11-23 13:43:12,147 INFO L158 Benchmark]: Boogie Procedure Inliner took 61.72ms. Allocated memory is still 138.4MB. Free memory was 89.3MB in the beginning and 86.5MB in the end (delta: 2.9MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-11-23 13:43:12,147 INFO L158 Benchmark]: Boogie Preprocessor took 41.65ms. Allocated memory is still 138.4MB. Free memory was 86.5MB in the beginning and 85.1MB in the end (delta: 1.4MB). There was no memory consumed. Max. memory is 16.1GB. [2022-11-23 13:43:12,148 INFO L158 Benchmark]: RCFGBuilder took 680.19ms. Allocated memory is still 138.4MB. Free memory was 84.5MB in the beginning and 57.3MB in the end (delta: 27.2MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. [2022-11-23 13:43:12,148 INFO L158 Benchmark]: TraceAbstraction took 58869.94ms. Allocated memory was 138.4MB in the beginning and 578.8MB in the end (delta: 440.4MB). Free memory was 56.4MB in the beginning and 370.8MB in the end (delta: -314.4MB). Peak memory consumption was 300.1MB. Max. memory is 16.1GB. [2022-11-23 13:43:12,148 INFO L158 Benchmark]: Witness Printer took 99.64ms. Allocated memory is still 578.8MB. Free memory was 370.8MB in the beginning and 364.5MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2022-11-23 13:43:12,150 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.26ms. Allocated memory is still 113.2MB. Free memory is still 65.8MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 531.87ms. Allocated memory is still 138.4MB. Free memory was 108.2MB in the beginning and 89.3MB in the end (delta: 18.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 61.72ms. Allocated memory is still 138.4MB. Free memory was 89.3MB in the beginning and 86.5MB in the end (delta: 2.9MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 41.65ms. Allocated memory is still 138.4MB. Free memory was 86.5MB in the beginning and 85.1MB in the end (delta: 1.4MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 680.19ms. Allocated memory is still 138.4MB. Free memory was 84.5MB in the beginning and 57.3MB in the end (delta: 27.2MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. * TraceAbstraction took 58869.94ms. Allocated memory was 138.4MB in the beginning and 578.8MB in the end (delta: 440.4MB). Free memory was 56.4MB in the beginning and 370.8MB in the end (delta: -314.4MB). Peak memory consumption was 300.1MB. Max. memory is 16.1GB. * Witness Printer took 99.64ms. Allocated memory is still 578.8MB. Free memory was 370.8MB in the beginning and 364.5MB in the end (delta: 6.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 144]: call to reach_error is unreachable For all program executions holds that call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 80 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 58.8s, OverallIterations: 10, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 9.5s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 7.9s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3065 SdHoareTripleChecker+Valid, 4.6s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 3039 mSDsluCounter, 3393 SdHoareTripleChecker+Invalid, 3.8s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2444 mSDsCounter, 1896 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 4978 IncrementalHoareTripleChecker+Invalid, 6874 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1896 mSolverCounterUnsat, 949 mSDtfsCounter, 4978 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1062 GetRequests, 749 SyntacticMatches, 28 SemanticMatches, 285 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10425 ImplicationChecksByTransitivity, 26.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=594occurred in iteration=6, InterpolantAutomatonStates: 158, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.4s AutomataMinimizationTime, 10 MinimizatonAttempts, 182 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 45 LocationsWithAnnotation, 1901 PreInvPairs, 2184 NumberOfFragments, 2395 HoareAnnotationTreeSize, 1901 FomulaSimplifications, 7281 FormulaSimplificationTreeSizeReduction, 0.7s HoareSimplificationTime, 45 FomulaSimplificationsInter, 28312 FormulaSimplificationTreeSizeReductionInter, 7.2s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 4.9s InterpolantComputationTime, 803 NumberOfCodeBlocks, 803 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 1064 ConstructedInterpolants, 0 QuantifiedInterpolants, 3483 SizeOfPredicates, 29 NumberOfNonLiveVariables, 1185 ConjunctsInSsa, 69 ConjunctsInUnsatCore, 16 InterpolantComputations, 7 PerfectInterpolantSequences, 384/515 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: -1]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 416]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || (2 == waterLevel && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) && (((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) || (((!(pumpRunning == 0) && waterLevel <= 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && pumpRunning == switchedOnBeforeTS)) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && (\old(waterLevel) <= 0 || waterLevel + 1 <= \old(waterLevel)))) || \old(switchedOnBeforeTS) == 0)) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || pumpRunning == \old(pumpRunning)) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 0))) && ((((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && 1 == systemActive) && waterLevel == 1)) || (((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && 1 == systemActive) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) || \old(switchedOnBeforeTS) == 0)) && (((((!(1 == systemActive) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && 1 == systemActive) && waterLevel == 1)) || \old(waterLevel) == waterLevel) || (((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && 1 == systemActive) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 394]: Loop Invariant Derived loop invariant: ((!(1 == systemActive) || !(waterLevel <= 2)) || pumpRunning == switchedOnBeforeTS) || !(switchedOnBeforeTS == \old(pumpRunning)) - InvariantResult [Line: 144]: Loop Invariant Derived loop invariant: ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) && ((!(1 == systemActive) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && ((!(\old(pumpRunning) == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 2))) && (!(\old(pumpRunning) == 0) || !(0 == systemActive)) - InvariantResult [Line: 454]: Loop Invariant Derived loop invariant: ((!(1 == systemActive) || ((pumpRunning == 0 && 2 <= waterLevel) && pumpRunning == switchedOnBeforeTS)) || !(waterLevel <= 2)) || !(switchedOnBeforeTS == \old(pumpRunning)) - InvariantResult [Line: 163]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 72]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive)) && (((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || !(0 < \old(waterLevel))) || (\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel))) || !(\old(waterLevel) <= 2)) || \old(switchedOnBeforeTS) == 0)) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && (((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || ((((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && tmp == waterLevel) && 1 == systemActive) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel))) || !(1 == systemActive)) || (((!(pumpRunning == 0) && tmp == waterLevel) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && pumpRunning == switchedOnBeforeTS)) || \old(switchedOnBeforeTS) == 0)) && ((((!(\old(pumpRunning) == 0) || !(\old(waterLevel) <= 2)) || !(0 == systemActive)) || (\old(waterLevel) == waterLevel && tmp == 2)) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || ((((pumpRunning == 0 && tmp == waterLevel) && 1 == systemActive) && \old(waterLevel) == waterLevel) && pumpRunning == switchedOnBeforeTS)) || !(1 == systemActive)) || (2 <= waterLevel && \old(waterLevel) == waterLevel)) || !(\old(waterLevel) <= 2))) && (((((!(1 == systemActive) || (((!(pumpRunning == 0) && tmp == waterLevel) && \old(waterLevel) == waterLevel + 1) && pumpRunning == switchedOnBeforeTS)) || ((((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && tmp == waterLevel) && 1 == systemActive) && waterLevel == 1)) || !(\old(waterLevel) <= 2)) || (\old(waterLevel) == waterLevel && tmp == 2)) || !(2 <= \old(waterLevel)))) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || pumpRunning == \old(pumpRunning)) || !(1 == systemActive)) || (pumpRunning == 0 && 1 == systemActive)) || !(\old(waterLevel) <= 0)) - InvariantResult [Line: 164]: Loop Invariant Derived loop invariant: ((((2 == waterLevel && 1 == systemActive) && splverifierCounter == 0) || (((waterLevel <= 1 && 1 == systemActive) && splverifierCounter == 0) && pumpRunning == switchedOnBeforeTS)) || ((pumpRunning == 0 && splverifierCounter == 0) && 0 == systemActive)) || (((pumpRunning == 0 && waterLevel <= 1) && 1 == systemActive) && splverifierCounter == 0) - InvariantResult [Line: 474]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 305]: Loop Invariant Derived loop invariant: ((pumpRunning == 0 && 1 == systemActive) && waterLevel == 1) && pumpRunning == switchedOnBeforeTS - InvariantResult [Line: 67]: Loop Invariant Derived loop invariant: ((((((((!(\old(pumpRunning) == 0) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && aux-isPumpRunning()-aux == pumpRunning)) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) && (((((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && aux-isPumpRunning()-aux == pumpRunning) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel)))) && (((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || ((pumpRunning == \old(pumpRunning) && \old(waterLevel) == waterLevel) && aux-isPumpRunning()-aux == pumpRunning)) || !(1 == systemActive))) && ((!(\old(pumpRunning) == 0) || !(0 == systemActive)) || (pumpRunning == 0 && (\old(waterLevel) == waterLevel || waterLevel == 1)))) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) || pumpRunning == switchedOnBeforeTS) || !(2 <= \old(waterLevel)))) && ((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || !(\old(waterLevel) <= 2)) || pumpRunning == switchedOnBeforeTS) || \old(switchedOnBeforeTS) == 0) - InvariantResult [Line: 343]: Loop Invariant Derived loop invariant: ((((((((((!(\old(pumpRunning) == 0) || (2 == waterLevel && \old(waterLevel) == waterLevel)) || !(1 == systemActive)) || ((pumpRunning == 0 && \old(waterLevel) == waterLevel) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) && ((!(\old(pumpRunning) == 0) || pumpRunning == 0) || !(0 == systemActive))) && (((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(\old(waterLevel) <= 1)) || !(1 == systemActive)) || (((!(pumpRunning == 0) && waterLevel <= 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && pumpRunning == switchedOnBeforeTS)) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && ((\old(waterLevel) == waterLevel + 1 && 0 < \old(waterLevel)) || \old(waterLevel) == waterLevel)) && (\old(waterLevel) <= 0 || waterLevel + 1 <= \old(waterLevel)))) || \old(switchedOnBeforeTS) == 0)) && ((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || pumpRunning == \old(pumpRunning)) || pumpRunning == 0) || !(1 == systemActive)) || !(\old(waterLevel) <= 0))) && (((!(\old(pumpRunning) == 0) || !(\old(waterLevel) == 1)) || waterLevel == 1) || !(0 == systemActive))) && ((((!(\old(pumpRunning) == 0) || \old(waterLevel) == waterLevel) || !(\old(waterLevel) <= 2)) || !(0 == systemActive)) || !(2 <= \old(waterLevel)))) && ((((((!(\old(switchedOnBeforeTS) == \old(pumpRunning)) || !(1 == systemActive)) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && 1 == systemActive) && waterLevel == 1)) || (((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && 1 == systemActive) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) || \old(switchedOnBeforeTS) == 0)) && (((((!(1 == systemActive) || (((!(switchedOnBeforeTS == 0) && pumpRunning == 0) && 1 == systemActive) && waterLevel == 1)) || \old(waterLevel) == waterLevel) || (((!(pumpRunning == 0) && \old(waterLevel) == waterLevel + 1) && 1 == systemActive) && pumpRunning == switchedOnBeforeTS)) || !(\old(waterLevel) <= 2)) || !(2 <= \old(waterLevel))) - InvariantResult [Line: 368]: Loop Invariant Derived loop invariant: ((!(1 == systemActive) || !(waterLevel <= 2)) || pumpRunning == switchedOnBeforeTS) || !(switchedOnBeforeTS == \old(pumpRunning)) - InvariantResult [Line: 232]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 154]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 572]: Loop Invariant Derived loop invariant: pumpRunning == 0 && splverifierCounter == 0 - InvariantResult [Line: 305]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 222]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2022-11-23 13:43:12,186 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_fc700fc4-37b2-46da-85fb-b21699382ffe/bin/utaipan-Q6hlc19bkW/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE