./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec1_product28.cil.c --full-output --architecture 32bit


--------------------------------------------------------------------------------


Checking for ERROR reachability
Using default analysis
Version e2fb8bed
Calling Ultimate with: /root/.sdkman/candidates/java/21.0.5-tem/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec1_product28.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) )

 --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash ecbd3b7927e701d55fc39288fc091a7415141c93c89521192fc4dc52b10e4c6c
--- Real Ultimate output ---
This is Ultimate 0.3.0-?-e2fb8be-m
[2025-03-08 05:38:36,622 INFO  L188        SettingsManager]: Resetting all preferences to default values...
[2025-03-08 05:38:36,681 INFO  L114        SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf
[2025-03-08 05:38:36,684 WARN  L101        SettingsManager]: Preference file contains the following unknown settings:
[2025-03-08 05:38:36,684 WARN  L103        SettingsManager]:   * de.uni_freiburg.informatik.ultimate.core.Log level for class
[2025-03-08 05:38:36,697 INFO  L130        SettingsManager]: Preferences different from defaults after loading the file:
[2025-03-08 05:38:36,698 INFO  L151        SettingsManager]: Preferences of UltimateCore differ from their defaults:
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR;
[2025-03-08 05:38:36,698 INFO  L151        SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults:
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * Use memory slicer=true
[2025-03-08 05:38:36,698 INFO  L151        SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults:
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS
[2025-03-08 05:38:36,698 INFO  L151        SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults:
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * Create parallel compositions if possible=false
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * Use SBE=true
[2025-03-08 05:38:36,698 INFO  L151        SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults:
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * Pointer base address is valid at dereference=IGNORE
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * sizeof long=4
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * Overapproximate operations on floating types=true
[2025-03-08 05:38:36,698 INFO  L153        SettingsManager]:  * sizeof POINTER=4
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Check division by zero=IGNORE
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Pointer to allocated memory at dereference=IGNORE
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * If two pointers are subtracted or compared they have the same base address=IGNORE
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Check array bounds for arrays that are off heap=IGNORE
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * sizeof long double=12
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Check if freed pointer was valid=false
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Use constant arrays=true
[2025-03-08 05:38:36,699 INFO  L151        SettingsManager]: Preferences of IcfgBuilder differ from their defaults:
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Size of a code block=SequenceOfStatements
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Only consider context switches at boundaries of atomic blocks=true
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * SMT solver=External_DefaultMode
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2025-03-08 05:38:36,699 INFO  L151        SettingsManager]: Preferences of TraceAbstraction differ from their defaults:
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Compute Interpolants along a Counterexample=FPandBP
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Compute procedure contracts=false
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Positions where we compute the Hoare Annotation=LoopHeads
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Trace refinement strategy=CAMEL
[2025-03-08 05:38:36,699 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in
[2025-03-08 05:38:36,700 INFO  L153        SettingsManager]:  * Apply one-shot large block encoding in concurrent analysis=false
[2025-03-08 05:38:36,700 INFO  L153        SettingsManager]:  * Automaton type used in concurrency analysis=PETRI_NET
[2025-03-08 05:38:36,700 INFO  L153        SettingsManager]:  * Order on configurations for Petri net unfoldings=DBO
[2025-03-08 05:38:36,700 INFO  L153        SettingsManager]:  * SMT solver=External_ModelsAndUnsatCoreMode
[2025-03-08 05:38:36,700 INFO  L153        SettingsManager]:  * Looper check in Petri net analysis=SEMANTIC
Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) )


Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> ecbd3b7927e701d55fc39288fc091a7415141c93c89521192fc4dc52b10e4c6c
[2025-03-08 05:38:36,926 INFO  L75    nceAwareModelManager]: Repository-Root is: /tmp
[2025-03-08 05:38:36,932 INFO  L261   ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized
[2025-03-08 05:38:36,933 INFO  L217   ainManager$Toolchain]: [Toolchain 1]: Toolchain selected.
[2025-03-08 05:38:36,934 INFO  L270        PluginConnector]: Initializing CDTParser...
[2025-03-08 05:38:36,935 INFO  L274        PluginConnector]: CDTParser initialized
[2025-03-08 05:38:36,935 INFO  L431   ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec1_product28.cil.c
[2025-03-08 05:38:38,135 INFO  L533              CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/10dc65a75/d0511bb634bc483d8dc4445876b16947/FLAG25e6622c4
[2025-03-08 05:38:38,409 INFO  L384              CDTParser]: Found 1 translation units.
[2025-03-08 05:38:38,410 INFO  L180              CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product28.cil.c
[2025-03-08 05:38:38,417 INFO  L427              CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/10dc65a75/d0511bb634bc483d8dc4445876b16947/FLAG25e6622c4
[2025-03-08 05:38:38,713 INFO  L435              CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/10dc65a75/d0511bb634bc483d8dc4445876b16947
[2025-03-08 05:38:38,715 INFO  L299   ainManager$Toolchain]: ####################### [Toolchain 1] #######################
[2025-03-08 05:38:38,716 INFO  L133        ToolchainWalker]: Walking toolchain with 6 elements.
[2025-03-08 05:38:38,717 INFO  L112        PluginConnector]: ------------------------CACSL2BoogieTranslator----------------------------
[2025-03-08 05:38:38,717 INFO  L270        PluginConnector]: Initializing CACSL2BoogieTranslator...
[2025-03-08 05:38:38,720 INFO  L274        PluginConnector]: CACSL2BoogieTranslator initialized
[2025-03-08 05:38:38,721 INFO  L184        PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 08.03 05:38:38" (1/1) ...
[2025-03-08 05:38:38,721 INFO  L204        PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2e3f5dff and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:38, skipping insertion in model container
[2025-03-08 05:38:38,721 INFO  L184        PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 08.03 05:38:38" (1/1) ...
[2025-03-08 05:38:38,747 INFO  L175         MainTranslator]: Built tables and reachable declarations
[2025-03-08 05:38:38,852 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product28.cil.c[1605,1618]
[2025-03-08 05:38:38,952 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2025-03-08 05:38:38,961 INFO  L200         MainTranslator]: Completed pre-run
[2025-03-08 05:38:38,967 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49]
[2025-03-08 05:38:38,969 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [58]
[2025-03-08 05:38:38,969 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [424]
[2025-03-08 05:38:38,969 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [520]
[2025-03-08 05:38:38,969 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [593]
[2025-03-08 05:38:38,969 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [791]
[2025-03-08 05:38:38,969 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [817]
[2025-03-08 05:38:38,970 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [855]
[2025-03-08 05:38:38,975 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product28.cil.c[1605,1618]
[2025-03-08 05:38:39,009 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2025-03-08 05:38:39,023 INFO  L204         MainTranslator]: Completed translation
[2025-03-08 05:38:39,023 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39 WrapperNode
[2025-03-08 05:38:39,024 INFO  L131        PluginConnector]: ------------------------ END CACSL2BoogieTranslator----------------------------
[2025-03-08 05:38:39,024 INFO  L112        PluginConnector]: ------------------------Boogie Procedure Inliner----------------------------
[2025-03-08 05:38:39,024 INFO  L270        PluginConnector]: Initializing Boogie Procedure Inliner...
[2025-03-08 05:38:39,024 INFO  L274        PluginConnector]: Boogie Procedure Inliner initialized
[2025-03-08 05:38:39,028 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,037 INFO  L184        PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,051 INFO  L138                Inliner]: procedures = 55, calls = 98, calls flagged for inlining = 22, calls inlined = 17, statements flattened = 163
[2025-03-08 05:38:39,051 INFO  L131        PluginConnector]: ------------------------ END Boogie Procedure Inliner----------------------------
[2025-03-08 05:38:39,052 INFO  L112        PluginConnector]: ------------------------Boogie Preprocessor----------------------------
[2025-03-08 05:38:39,052 INFO  L270        PluginConnector]: Initializing Boogie Preprocessor...
[2025-03-08 05:38:39,052 INFO  L274        PluginConnector]: Boogie Preprocessor initialized
[2025-03-08 05:38:39,057 INFO  L184        PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,057 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,059 INFO  L184        PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,067 INFO  L175           MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0].
[2025-03-08 05:38:39,068 INFO  L184        PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,068 INFO  L184        PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,070 INFO  L184        PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,071 INFO  L184        PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,071 INFO  L184        PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,072 INFO  L184        PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,075 INFO  L131        PluginConnector]: ------------------------ END Boogie Preprocessor----------------------------
[2025-03-08 05:38:39,075 INFO  L112        PluginConnector]: ------------------------IcfgBuilder----------------------------
[2025-03-08 05:38:39,075 INFO  L270        PluginConnector]: Initializing IcfgBuilder...
[2025-03-08 05:38:39,076 INFO  L274        PluginConnector]: IcfgBuilder initialized
[2025-03-08 05:38:39,077 INFO  L184        PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (1/1) ...
[2025-03-08 05:38:39,080 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2025-03-08 05:38:39,090 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3
[2025-03-08 05:38:39,101 INFO  L229       MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null)
[2025-03-08 05:38:39,104 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process
[2025-03-08 05:38:39,121 INFO  L130     BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit
[2025-03-08 05:38:39,121 INFO  L130     BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base
[2025-03-08 05:38:39,122 INFO  L138     BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base
[2025-03-08 05:38:39,122 INFO  L130     BoogieDeclarations]: Found specification of procedure cleanup
[2025-03-08 05:38:39,122 INFO  L138     BoogieDeclarations]: Found implementation of procedure cleanup
[2025-03-08 05:38:39,122 INFO  L130     BoogieDeclarations]: Found specification of procedure timeShift
[2025-03-08 05:38:39,122 INFO  L138     BoogieDeclarations]: Found implementation of procedure timeShift
[2025-03-08 05:38:39,122 INFO  L130     BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical
[2025-03-08 05:38:39,122 INFO  L138     BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical
[2025-03-08 05:38:39,122 INFO  L130     BoogieDeclarations]: Found specification of procedure waterRise
[2025-03-08 05:38:39,122 INFO  L138     BoogieDeclarations]: Found implementation of procedure waterRise
[2025-03-08 05:38:39,123 INFO  L130     BoogieDeclarations]: Found specification of procedure deactivatePump
[2025-03-08 05:38:39,123 INFO  L138     BoogieDeclarations]: Found implementation of procedure deactivatePump
[2025-03-08 05:38:39,123 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#0
[2025-03-08 05:38:39,123 INFO  L130     BoogieDeclarations]: Found specification of procedure changeMethaneLevel
[2025-03-08 05:38:39,123 INFO  L138     BoogieDeclarations]: Found implementation of procedure changeMethaneLevel
[2025-03-08 05:38:39,123 INFO  L130     BoogieDeclarations]: Found specification of procedure ULTIMATE.start
[2025-03-08 05:38:39,123 INFO  L138     BoogieDeclarations]: Found implementation of procedure ULTIMATE.start
[2025-03-08 05:38:39,175 INFO  L256             CfgBuilder]: Building ICFG
[2025-03-08 05:38:39,177 INFO  L286             CfgBuilder]: Building CFG for each procedure with an implementation
[2025-03-08 05:38:39,275 INFO  L1307  $ProcedureCfgBuilder]: dead code at ProgramPoint L517-1: isLowWaterSensorDry_#res#1 := isLowWaterSensorDry_~retValue_acc~5#1;
[2025-03-08 05:38:39,276 INFO  L1307  $ProcedureCfgBuilder]: dead code at ProgramPoint L765-1: isLowWaterLevel_#res#1 := isLowWaterLevel_~retValue_acc~8#1;
[2025-03-08 05:38:39,276 INFO  L1307  $ProcedureCfgBuilder]: dead code at ProgramPoint L710-1: isPumpRunning_#res#1 := isPumpRunning_~retValue_acc~7#1;
[2025-03-08 05:38:39,279 INFO  L1307  $ProcedureCfgBuilder]: dead code at ProgramPoint L476: #res := ~retValue_acc~3;
[2025-03-08 05:38:39,338 INFO  L1307  $ProcedureCfgBuilder]: dead code at ProgramPoint L948-1: main_#res#1 := main_~retValue_acc~11#1;
[2025-03-08 05:38:39,339 INFO  L1307  $ProcedureCfgBuilder]: dead code at ProgramPoint L852-1: valid_product_#res#1 := valid_product_~retValue_acc~10#1;
[2025-03-08 05:38:39,356 INFO  L?                        ?]: Removed 35 outVars from TransFormulas that were not future-live.
[2025-03-08 05:38:39,357 INFO  L307             CfgBuilder]: Performing block encoding
[2025-03-08 05:38:39,363 INFO  L331             CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start)
[2025-03-08 05:38:39,364 INFO  L336             CfgBuilder]: Removed 0 assume(true) statements.
[2025-03-08 05:38:39,364 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 08.03 05:38:39 BoogieIcfgContainer
[2025-03-08 05:38:39,364 INFO  L131        PluginConnector]: ------------------------ END IcfgBuilder----------------------------
[2025-03-08 05:38:39,365 INFO  L112        PluginConnector]: ------------------------TraceAbstraction----------------------------
[2025-03-08 05:38:39,366 INFO  L270        PluginConnector]: Initializing TraceAbstraction...
[2025-03-08 05:38:39,369 INFO  L274        PluginConnector]: TraceAbstraction initialized
[2025-03-08 05:38:39,369 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 08.03 05:38:38" (1/3) ...
[2025-03-08 05:38:39,370 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@562afff8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 08.03 05:38:39, skipping insertion in model container
[2025-03-08 05:38:39,370 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.03 05:38:39" (2/3) ...
[2025-03-08 05:38:39,370 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@562afff8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 08.03 05:38:39, skipping insertion in model container
[2025-03-08 05:38:39,370 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 08.03 05:38:39" (3/3) ...
[2025-03-08 05:38:39,371 INFO  L128   eAbstractionObserver]: Analyzing ICFG minepump_spec1_product28.cil.c
[2025-03-08 05:38:39,381 INFO  L216   ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION
[2025-03-08 05:38:39,382 INFO  L151   ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec1_product28.cil.c that has 8 procedures, 78 locations, 1 initial locations, 2 loop locations, and 1 error locations.
[2025-03-08 05:38:39,432 INFO  L332      AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ========
[2025-03-08 05:38:39,440 INFO  L333      AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@726a28e0, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms]
[2025-03-08 05:38:39,440 INFO  L334      AbstractCegarLoop]: Starting to check reachability of 1 error locations.
[2025-03-08 05:38:39,443 INFO  L276                IsEmpty]: Start isEmpty. Operand  has 78 states, 58 states have (on average 1.3620689655172413) internal successors, (79), 65 states have internal predecessors, (79), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11)
[2025-03-08 05:38:39,447 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 24
[2025-03-08 05:38:39,448 INFO  L210           NwaCegarLoop]: Found error trace
[2025-03-08 05:38:39,449 INFO  L218           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-03-08 05:38:39,449 INFO  L396      AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-03-08 05:38:39,453 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-03-08 05:38:39,454 INFO  L85        PathProgramCache]: Analyzing trace with hash -1486044149, now seen corresponding path program 1 times
[2025-03-08 05:38:39,459 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-03-08 05:38:39,460 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1363840971]
[2025-03-08 05:38:39,462 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-03-08 05:38:39,462 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-03-08 05:38:39,513 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 23 statements into 1 equivalence classes.
[2025-03-08 05:38:39,532 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 23 of 23 statements.
[2025-03-08 05:38:39,533 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-03-08 05:38:39,534 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-03-08 05:38:39,646 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2025-03-08 05:38:39,646 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-03-08 05:38:39,646 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1363840971]
[2025-03-08 05:38:39,647 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1363840971] provided 1 perfect and 0 imperfect interpolant sequences
[2025-03-08 05:38:39,647 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-03-08 05:38:39,647 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-03-08 05:38:39,648 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [58506216]
[2025-03-08 05:38:39,648 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-03-08 05:38:39,650 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-03-08 05:38:39,650 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-03-08 05:38:39,661 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-03-08 05:38:39,662 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-03-08 05:38:39,663 INFO  L87              Difference]: Start difference. First operand  has 78 states, 58 states have (on average 1.3620689655172413) internal successors, (79), 65 states have internal predecessors, (79), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) Second operand  has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-08 05:38:39,683 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-03-08 05:38:39,683 INFO  L93              Difference]: Finished difference Result 136 states and 178 transitions.
[2025-03-08 05:38:39,684 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-03-08 05:38:39,685 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23
[2025-03-08 05:38:39,685 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-03-08 05:38:39,689 INFO  L225             Difference]: With dead ends: 136
[2025-03-08 05:38:39,689 INFO  L226             Difference]: Without dead ends: 61
[2025-03-08 05:38:39,692 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-03-08 05:38:39,693 INFO  L435           NwaCegarLoop]: 80 mSDtfsCounter, 16 mSDsluCounter, 60 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-03-08 05:38:39,694 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 140 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-03-08 05:38:39,702 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 61 states.
[2025-03-08 05:38:39,713 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 61 to 61.
[2025-03-08 05:38:39,714 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 61 states, 46 states have (on average 1.326086956521739) internal successors, (61), 52 states have internal predecessors, (61), 8 states have call successors, (8), 6 states have call predecessors, (8), 6 states have return successors, (8), 6 states have call predecessors, (8), 8 states have call successors, (8)
[2025-03-08 05:38:39,717 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 61 states to 61 states and 77 transitions.
[2025-03-08 05:38:39,719 INFO  L78                 Accepts]: Start accepts. Automaton has 61 states and 77 transitions. Word has length 23
[2025-03-08 05:38:39,719 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-03-08 05:38:39,719 INFO  L471      AbstractCegarLoop]: Abstraction has 61 states and 77 transitions.
[2025-03-08 05:38:39,719 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 6.333333333333333) internal successors, (19), 3 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-08 05:38:39,719 INFO  L276                IsEmpty]: Start isEmpty. Operand 61 states and 77 transitions.
[2025-03-08 05:38:39,720 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 28
[2025-03-08 05:38:39,720 INFO  L210           NwaCegarLoop]: Found error trace
[2025-03-08 05:38:39,720 INFO  L218           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-03-08 05:38:39,720 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0
[2025-03-08 05:38:39,721 INFO  L396      AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-03-08 05:38:39,721 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-03-08 05:38:39,721 INFO  L85        PathProgramCache]: Analyzing trace with hash 1401744583, now seen corresponding path program 1 times
[2025-03-08 05:38:39,721 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-03-08 05:38:39,721 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [911620608]
[2025-03-08 05:38:39,721 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-03-08 05:38:39,721 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-03-08 05:38:39,730 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 27 statements into 1 equivalence classes.
[2025-03-08 05:38:39,738 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 27 of 27 statements.
[2025-03-08 05:38:39,738 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-03-08 05:38:39,738 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-03-08 05:38:39,852 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2025-03-08 05:38:39,852 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-03-08 05:38:39,852 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [911620608]
[2025-03-08 05:38:39,852 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [911620608] provided 1 perfect and 0 imperfect interpolant sequences
[2025-03-08 05:38:39,852 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-03-08 05:38:39,852 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6
[2025-03-08 05:38:39,852 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [341383634]
[2025-03-08 05:38:39,852 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-03-08 05:38:39,853 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 6 states
[2025-03-08 05:38:39,854 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-03-08 05:38:39,854 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants.
[2025-03-08 05:38:39,854 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30
[2025-03-08 05:38:39,854 INFO  L87              Difference]: Start difference. First operand 61 states and 77 transitions. Second operand  has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-08 05:38:40,016 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-03-08 05:38:40,016 INFO  L93              Difference]: Finished difference Result 207 states and 269 transitions.
[2025-03-08 05:38:40,017 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. 
[2025-03-08 05:38:40,017 INFO  L78                 Accepts]: Start accepts. Automaton has  has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 27
[2025-03-08 05:38:40,017 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-03-08 05:38:40,018 INFO  L225             Difference]: With dead ends: 207
[2025-03-08 05:38:40,018 INFO  L226             Difference]: Without dead ends: 153
[2025-03-08 05:38:40,019 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=20, Invalid=36, Unknown=0, NotChecked=0, Total=56
[2025-03-08 05:38:40,020 INFO  L435           NwaCegarLoop]: 90 mSDtfsCounter, 125 mSDsluCounter, 278 mSDsCounter, 0 mSdLazyCounter, 74 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 125 SdHoareTripleChecker+Valid, 368 SdHoareTripleChecker+Invalid, 77 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 74 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time
[2025-03-08 05:38:40,020 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [125 Valid, 368 Invalid, 77 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 74 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time]
[2025-03-08 05:38:40,020 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 153 states.
[2025-03-08 05:38:40,038 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 153 to 147.
[2025-03-08 05:38:40,039 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 147 states, 108 states have (on average 1.3703703703703705) internal successors, (148), 122 states have internal predecessors, (148), 21 states have call successors, (21), 17 states have call predecessors, (21), 17 states have return successors, (22), 15 states have call predecessors, (22), 21 states have call successors, (22)
[2025-03-08 05:38:40,041 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 147 states to 147 states and 191 transitions.
[2025-03-08 05:38:40,041 INFO  L78                 Accepts]: Start accepts. Automaton has 147 states and 191 transitions. Word has length 27
[2025-03-08 05:38:40,041 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-03-08 05:38:40,041 INFO  L471      AbstractCegarLoop]: Abstraction has 147 states and 191 transitions.
[2025-03-08 05:38:40,042 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 6 states, 6 states have (on average 4.0) internal successors, (24), 6 states have internal predecessors, (24), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-08 05:38:40,042 INFO  L276                IsEmpty]: Start isEmpty. Operand 147 states and 191 transitions.
[2025-03-08 05:38:40,044 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 31
[2025-03-08 05:38:40,044 INFO  L210           NwaCegarLoop]: Found error trace
[2025-03-08 05:38:40,044 INFO  L218           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-03-08 05:38:40,045 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1
[2025-03-08 05:38:40,045 INFO  L396      AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-03-08 05:38:40,045 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-03-08 05:38:40,045 INFO  L85        PathProgramCache]: Analyzing trace with hash 781877785, now seen corresponding path program 1 times
[2025-03-08 05:38:40,045 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-03-08 05:38:40,045 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [10230809]
[2025-03-08 05:38:40,046 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-03-08 05:38:40,046 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-03-08 05:38:40,057 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 30 statements into 1 equivalence classes.
[2025-03-08 05:38:40,064 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 30 of 30 statements.
[2025-03-08 05:38:40,064 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-03-08 05:38:40,064 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-03-08 05:38:40,187 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2025-03-08 05:38:40,188 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-03-08 05:38:40,188 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [10230809]
[2025-03-08 05:38:40,188 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [10230809] provided 1 perfect and 0 imperfect interpolant sequences
[2025-03-08 05:38:40,188 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-03-08 05:38:40,189 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5
[2025-03-08 05:38:40,189 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [642192901]
[2025-03-08 05:38:40,189 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-03-08 05:38:40,190 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2025-03-08 05:38:40,190 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-03-08 05:38:40,191 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2025-03-08 05:38:40,191 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2025-03-08 05:38:40,191 INFO  L87              Difference]: Start difference. First operand 147 states and 191 transitions. Second operand  has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-08 05:38:40,246 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-03-08 05:38:40,247 INFO  L93              Difference]: Finished difference Result 253 states and 335 transitions.
[2025-03-08 05:38:40,249 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2025-03-08 05:38:40,250 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 30
[2025-03-08 05:38:40,250 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-03-08 05:38:40,250 INFO  L225             Difference]: With dead ends: 253
[2025-03-08 05:38:40,250 INFO  L226             Difference]: Without dead ends: 0
[2025-03-08 05:38:40,251 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42
[2025-03-08 05:38:40,252 INFO  L435           NwaCegarLoop]: 48 mSDtfsCounter, 31 mSDsluCounter, 94 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 31 SdHoareTripleChecker+Valid, 142 SdHoareTripleChecker+Invalid, 21 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-03-08 05:38:40,252 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [31 Valid, 142 Invalid, 21 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-03-08 05:38:40,252 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 0 states.
[2025-03-08 05:38:40,253 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0.
[2025-03-08 05:38:40,253 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2025-03-08 05:38:40,253 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions.
[2025-03-08 05:38:40,253 INFO  L78                 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 30
[2025-03-08 05:38:40,253 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-03-08 05:38:40,253 INFO  L471      AbstractCegarLoop]: Abstraction has 0 states and 0 transitions.
[2025-03-08 05:38:40,253 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 5 states have (on average 5.4) internal successors, (27), 5 states have internal predecessors, (27), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-08 05:38:40,253 INFO  L276                IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions.
[2025-03-08 05:38:40,256 INFO  L282                IsEmpty]: Finished isEmpty. No accepting run.
[2025-03-08 05:38:40,258 INFO  L782   garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining)
[2025-03-08 05:38:40,258 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2
[2025-03-08 05:38:40,261 INFO  L422         BasicCegarLoop]: Path program histogram: [1, 1, 1]
[2025-03-08 05:38:40,263 INFO  L343    DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions.
[2025-03-08 05:38:40,570 INFO  L170   ceAbstractionStarter]: Computing trace abstraction results
[2025-03-08 05:38:40,580 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 08.03 05:38:40 BoogieIcfgContainer
[2025-03-08 05:38:40,580 INFO  L131        PluginConnector]: ------------------------ END TraceAbstraction----------------------------
[2025-03-08 05:38:40,581 INFO  L112        PluginConnector]: ------------------------Witness Printer----------------------------
[2025-03-08 05:38:40,581 INFO  L270        PluginConnector]: Initializing Witness Printer...
[2025-03-08 05:38:40,582 INFO  L274        PluginConnector]: Witness Printer initialized
[2025-03-08 05:38:40,584 INFO  L184        PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 08.03 05:38:39" (3/4) ...
[2025-03-08 05:38:40,586 INFO  L146         WitnessPrinter]: Generating witness for correct program
[2025-03-08 05:38:40,590 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure deactivatePump
[2025-03-08 05:38:40,590 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base
[2025-03-08 05:38:40,590 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel
[2025-03-08 05:38:40,590 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure cleanup
[2025-03-08 05:38:40,590 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure timeShift
[2025-03-08 05:38:40,590 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical
[2025-03-08 05:38:40,591 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure waterRise
[2025-03-08 05:38:40,596 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 19 nodes and edges
[2025-03-08 05:38:40,597 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges
[2025-03-08 05:38:40,597 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges
[2025-03-08 05:38:40,597 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2025-03-08 05:38:40,597 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2025-03-08 05:38:40,671 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml
[2025-03-08 05:38:40,671 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml
[2025-03-08 05:38:40,671 INFO  L131        PluginConnector]: ------------------------ END Witness Printer----------------------------
[2025-03-08 05:38:40,672 INFO  L158              Benchmark]: Toolchain (without parser) took 1955.47ms. Allocated memory is still 167.8MB. Free memory was 122.3MB in the beginning and 78.4MB in the end (delta: 43.9MB). Peak memory consumption was 47.4MB. Max. memory is 16.1GB.
[2025-03-08 05:38:40,672 INFO  L158              Benchmark]: CDTParser took 0.22ms. Allocated memory is still 201.3MB. Free memory is still 115.8MB. There was no memory consumed. Max. memory is 16.1GB.
[2025-03-08 05:38:40,672 INFO  L158              Benchmark]: CACSL2BoogieTranslator took 306.79ms. Allocated memory is still 167.8MB. Free memory was 122.3MB in the beginning and 103.9MB in the end (delta: 18.5MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB.
[2025-03-08 05:38:40,672 INFO  L158              Benchmark]: Boogie Procedure Inliner took 26.83ms. Allocated memory is still 167.8MB. Free memory was 103.9MB in the beginning and 102.4MB in the end (delta: 1.5MB). There was no memory consumed. Max. memory is 16.1GB.
[2025-03-08 05:38:40,673 INFO  L158              Benchmark]: Boogie Preprocessor took 23.29ms. Allocated memory is still 167.8MB. Free memory was 102.4MB in the beginning and 100.7MB in the end (delta: 1.6MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
[2025-03-08 05:38:40,673 INFO  L158              Benchmark]: IcfgBuilder took 288.80ms. Allocated memory is still 167.8MB. Free memory was 100.7MB in the beginning and 84.0MB in the end (delta: 16.8MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB.
[2025-03-08 05:38:40,673 INFO  L158              Benchmark]: TraceAbstraction took 1215.34ms. Allocated memory is still 167.8MB. Free memory was 83.2MB in the beginning and 85.8MB in the end (delta: -2.6MB). There was no memory consumed. Max. memory is 16.1GB.
[2025-03-08 05:38:40,674 INFO  L158              Benchmark]: Witness Printer took 89.82ms. Allocated memory is still 167.8MB. Free memory was 85.8MB in the beginning and 78.4MB in the end (delta: 7.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
[2025-03-08 05:38:40,675 INFO  L338   ainManager$Toolchain]: #######################  End [Toolchain 1] #######################
 --- Results ---
 * Results from de.uni_freiburg.informatik.ultimate.core:
  - StatisticsResult: Toolchain Benchmarks
    Benchmark results are:
 * CDTParser took 0.22ms. Allocated memory is still 201.3MB. Free memory is still 115.8MB. There was no memory consumed. Max. memory is 16.1GB.
 * CACSL2BoogieTranslator took 306.79ms. Allocated memory is still 167.8MB. Free memory was 122.3MB in the beginning and 103.9MB in the end (delta: 18.5MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB.
 * Boogie Procedure Inliner took 26.83ms. Allocated memory is still 167.8MB. Free memory was 103.9MB in the beginning and 102.4MB in the end (delta: 1.5MB). There was no memory consumed. Max. memory is 16.1GB.
 * Boogie Preprocessor took 23.29ms. Allocated memory is still 167.8MB. Free memory was 102.4MB in the beginning and 100.7MB in the end (delta: 1.6MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
 * IcfgBuilder took 288.80ms. Allocated memory is still 167.8MB. Free memory was 100.7MB in the beginning and 84.0MB in the end (delta: 16.8MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB.
 * TraceAbstraction took 1215.34ms. Allocated memory is still 167.8MB. Free memory was 83.2MB in the beginning and 85.8MB in the end (delta: -2.6MB). There was no memory consumed. Max. memory is 16.1GB.
 * Witness Printer took 89.82ms. Allocated memory is still 167.8MB. Free memory was 85.8MB in the beginning and 78.4MB in the end (delta: 7.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator:
  - GenericResultAtLocation [Line: 49]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49]
  - GenericResultAtLocation [Line: 58]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [58]
  - GenericResultAtLocation [Line: 424]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [424]
  - GenericResultAtLocation [Line: 520]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [520]
  - GenericResultAtLocation [Line: 593]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [593]
  - GenericResultAtLocation [Line: 791]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [791]
  - GenericResultAtLocation [Line: 817]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [817]
  - GenericResultAtLocation [Line: 855]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [855]
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction:
  - StatisticsResult: ErrorAutomatonStatistics
    NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0
  - PositiveResult [Line: 54]: a call to reach_error is unreachable
    For all program executions holds that a call to reach_error is unreachable at this location
  - StatisticsResult: Ultimate Automizer benchmark data
    CFG has 8 procedures, 78 locations, 112 edges, 1 error locations. Started 1 CEGAR loops. OverallTime: 0.8s, OverallIterations: 3, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.3s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 176 SdHoareTripleChecker+Valid, 0.1s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 172 mSDsluCounter, 650 SdHoareTripleChecker+Invalid, 0.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 432 mSDsCounter, 6 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 93 IncrementalHoareTripleChecker+Invalid, 99 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 6 mSolverCounterUnsat, 218 mSDtfsCounter, 93 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 19 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=147occurred in iteration=2, InterpolantAutomatonStates: 14, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.0s AutomataMinimizationTime, 3 MinimizatonAttempts, 6 StatesRemovedByMinimization, 1 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.0s SatisfiabilityAnalysisTime, 0.3s InterpolantComputationTime, 80 NumberOfCodeBlocks, 80 NumberOfCodeBlocksAsserted, 3 NumberOfCheckSat, 77 ConstructedInterpolants, 0 QuantifiedInterpolants, 172 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 3 InterpolantComputations, 3 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available, ConComCheckerStatistics: No data available
  - AllSpecificationsHoldResult: All specifications hold
    1 specifications checked. All of them hold
  - InvariantResult [Line: 867]: Location Invariant
    Derived location invariant: 0
  - InvariantResult [Line: 535]: Location Invariant
    Derived location invariant: ((pumpRunning == 0) && (splverifierCounter == 0))
RESULT: Ultimate proved your program to be correct!
[2025-03-08 05:38:40,692 INFO  L552       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Ended with exit code 0
Received shutdown request...
--- End real Ultimate output ---

Execution finished normally
Writing output log to file Ultimate.log
Result:
TRUE