./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec1_product24.cil.c --full-output --architecture 32bit


--------------------------------------------------------------------------------


Checking for ERROR reachability
Using default analysis
Version 798a7b37
Calling Ultimate with: /root/.sdkman/candidates/java/21.0.5-tem/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec1_product24.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) )

 --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 31d3a3aeaf14432da9165203c4752dfec5aaba4c58389408b391b2b6f44be3f5
--- Real Ultimate output ---
This is Ultimate 0.3.0-?-798a7b3-m
[2025-03-03 14:28:39,925 INFO  L188        SettingsManager]: Resetting all preferences to default values...
[2025-03-03 14:28:39,976 INFO  L114        SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf
[2025-03-03 14:28:39,980 WARN  L101        SettingsManager]: Preference file contains the following unknown settings:
[2025-03-03 14:28:39,980 WARN  L103        SettingsManager]:   * de.uni_freiburg.informatik.ultimate.core.Log level for class
[2025-03-03 14:28:39,996 INFO  L130        SettingsManager]: Preferences different from defaults after loading the file:
[2025-03-03 14:28:39,997 INFO  L151        SettingsManager]: Preferences of UltimateCore differ from their defaults:
[2025-03-03 14:28:39,997 INFO  L153        SettingsManager]:  * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR;
[2025-03-03 14:28:39,997 INFO  L151        SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults:
[2025-03-03 14:28:39,997 INFO  L153        SettingsManager]:  * Use memory slicer=true
[2025-03-03 14:28:39,997 INFO  L151        SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults:
[2025-03-03 14:28:39,997 INFO  L153        SettingsManager]:  * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS
[2025-03-03 14:28:39,997 INFO  L151        SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults:
[2025-03-03 14:28:39,997 INFO  L153        SettingsManager]:  * Create parallel compositions if possible=false
[2025-03-03 14:28:39,997 INFO  L153        SettingsManager]:  * Use SBE=true
[2025-03-03 14:28:39,997 INFO  L151        SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults:
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Pointer base address is valid at dereference=IGNORE
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * sizeof long=4
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Overapproximate operations on floating types=true
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * sizeof POINTER=4
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Check division by zero=IGNORE
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Pointer to allocated memory at dereference=IGNORE
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * If two pointers are subtracted or compared they have the same base address=IGNORE
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Check array bounds for arrays that are off heap=IGNORE
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * sizeof long double=12
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Check if freed pointer was valid=false
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Use constant arrays=true
[2025-03-03 14:28:39,998 INFO  L151        SettingsManager]: Preferences of IcfgBuilder differ from their defaults:
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Size of a code block=SequenceOfStatements
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Only consider context switches at boundaries of atomic blocks=true
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * SMT solver=External_DefaultMode
[2025-03-03 14:28:39,998 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2025-03-03 14:28:39,998 INFO  L151        SettingsManager]: Preferences of TraceAbstraction differ from their defaults:
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Compute Interpolants along a Counterexample=FPandBP
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Compute procedure contracts=false
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Positions where we compute the Hoare Annotation=LoopHeads
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Trace refinement strategy=CAMEL
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Apply one-shot large block encoding in concurrent analysis=false
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Automaton type used in concurrency analysis=PETRI_NET
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Order on configurations for Petri net unfoldings=DBO
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * SMT solver=External_ModelsAndUnsatCoreMode
[2025-03-03 14:28:39,999 INFO  L153        SettingsManager]:  * Looper check in Petri net analysis=SEMANTIC
Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) )


Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 31d3a3aeaf14432da9165203c4752dfec5aaba4c58389408b391b2b6f44be3f5
[2025-03-03 14:28:40,230 INFO  L75    nceAwareModelManager]: Repository-Root is: /tmp
[2025-03-03 14:28:40,238 INFO  L261   ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized
[2025-03-03 14:28:40,239 INFO  L217   ainManager$Toolchain]: [Toolchain 1]: Toolchain selected.
[2025-03-03 14:28:40,240 INFO  L270        PluginConnector]: Initializing CDTParser...
[2025-03-03 14:28:40,241 INFO  L274        PluginConnector]: CDTParser initialized
[2025-03-03 14:28:40,241 INFO  L431   ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec1_product24.cil.c
[2025-03-03 14:28:41,424 INFO  L533              CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/d11de6df6/1e7d47bdef4844e7a15739c64000bef6/FLAG482dc0d39
[2025-03-03 14:28:41,744 INFO  L384              CDTParser]: Found 1 translation units.
[2025-03-03 14:28:41,745 INFO  L180              CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product24.cil.c
[2025-03-03 14:28:41,759 INFO  L427              CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/d11de6df6/1e7d47bdef4844e7a15739c64000bef6/FLAG482dc0d39
[2025-03-03 14:28:42,007 INFO  L435              CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/d11de6df6/1e7d47bdef4844e7a15739c64000bef6
[2025-03-03 14:28:42,009 INFO  L299   ainManager$Toolchain]: ####################### [Toolchain 1] #######################
[2025-03-03 14:28:42,012 INFO  L133        ToolchainWalker]: Walking toolchain with 6 elements.
[2025-03-03 14:28:42,015 INFO  L112        PluginConnector]: ------------------------CACSL2BoogieTranslator----------------------------
[2025-03-03 14:28:42,015 INFO  L270        PluginConnector]: Initializing CACSL2BoogieTranslator...
[2025-03-03 14:28:42,020 INFO  L274        PluginConnector]: CACSL2BoogieTranslator initialized
[2025-03-03 14:28:42,021 INFO  L184        PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,022 INFO  L204        PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@4379290 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42, skipping insertion in model container
[2025-03-03 14:28:42,022 INFO  L184        PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,050 INFO  L175         MainTranslator]: Built tables and reachable declarations
[2025-03-03 14:28:42,254 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product24.cil.c[13075,13088]
[2025-03-03 14:28:42,275 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2025-03-03 14:28:42,287 INFO  L200         MainTranslator]: Completed pre-run
[2025-03-03 14:28:42,293 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49]
[2025-03-03 14:28:42,294 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [415]
[2025-03-03 14:28:42,294 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [511]
[2025-03-03 14:28:42,294 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [539]
[2025-03-03 14:28:42,295 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [548]
[2025-03-03 14:28:42,295 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [621]
[2025-03-03 14:28:42,295 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [721]
[2025-03-03 14:28:42,295 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [924]
[2025-03-03 14:28:42,335 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product24.cil.c[13075,13088]
[2025-03-03 14:28:42,342 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2025-03-03 14:28:42,354 INFO  L204         MainTranslator]: Completed translation
[2025-03-03 14:28:42,355 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42 WrapperNode
[2025-03-03 14:28:42,355 INFO  L131        PluginConnector]: ------------------------ END CACSL2BoogieTranslator----------------------------
[2025-03-03 14:28:42,356 INFO  L112        PluginConnector]: ------------------------Boogie Procedure Inliner----------------------------
[2025-03-03 14:28:42,356 INFO  L270        PluginConnector]: Initializing Boogie Procedure Inliner...
[2025-03-03 14:28:42,356 INFO  L274        PluginConnector]: Boogie Procedure Inliner initialized
[2025-03-03 14:28:42,360 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,371 INFO  L184        PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,390 INFO  L138                Inliner]: procedures = 55, calls = 100, calls flagged for inlining = 21, calls inlined = 18, statements flattened = 183
[2025-03-03 14:28:42,391 INFO  L131        PluginConnector]: ------------------------ END Boogie Procedure Inliner----------------------------
[2025-03-03 14:28:42,392 INFO  L112        PluginConnector]: ------------------------Boogie Preprocessor----------------------------
[2025-03-03 14:28:42,392 INFO  L270        PluginConnector]: Initializing Boogie Preprocessor...
[2025-03-03 14:28:42,392 INFO  L274        PluginConnector]: Boogie Preprocessor initialized
[2025-03-03 14:28:42,399 INFO  L184        PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,399 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,400 INFO  L184        PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,410 INFO  L175           MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0].
[2025-03-03 14:28:42,411 INFO  L184        PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,411 INFO  L184        PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,420 INFO  L184        PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,421 INFO  L184        PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,421 INFO  L184        PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,422 INFO  L184        PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,428 INFO  L131        PluginConnector]: ------------------------ END Boogie Preprocessor----------------------------
[2025-03-03 14:28:42,428 INFO  L112        PluginConnector]: ------------------------IcfgBuilder----------------------------
[2025-03-03 14:28:42,429 INFO  L270        PluginConnector]: Initializing IcfgBuilder...
[2025-03-03 14:28:42,429 INFO  L274        PluginConnector]: IcfgBuilder initialized
[2025-03-03 14:28:42,429 INFO  L184        PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (1/1) ...
[2025-03-03 14:28:42,436 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2025-03-03 14:28:42,447 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3
[2025-03-03 14:28:42,461 INFO  L229       MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null)
[2025-03-03 14:28:42,465 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process
[2025-03-03 14:28:42,483 INFO  L130     BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit
[2025-03-03 14:28:42,483 INFO  L130     BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base
[2025-03-03 14:28:42,483 INFO  L138     BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base
[2025-03-03 14:28:42,483 INFO  L130     BoogieDeclarations]: Found specification of procedure cleanup
[2025-03-03 14:28:42,483 INFO  L138     BoogieDeclarations]: Found implementation of procedure cleanup
[2025-03-03 14:28:42,483 INFO  L130     BoogieDeclarations]: Found specification of procedure timeShift
[2025-03-03 14:28:42,483 INFO  L138     BoogieDeclarations]: Found implementation of procedure timeShift
[2025-03-03 14:28:42,484 INFO  L130     BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical
[2025-03-03 14:28:42,484 INFO  L138     BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical
[2025-03-03 14:28:42,484 INFO  L130     BoogieDeclarations]: Found specification of procedure waterRise
[2025-03-03 14:28:42,484 INFO  L138     BoogieDeclarations]: Found implementation of procedure waterRise
[2025-03-03 14:28:42,484 INFO  L130     BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor
[2025-03-03 14:28:42,484 INFO  L138     BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor
[2025-03-03 14:28:42,484 INFO  L130     BoogieDeclarations]: Found specification of procedure deactivatePump
[2025-03-03 14:28:42,484 INFO  L138     BoogieDeclarations]: Found implementation of procedure deactivatePump
[2025-03-03 14:28:42,484 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#0
[2025-03-03 14:28:42,484 INFO  L130     BoogieDeclarations]: Found specification of procedure changeMethaneLevel
[2025-03-03 14:28:42,484 INFO  L138     BoogieDeclarations]: Found implementation of procedure changeMethaneLevel
[2025-03-03 14:28:42,484 INFO  L130     BoogieDeclarations]: Found specification of procedure ULTIMATE.start
[2025-03-03 14:28:42,484 INFO  L138     BoogieDeclarations]: Found implementation of procedure ULTIMATE.start
[2025-03-03 14:28:42,536 INFO  L256             CfgBuilder]: Building ICFG
[2025-03-03 14:28:42,538 INFO  L286             CfgBuilder]: Building CFG for each procedure with an implementation
[2025-03-03 14:28:42,671 INFO  L1325  $ProcedureCfgBuilder]: dead code at ProgramPoint L834-1: isMethaneAlarm_#res#1 := isMethaneAlarm_~retValue_acc~7#1;
[2025-03-03 14:28:42,672 INFO  L1325  $ProcedureCfgBuilder]: dead code at ProgramPoint L843-1: isPumpRunning_#res#1 := isPumpRunning_~retValue_acc~8#1;
[2025-03-03 14:28:42,676 INFO  L1325  $ProcedureCfgBuilder]: dead code at ProgramPoint L467: #res := ~retValue_acc~3;
[2025-03-03 14:28:42,760 INFO  L1325  $ProcedureCfgBuilder]: dead code at ProgramPoint L956-1: valid_product_#res#1 := valid_product_~retValue_acc~11#1;
[2025-03-03 14:28:42,760 INFO  L1325  $ProcedureCfgBuilder]: dead code at ProgramPoint L718-1: main_#res#1 := main_~retValue_acc~6#1;
[2025-03-03 14:28:42,800 INFO  L1325  $ProcedureCfgBuilder]: dead code at ProgramPoint L898-1: isLowWaterLevel_#res#1 := isLowWaterLevel_~retValue_acc~9#1;
[2025-03-03 14:28:42,800 INFO  L1325  $ProcedureCfgBuilder]: dead code at ProgramPoint L508-1: isLowWaterSensorDry_#res#1 := isLowWaterSensorDry_~retValue_acc~5#1;
[2025-03-03 14:28:42,820 INFO  L?                        ?]: Removed 39 outVars from TransFormulas that were not future-live.
[2025-03-03 14:28:42,821 INFO  L307             CfgBuilder]: Performing block encoding
[2025-03-03 14:28:42,830 INFO  L331             CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start)
[2025-03-03 14:28:42,830 INFO  L336             CfgBuilder]: Removed 0 assume(true) statements.
[2025-03-03 14:28:42,831 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 03.03 02:28:42 BoogieIcfgContainer
[2025-03-03 14:28:42,831 INFO  L131        PluginConnector]: ------------------------ END IcfgBuilder----------------------------
[2025-03-03 14:28:42,833 INFO  L112        PluginConnector]: ------------------------TraceAbstraction----------------------------
[2025-03-03 14:28:42,833 INFO  L270        PluginConnector]: Initializing TraceAbstraction...
[2025-03-03 14:28:42,836 INFO  L274        PluginConnector]: TraceAbstraction initialized
[2025-03-03 14:28:42,837 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 03.03 02:28:42" (1/3) ...
[2025-03-03 14:28:42,837 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@588f34c2 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 03.03 02:28:42, skipping insertion in model container
[2025-03-03 14:28:42,838 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 03.03 02:28:42" (2/3) ...
[2025-03-03 14:28:42,838 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@588f34c2 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 03.03 02:28:42, skipping insertion in model container
[2025-03-03 14:28:42,838 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 03.03 02:28:42" (3/3) ...
[2025-03-03 14:28:42,839 INFO  L128   eAbstractionObserver]: Analyzing ICFG minepump_spec1_product24.cil.c
[2025-03-03 14:28:42,851 INFO  L216   ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION
[2025-03-03 14:28:42,852 INFO  L151   ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec1_product24.cil.c that has 9 procedures, 91 locations, 1 initial locations, 2 loop locations, and 1 error locations.
[2025-03-03 14:28:42,895 INFO  L332      AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ========
[2025-03-03 14:28:42,905 INFO  L333      AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@90fe832, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms]
[2025-03-03 14:28:42,905 INFO  L334      AbstractCegarLoop]: Starting to check reachability of 1 error locations.
[2025-03-03 14:28:42,910 INFO  L276                IsEmpty]: Start isEmpty. Operand  has 91 states, 66 states have (on average 1.3484848484848484) internal successors, (89), 75 states have internal predecessors, (89), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 11 states have call predecessors, (15), 15 states have call successors, (15)
[2025-03-03 14:28:42,917 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 24
[2025-03-03 14:28:42,917 INFO  L210           NwaCegarLoop]: Found error trace
[2025-03-03 14:28:42,918 INFO  L218           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-03-03 14:28:42,918 INFO  L396      AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-03-03 14:28:42,923 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-03-03 14:28:42,923 INFO  L85        PathProgramCache]: Analyzing trace with hash 916127180, now seen corresponding path program 1 times
[2025-03-03 14:28:42,928 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-03-03 14:28:42,929 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1753886795]
[2025-03-03 14:28:42,929 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-03-03 14:28:42,930 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-03-03 14:28:42,998 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 23 statements into 1 equivalence classes.
[2025-03-03 14:28:43,020 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 23 of 23 statements.
[2025-03-03 14:28:43,020 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-03-03 14:28:43,020 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-03-03 14:28:43,081 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2025-03-03 14:28:43,082 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-03-03 14:28:43,082 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1753886795]
[2025-03-03 14:28:43,084 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1753886795] provided 1 perfect and 0 imperfect interpolant sequences
[2025-03-03 14:28:43,084 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-03-03 14:28:43,084 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2
[2025-03-03 14:28:43,086 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1655307124]
[2025-03-03 14:28:43,086 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-03-03 14:28:43,089 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 2 states
[2025-03-03 14:28:43,089 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-03-03 14:28:43,107 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants.
[2025-03-03 14:28:43,107 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2
[2025-03-03 14:28:43,109 INFO  L87              Difference]: Start difference. First operand  has 91 states, 66 states have (on average 1.3484848484848484) internal successors, (89), 75 states have internal predecessors, (89), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 11 states have call predecessors, (15), 15 states have call successors, (15) Second operand  has 2 states, 2 states have (on average 9.5) internal successors, (19), 2 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-03 14:28:43,133 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-03-03 14:28:43,134 INFO  L93              Difference]: Finished difference Result 174 states and 233 transitions.
[2025-03-03 14:28:43,135 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. 
[2025-03-03 14:28:43,136 INFO  L78                 Accepts]: Start accepts. Automaton has  has 2 states, 2 states have (on average 9.5) internal successors, (19), 2 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23
[2025-03-03 14:28:43,137 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-03-03 14:28:43,143 INFO  L225             Difference]: With dead ends: 174
[2025-03-03 14:28:43,143 INFO  L226             Difference]: Without dead ends: 82
[2025-03-03 14:28:43,147 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2
[2025-03-03 14:28:43,149 INFO  L435           NwaCegarLoop]: 115 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 115 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-03-03 14:28:43,149 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 115 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-03-03 14:28:43,158 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 82 states.
[2025-03-03 14:28:43,172 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 82 to 82.
[2025-03-03 14:28:43,173 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 82 states, 59 states have (on average 1.305084745762712) internal successors, (77), 67 states have internal predecessors, (77), 15 states have call successors, (15), 8 states have call predecessors, (15), 7 states have return successors, (14), 10 states have call predecessors, (14), 14 states have call successors, (14)
[2025-03-03 14:28:43,176 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 82 states to 82 states and 106 transitions.
[2025-03-03 14:28:43,178 INFO  L78                 Accepts]: Start accepts. Automaton has 82 states and 106 transitions. Word has length 23
[2025-03-03 14:28:43,178 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-03-03 14:28:43,178 INFO  L471      AbstractCegarLoop]: Abstraction has 82 states and 106 transitions.
[2025-03-03 14:28:43,178 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 2 states, 2 states have (on average 9.5) internal successors, (19), 2 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-03 14:28:43,178 INFO  L276                IsEmpty]: Start isEmpty. Operand 82 states and 106 transitions.
[2025-03-03 14:28:43,180 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 25
[2025-03-03 14:28:43,180 INFO  L210           NwaCegarLoop]: Found error trace
[2025-03-03 14:28:43,180 INFO  L218           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-03-03 14:28:43,180 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0
[2025-03-03 14:28:43,180 INFO  L396      AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-03-03 14:28:43,181 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-03-03 14:28:43,181 INFO  L85        PathProgramCache]: Analyzing trace with hash -2113823743, now seen corresponding path program 1 times
[2025-03-03 14:28:43,181 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-03-03 14:28:43,181 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [789052003]
[2025-03-03 14:28:43,181 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-03-03 14:28:43,181 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-03-03 14:28:43,188 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 24 statements into 1 equivalence classes.
[2025-03-03 14:28:43,195 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 24 of 24 statements.
[2025-03-03 14:28:43,195 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-03-03 14:28:43,195 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-03-03 14:28:43,263 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2025-03-03 14:28:43,263 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-03-03 14:28:43,263 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [789052003]
[2025-03-03 14:28:43,264 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [789052003] provided 1 perfect and 0 imperfect interpolant sequences
[2025-03-03 14:28:43,264 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-03-03 14:28:43,264 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2025-03-03 14:28:43,264 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1707625825]
[2025-03-03 14:28:43,264 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-03-03 14:28:43,265 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2025-03-03 14:28:43,265 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-03-03 14:28:43,265 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2025-03-03 14:28:43,265 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-03-03 14:28:43,265 INFO  L87              Difference]: Start difference. First operand 82 states and 106 transitions. Second operand  has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-03 14:28:43,283 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-03-03 14:28:43,284 INFO  L93              Difference]: Finished difference Result 126 states and 162 transitions.
[2025-03-03 14:28:43,285 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2025-03-03 14:28:43,285 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 24
[2025-03-03 14:28:43,285 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-03-03 14:28:43,286 INFO  L225             Difference]: With dead ends: 126
[2025-03-03 14:28:43,286 INFO  L226             Difference]: Without dead ends: 73
[2025-03-03 14:28:43,287 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2025-03-03 14:28:43,287 INFO  L435           NwaCegarLoop]: 93 mSDtfsCounter, 16 mSDsluCounter, 72 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 165 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-03-03 14:28:43,287 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 165 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-03-03 14:28:43,288 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 73 states.
[2025-03-03 14:28:43,294 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 73 to 73.
[2025-03-03 14:28:43,294 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 73 states, 53 states have (on average 1.320754716981132) internal successors, (70), 61 states have internal predecessors, (70), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 8 states have call predecessors, (12), 12 states have call successors, (12)
[2025-03-03 14:28:43,295 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 73 states to 73 states and 94 transitions.
[2025-03-03 14:28:43,295 INFO  L78                 Accepts]: Start accepts. Automaton has 73 states and 94 transitions. Word has length 24
[2025-03-03 14:28:43,296 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-03-03 14:28:43,296 INFO  L471      AbstractCegarLoop]: Abstraction has 73 states and 94 transitions.
[2025-03-03 14:28:43,296 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-03 14:28:43,296 INFO  L276                IsEmpty]: Start isEmpty. Operand 73 states and 94 transitions.
[2025-03-03 14:28:43,296 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 29
[2025-03-03 14:28:43,296 INFO  L210           NwaCegarLoop]: Found error trace
[2025-03-03 14:28:43,296 INFO  L218           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-03-03 14:28:43,297 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1
[2025-03-03 14:28:43,297 INFO  L396      AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-03-03 14:28:43,297 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-03-03 14:28:43,297 INFO  L85        PathProgramCache]: Analyzing trace with hash 924542285, now seen corresponding path program 1 times
[2025-03-03 14:28:43,297 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-03-03 14:28:43,297 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1284993045]
[2025-03-03 14:28:43,297 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-03-03 14:28:43,297 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-03-03 14:28:43,314 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 28 statements into 1 equivalence classes.
[2025-03-03 14:28:43,337 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 28 of 28 statements.
[2025-03-03 14:28:43,338 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-03-03 14:28:43,338 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-03-03 14:28:43,473 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2025-03-03 14:28:43,474 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-03-03 14:28:43,474 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1284993045]
[2025-03-03 14:28:43,474 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1284993045] provided 1 perfect and 0 imperfect interpolant sequences
[2025-03-03 14:28:43,474 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-03-03 14:28:43,474 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6
[2025-03-03 14:28:43,474 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1369654071]
[2025-03-03 14:28:43,474 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-03-03 14:28:43,474 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 6 states
[2025-03-03 14:28:43,474 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-03-03 14:28:43,475 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants.
[2025-03-03 14:28:43,475 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30
[2025-03-03 14:28:43,475 INFO  L87              Difference]: Start difference. First operand 73 states and 94 transitions. Second operand  has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-03 14:28:43,685 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-03-03 14:28:43,685 INFO  L93              Difference]: Finished difference Result 244 states and 321 transitions.
[2025-03-03 14:28:43,685 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. 
[2025-03-03 14:28:43,685 INFO  L78                 Accepts]: Start accepts. Automaton has  has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 28
[2025-03-03 14:28:43,685 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-03-03 14:28:43,687 INFO  L225             Difference]: With dead ends: 244
[2025-03-03 14:28:43,687 INFO  L226             Difference]: Without dead ends: 178
[2025-03-03 14:28:43,687 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=20, Invalid=36, Unknown=0, NotChecked=0, Total=56
[2025-03-03 14:28:43,688 INFO  L435           NwaCegarLoop]: 106 mSDtfsCounter, 210 mSDsluCounter, 256 mSDsCounter, 0 mSdLazyCounter, 98 mSolverCounterSat, 26 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 210 SdHoareTripleChecker+Valid, 362 SdHoareTripleChecker+Invalid, 124 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 26 IncrementalHoareTripleChecker+Valid, 98 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time
[2025-03-03 14:28:43,688 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [210 Valid, 362 Invalid, 124 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [26 Valid, 98 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time]
[2025-03-03 14:28:43,689 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 178 states.
[2025-03-03 14:28:43,706 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 178 to 172.
[2025-03-03 14:28:43,708 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 172 states, 123 states have (on average 1.3577235772357723) internal successors, (167), 141 states have internal predecessors, (167), 29 states have call successors, (29), 19 states have call predecessors, (29), 19 states have return successors, (30), 19 states have call predecessors, (30), 29 states have call successors, (30)
[2025-03-03 14:28:43,709 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 172 states to 172 states and 226 transitions.
[2025-03-03 14:28:43,710 INFO  L78                 Accepts]: Start accepts. Automaton has 172 states and 226 transitions. Word has length 28
[2025-03-03 14:28:43,710 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-03-03 14:28:43,710 INFO  L471      AbstractCegarLoop]: Abstraction has 172 states and 226 transitions.
[2025-03-03 14:28:43,710 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-03 14:28:43,710 INFO  L276                IsEmpty]: Start isEmpty. Operand 172 states and 226 transitions.
[2025-03-03 14:28:43,711 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 32
[2025-03-03 14:28:43,711 INFO  L210           NwaCegarLoop]: Found error trace
[2025-03-03 14:28:43,711 INFO  L218           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2025-03-03 14:28:43,711 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2
[2025-03-03 14:28:43,711 INFO  L396      AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2025-03-03 14:28:43,711 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2025-03-03 14:28:43,712 INFO  L85        PathProgramCache]: Analyzing trace with hash -545872931, now seen corresponding path program 1 times
[2025-03-03 14:28:43,712 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2025-03-03 14:28:43,712 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1971979069]
[2025-03-03 14:28:43,712 INFO  L97    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2025-03-03 14:28:43,712 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2025-03-03 14:28:43,720 INFO  L108    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY partitioned 31 statements into 1 equivalence classes.
[2025-03-03 14:28:43,728 INFO  L111    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s) and asserted 31 of 31 statements.
[2025-03-03 14:28:43,728 INFO  L114    AnnotateAndAsserter]: Assert order NOT_INCREMENTALLY issued 1 check-sat command(s)
[2025-03-03 14:28:43,728 INFO  L115    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2025-03-03 14:28:43,835 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2025-03-03 14:28:43,835 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2025-03-03 14:28:43,835 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1971979069]
[2025-03-03 14:28:43,835 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1971979069] provided 1 perfect and 0 imperfect interpolant sequences
[2025-03-03 14:28:43,835 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2025-03-03 14:28:43,835 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5
[2025-03-03 14:28:43,835 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1544958596]
[2025-03-03 14:28:43,835 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2025-03-03 14:28:43,835 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2025-03-03 14:28:43,836 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2025-03-03 14:28:43,836 INFO  L144   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2025-03-03 14:28:43,836 INFO  L146   InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2025-03-03 14:28:43,836 INFO  L87              Difference]: Start difference. First operand 172 states and 226 transitions. Second operand  has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-03 14:28:43,895 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2025-03-03 14:28:43,895 INFO  L93              Difference]: Finished difference Result 291 states and 387 transitions.
[2025-03-03 14:28:43,896 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2025-03-03 14:28:43,896 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 31
[2025-03-03 14:28:43,897 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2025-03-03 14:28:43,897 INFO  L225             Difference]: With dead ends: 291
[2025-03-03 14:28:43,897 INFO  L226             Difference]: Without dead ends: 0
[2025-03-03 14:28:43,898 INFO  L434           NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42
[2025-03-03 14:28:43,900 INFO  L435           NwaCegarLoop]: 53 mSDtfsCounter, 36 mSDsluCounter, 104 mSDsCounter, 0 mSdLazyCounter, 21 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 36 SdHoareTripleChecker+Valid, 157 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 21 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2025-03-03 14:28:43,901 INFO  L436           NwaCegarLoop]: SdHoareTripleChecker [36 Valid, 157 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 21 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2025-03-03 14:28:43,901 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 0 states.
[2025-03-03 14:28:43,901 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0.
[2025-03-03 14:28:43,901 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2025-03-03 14:28:43,902 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions.
[2025-03-03 14:28:43,902 INFO  L78                 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 31
[2025-03-03 14:28:43,902 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2025-03-03 14:28:43,902 INFO  L471      AbstractCegarLoop]: Abstraction has 0 states and 0 transitions.
[2025-03-03 14:28:43,902 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2025-03-03 14:28:43,902 INFO  L276                IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions.
[2025-03-03 14:28:43,902 INFO  L282                IsEmpty]: Finished isEmpty. No accepting run.
[2025-03-03 14:28:43,906 INFO  L782   garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining)
[2025-03-03 14:28:43,907 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3
[2025-03-03 14:28:43,909 INFO  L422         BasicCegarLoop]: Path program histogram: [1, 1, 1, 1]
[2025-03-03 14:28:43,910 INFO  L343    DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions.
[2025-03-03 14:28:44,307 INFO  L170   ceAbstractionStarter]: Computing trace abstraction results
[2025-03-03 14:28:44,316 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 03.03 02:28:44 BoogieIcfgContainer
[2025-03-03 14:28:44,316 INFO  L131        PluginConnector]: ------------------------ END TraceAbstraction----------------------------
[2025-03-03 14:28:44,316 INFO  L112        PluginConnector]: ------------------------Witness Printer----------------------------
[2025-03-03 14:28:44,316 INFO  L270        PluginConnector]: Initializing Witness Printer...
[2025-03-03 14:28:44,316 INFO  L274        PluginConnector]: Witness Printer initialized
[2025-03-03 14:28:44,317 INFO  L184        PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 03.03 02:28:42" (3/4) ...
[2025-03-03 14:28:44,318 INFO  L146         WitnessPrinter]: Generating witness for correct program
[2025-03-03 14:28:44,322 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure deactivatePump
[2025-03-03 14:28:44,322 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base
[2025-03-03 14:28:44,322 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel
[2025-03-03 14:28:44,322 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure cleanup
[2025-03-03 14:28:44,322 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure timeShift
[2025-03-03 14:28:44,322 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical
[2025-03-03 14:28:44,322 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure waterRise
[2025-03-03 14:28:44,322 INFO  L385     IcfgBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor
[2025-03-03 14:28:44,327 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 20 nodes and edges
[2025-03-03 14:28:44,328 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges
[2025-03-03 14:28:44,328 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges
[2025-03-03 14:28:44,329 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2025-03-03 14:28:44,329 INFO  L919   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2025-03-03 14:28:44,390 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml
[2025-03-03 14:28:44,390 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml
[2025-03-03 14:28:44,390 INFO  L131        PluginConnector]: ------------------------ END Witness Printer----------------------------
[2025-03-03 14:28:44,390 INFO  L158              Benchmark]: Toolchain (without parser) took 2378.43ms. Allocated memory is still 142.6MB. Free memory was 105.8MB in the beginning and 101.9MB in the end (delta: 3.9MB). Peak memory consumption was 5.2MB. Max. memory is 16.1GB.
[2025-03-03 14:28:44,391 INFO  L158              Benchmark]: CDTParser took 0.23ms. Allocated memory is still 201.3MB. Free memory is still 118.1MB. There was no memory consumed. Max. memory is 16.1GB.
[2025-03-03 14:28:44,391 INFO  L158              Benchmark]: CACSL2BoogieTranslator took 340.16ms. Allocated memory is still 142.6MB. Free memory was 105.8MB in the beginning and 87.0MB in the end (delta: 18.9MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB.
[2025-03-03 14:28:44,391 INFO  L158              Benchmark]: Boogie Procedure Inliner took 35.58ms. Allocated memory is still 142.6MB. Free memory was 87.0MB in the beginning and 85.2MB in the end (delta: 1.7MB). There was no memory consumed. Max. memory is 16.1GB.
[2025-03-03 14:28:44,391 INFO  L158              Benchmark]: Boogie Preprocessor took 36.12ms. Allocated memory is still 142.6MB. Free memory was 85.2MB in the beginning and 83.9MB in the end (delta: 1.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
[2025-03-03 14:28:44,391 INFO  L158              Benchmark]: IcfgBuilder took 402.41ms. Allocated memory is still 142.6MB. Free memory was 83.9MB in the beginning and 66.0MB in the end (delta: 17.9MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB.
[2025-03-03 14:28:44,391 INFO  L158              Benchmark]: TraceAbstraction took 1482.99ms. Allocated memory is still 142.6MB. Free memory was 65.4MB in the beginning and 109.6MB in the end (delta: -44.2MB). Peak memory consumption was 30.5MB. Max. memory is 16.1GB.
[2025-03-03 14:28:44,391 INFO  L158              Benchmark]: Witness Printer took 73.88ms. Allocated memory is still 142.6MB. Free memory was 109.6MB in the beginning and 101.9MB in the end (delta: 7.7MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
[2025-03-03 14:28:44,392 INFO  L338   ainManager$Toolchain]: #######################  End [Toolchain 1] #######################
 --- Results ---
 * Results from de.uni_freiburg.informatik.ultimate.core:
  - StatisticsResult: Toolchain Benchmarks
    Benchmark results are:
 * CDTParser took 0.23ms. Allocated memory is still 201.3MB. Free memory is still 118.1MB. There was no memory consumed. Max. memory is 16.1GB.
 * CACSL2BoogieTranslator took 340.16ms. Allocated memory is still 142.6MB. Free memory was 105.8MB in the beginning and 87.0MB in the end (delta: 18.9MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB.
 * Boogie Procedure Inliner took 35.58ms. Allocated memory is still 142.6MB. Free memory was 87.0MB in the beginning and 85.2MB in the end (delta: 1.7MB). There was no memory consumed. Max. memory is 16.1GB.
 * Boogie Preprocessor took 36.12ms. Allocated memory is still 142.6MB. Free memory was 85.2MB in the beginning and 83.9MB in the end (delta: 1.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
 * IcfgBuilder took 402.41ms. Allocated memory is still 142.6MB. Free memory was 83.9MB in the beginning and 66.0MB in the end (delta: 17.9MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB.
 * TraceAbstraction took 1482.99ms. Allocated memory is still 142.6MB. Free memory was 65.4MB in the beginning and 109.6MB in the end (delta: -44.2MB). Peak memory consumption was 30.5MB. Max. memory is 16.1GB.
 * Witness Printer took 73.88ms. Allocated memory is still 142.6MB. Free memory was 109.6MB in the beginning and 101.9MB in the end (delta: 7.7MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator:
  - GenericResultAtLocation [Line: 49]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49]
  - GenericResultAtLocation [Line: 415]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [415]
  - GenericResultAtLocation [Line: 511]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [511]
  - GenericResultAtLocation [Line: 539]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [539]
  - GenericResultAtLocation [Line: 548]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [548]
  - GenericResultAtLocation [Line: 621]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [621]
  - GenericResultAtLocation [Line: 721]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [721]
  - GenericResultAtLocation [Line: 924]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [924]
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction:
  - StatisticsResult: ErrorAutomatonStatistics
    NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0
  - PositiveResult [Line: 544]: a call to reach_error is unreachable
    For all program executions holds that a call to reach_error is unreachable at this location
  - StatisticsResult: Ultimate Automizer benchmark data
    CFG has 9 procedures, 91 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 1.0s, OverallIterations: 4, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 266 SdHoareTripleChecker+Valid, 0.2s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 262 mSDsluCounter, 799 SdHoareTripleChecker+Invalid, 0.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 432 mSDsCounter, 30 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 120 IncrementalHoareTripleChecker+Invalid, 150 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 30 mSolverCounterUnsat, 367 mSDtfsCounter, 120 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 21 GetRequests, 9 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=172occurred in iteration=3, InterpolantAutomatonStates: 16, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.0s AutomataMinimizationTime, 4 MinimizatonAttempts, 6 StatesRemovedByMinimization, 1 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.4s InterpolantComputationTime, 106 NumberOfCodeBlocks, 106 NumberOfCodeBlocksAsserted, 4 NumberOfCheckSat, 102 ConstructedInterpolants, 0 QuantifiedInterpolants, 204 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 4 InterpolantComputations, 4 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available, ConComCheckerStatistics: No data available
  - AllSpecificationsHoldResult: All specifications hold
    1 specifications checked. All of them hold
  - InvariantResult [Line: 633]: Location Invariant
    Derived location invariant: 0
  - InvariantResult [Line: 563]: Location Invariant
    Derived location invariant: ((pumpRunning == 0) && (splverifierCounter == 0))
RESULT: Ultimate proved your program to be correct!
[2025-03-03 14:28:44,403 INFO  L540       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0
Received shutdown request...
--- End real Ultimate output ---

Execution finished normally
Writing output log to file Ultimate.log
Result:
TRUE