./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version e7bb482b Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 0858956fa78fab41d54951630cb21e24f98b592c89580084f0bb3139b8ef83d9 --- Real Ultimate output --- This is Ultimate 0.2.3-dev-e7bb482 [2023-11-06 21:53:41,522 INFO L188 SettingsManager]: Resetting all preferences to default values... [2023-11-06 21:53:41,631 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/config/svcomp-Reach-32bit-Automizer_Default.epf [2023-11-06 21:53:41,637 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2023-11-06 21:53:41,637 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2023-11-06 21:53:41,662 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2023-11-06 21:53:41,663 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2023-11-06 21:53:41,664 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2023-11-06 21:53:41,665 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2023-11-06 21:53:41,666 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2023-11-06 21:53:41,667 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2023-11-06 21:53:41,667 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2023-11-06 21:53:41,668 INFO L153 SettingsManager]: * Use SBE=true [2023-11-06 21:53:41,669 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2023-11-06 21:53:41,670 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2023-11-06 21:53:41,670 INFO L153 SettingsManager]: * sizeof long=4 [2023-11-06 21:53:41,671 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2023-11-06 21:53:41,671 INFO L153 SettingsManager]: * sizeof POINTER=4 [2023-11-06 21:53:41,672 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2023-11-06 21:53:41,672 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2023-11-06 21:53:41,673 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2023-11-06 21:53:41,674 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2023-11-06 21:53:41,674 INFO L153 SettingsManager]: * sizeof long double=12 [2023-11-06 21:53:41,675 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2023-11-06 21:53:41,675 INFO L153 SettingsManager]: * Use constant arrays=true [2023-11-06 21:53:41,676 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2023-11-06 21:53:41,676 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2023-11-06 21:53:41,677 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2023-11-06 21:53:41,677 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-11-06 21:53:41,678 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2023-11-06 21:53:41,679 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2023-11-06 21:53:41,679 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2023-11-06 21:53:41,680 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2023-11-06 21:53:41,680 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2023-11-06 21:53:41,681 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2023-11-06 21:53:41,681 INFO L153 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2023-11-06 21:53:41,682 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2023-11-06 21:53:41,682 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2023-11-06 21:53:41,683 INFO L153 SettingsManager]: * Independence relation used for large block encoding in concurrent analysis=SYNTACTIC [2023-11-06 21:53:41,683 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 0858956fa78fab41d54951630cb21e24f98b592c89580084f0bb3139b8ef83d9 [2023-11-06 21:53:41,979 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2023-11-06 21:53:42,002 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2023-11-06 21:53:42,005 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2023-11-06 21:53:42,006 INFO L270 PluginConnector]: Initializing CDTParser... [2023-11-06 21:53:42,007 INFO L274 PluginConnector]: CDTParser initialized [2023-11-06 21:53:42,008 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/../../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c [2023-11-06 21:53:45,239 INFO L533 CDTParser]: Created temporary CDT project at NULL [2023-11-06 21:53:45,571 INFO L384 CDTParser]: Found 1 translation units. [2023-11-06 21:53:45,574 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c [2023-11-06 21:53:45,594 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/data/0b600a3b7/c62cb680db164624a46f1cca4d96bb12/FLAGc5c736cd9 [2023-11-06 21:53:45,615 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/data/0b600a3b7/c62cb680db164624a46f1cca4d96bb12 [2023-11-06 21:53:45,624 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2023-11-06 21:53:45,627 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2023-11-06 21:53:45,632 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2023-11-06 21:53:45,632 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2023-11-06 21:53:45,638 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2023-11-06 21:53:45,642 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 06.11 09:53:45" (1/1) ... [2023-11-06 21:53:45,644 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@bb16e47 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:45, skipping insertion in model container [2023-11-06 21:53:45,644 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 06.11 09:53:45" (1/1) ... [2023-11-06 21:53:45,725 INFO L177 MainTranslator]: Built tables and reachable declarations [2023-11-06 21:53:46,018 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c[18140,18153] [2023-11-06 21:53:46,023 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-06 21:53:46,042 INFO L202 MainTranslator]: Completed pre-run [2023-11-06 21:53:46,054 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] [2023-11-06 21:53:46,056 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [415] [2023-11-06 21:53:46,056 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [511] [2023-11-06 21:53:46,057 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [581] [2023-11-06 21:53:46,057 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [779] [2023-11-06 21:53:46,057 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [806] [2023-11-06 21:53:46,057 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [844] [2023-11-06 21:53:46,058 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [940] [2023-11-06 21:53:46,144 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c[18140,18153] [2023-11-06 21:53:46,145 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-06 21:53:46,181 INFO L206 MainTranslator]: Completed translation [2023-11-06 21:53:46,181 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46 WrapperNode [2023-11-06 21:53:46,182 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2023-11-06 21:53:46,183 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2023-11-06 21:53:46,183 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2023-11-06 21:53:46,184 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2023-11-06 21:53:46,192 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,208 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,251 INFO L138 Inliner]: procedures = 54, calls = 99, calls flagged for inlining = 20, calls inlined = 17, statements flattened = 183 [2023-11-06 21:53:46,252 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2023-11-06 21:53:46,253 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2023-11-06 21:53:46,253 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2023-11-06 21:53:46,254 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2023-11-06 21:53:46,265 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,266 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,274 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,284 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,291 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,307 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,311 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,312 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,315 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2023-11-06 21:53:46,316 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2023-11-06 21:53:46,316 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2023-11-06 21:53:46,316 INFO L274 PluginConnector]: RCFGBuilder initialized [2023-11-06 21:53:46,317 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (1/1) ... [2023-11-06 21:53:46,323 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-11-06 21:53:46,339 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/z3 [2023-11-06 21:53:46,354 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2023-11-06 21:53:46,389 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2023-11-06 21:53:46,401 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2023-11-06 21:53:46,402 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2023-11-06 21:53:46,402 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2023-11-06 21:53:46,402 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2023-11-06 21:53:46,402 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2023-11-06 21:53:46,403 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2023-11-06 21:53:46,403 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2023-11-06 21:53:46,403 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2023-11-06 21:53:46,403 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2023-11-06 21:53:46,403 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2023-11-06 21:53:46,404 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2023-11-06 21:53:46,404 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2023-11-06 21:53:46,404 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2023-11-06 21:53:46,404 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2023-11-06 21:53:46,405 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2023-11-06 21:53:46,405 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2023-11-06 21:53:46,405 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2023-11-06 21:53:46,406 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2023-11-06 21:53:46,406 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2023-11-06 21:53:46,406 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2023-11-06 21:53:46,494 INFO L236 CfgBuilder]: Building ICFG [2023-11-06 21:53:46,496 INFO L262 CfgBuilder]: Building CFG for each procedure with an implementation [2023-11-06 21:53:46,807 INFO L277 CfgBuilder]: Performing block encoding [2023-11-06 21:53:46,815 INFO L297 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2023-11-06 21:53:46,815 INFO L302 CfgBuilder]: Removed 2 assume(true) statements. [2023-11-06 21:53:46,818 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 09:53:46 BoogieIcfgContainer [2023-11-06 21:53:46,818 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2023-11-06 21:53:46,821 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2023-11-06 21:53:46,821 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2023-11-06 21:53:46,828 INFO L274 PluginConnector]: TraceAbstraction initialized [2023-11-06 21:53:46,829 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 06.11 09:53:45" (1/3) ... [2023-11-06 21:53:46,830 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@604391db and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 06.11 09:53:46, skipping insertion in model container [2023-11-06 21:53:46,830 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 09:53:46" (2/3) ... [2023-11-06 21:53:46,830 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@604391db and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 06.11 09:53:46, skipping insertion in model container [2023-11-06 21:53:46,830 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 09:53:46" (3/3) ... [2023-11-06 21:53:46,833 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec1_product23.cil.c [2023-11-06 21:53:46,867 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2023-11-06 21:53:46,867 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2023-11-06 21:53:46,934 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2023-11-06 21:53:46,946 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@438dd3e3, mLbeIndependenceSettings=[IndependenceType=SYNTACTIC, AbstractionType=NONE, UseConditional=, UseSemiCommutativity=, Solver=, SolverTimeout=] [2023-11-06 21:53:46,947 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2023-11-06 21:53:46,953 INFO L276 IsEmpty]: Start isEmpty. Operand has 91 states, 66 states have (on average 1.378787878787879) internal successors, (91), 75 states have internal predecessors, (91), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 11 states have call predecessors, (15), 15 states have call successors, (15) [2023-11-06 21:53:46,972 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2023-11-06 21:53:46,972 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 21:53:46,973 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 21:53:46,974 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 21:53:46,988 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 21:53:46,992 INFO L85 PathProgramCache]: Analyzing trace with hash -1836528484, now seen corresponding path program 1 times [2023-11-06 21:53:47,002 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 21:53:47,004 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1494721218] [2023-11-06 21:53:47,005 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 21:53:47,005 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 21:53:47,119 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 21:53:47,191 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2023-11-06 21:53:47,195 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 21:53:47,202 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 21:53:47,203 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 21:53:47,203 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1494721218] [2023-11-06 21:53:47,204 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1494721218] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 21:53:47,205 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 21:53:47,205 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2023-11-06 21:53:47,207 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [868859038] [2023-11-06 21:53:47,208 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 21:53:47,214 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2023-11-06 21:53:47,214 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 21:53:47,252 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2023-11-06 21:53:47,253 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-06 21:53:47,258 INFO L87 Difference]: Start difference. First operand has 91 states, 66 states have (on average 1.378787878787879) internal successors, (91), 75 states have internal predecessors, (91), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 11 states have call predecessors, (15), 15 states have call successors, (15) Second operand has 2 states, 2 states have (on average 9.5) internal successors, (19), 2 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 21:53:47,310 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 21:53:47,310 INFO L93 Difference]: Finished difference Result 174 states and 237 transitions. [2023-11-06 21:53:47,315 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2023-11-06 21:53:47,320 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 9.5) internal successors, (19), 2 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2023-11-06 21:53:47,320 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 21:53:47,332 INFO L225 Difference]: With dead ends: 174 [2023-11-06 21:53:47,335 INFO L226 Difference]: Without dead ends: 82 [2023-11-06 21:53:47,341 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-06 21:53:47,349 INFO L413 NwaCegarLoop]: 115 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 115 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-06 21:53:47,351 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 115 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-06 21:53:47,368 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 82 states. [2023-11-06 21:53:47,395 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 82 to 82. [2023-11-06 21:53:47,397 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 82 states, 59 states have (on average 1.305084745762712) internal successors, (77), 67 states have internal predecessors, (77), 15 states have call successors, (15), 8 states have call predecessors, (15), 7 states have return successors, (14), 10 states have call predecessors, (14), 14 states have call successors, (14) [2023-11-06 21:53:47,400 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 82 states to 82 states and 106 transitions. [2023-11-06 21:53:47,402 INFO L78 Accepts]: Start accepts. Automaton has 82 states and 106 transitions. Word has length 23 [2023-11-06 21:53:47,403 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 21:53:47,403 INFO L495 AbstractCegarLoop]: Abstraction has 82 states and 106 transitions. [2023-11-06 21:53:47,404 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 9.5) internal successors, (19), 2 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 21:53:47,404 INFO L276 IsEmpty]: Start isEmpty. Operand 82 states and 106 transitions. [2023-11-06 21:53:47,408 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2023-11-06 21:53:47,408 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 21:53:47,408 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 21:53:47,409 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2023-11-06 21:53:47,409 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 21:53:47,410 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 21:53:47,410 INFO L85 PathProgramCache]: Analyzing trace with hash -639075496, now seen corresponding path program 1 times [2023-11-06 21:53:47,411 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 21:53:47,411 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1243595496] [2023-11-06 21:53:47,412 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 21:53:47,412 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 21:53:47,442 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 21:53:47,598 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2023-11-06 21:53:47,601 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 21:53:47,605 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 21:53:47,605 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 21:53:47,606 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1243595496] [2023-11-06 21:53:47,606 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1243595496] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 21:53:47,607 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 21:53:47,607 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-11-06 21:53:47,607 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1243313006] [2023-11-06 21:53:47,608 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 21:53:47,609 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-11-06 21:53:47,610 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 21:53:47,611 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-11-06 21:53:47,611 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-06 21:53:47,612 INFO L87 Difference]: Start difference. First operand 82 states and 106 transitions. Second operand has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 21:53:47,640 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 21:53:47,640 INFO L93 Difference]: Finished difference Result 126 states and 162 transitions. [2023-11-06 21:53:47,641 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-11-06 21:53:47,641 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 24 [2023-11-06 21:53:47,642 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 21:53:47,644 INFO L225 Difference]: With dead ends: 126 [2023-11-06 21:53:47,644 INFO L226 Difference]: Without dead ends: 73 [2023-11-06 21:53:47,645 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-06 21:53:47,647 INFO L413 NwaCegarLoop]: 93 mSDtfsCounter, 16 mSDsluCounter, 72 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 165 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-06 21:53:47,648 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 165 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-06 21:53:47,649 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 73 states. [2023-11-06 21:53:47,661 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 73 to 73. [2023-11-06 21:53:47,662 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 73 states, 53 states have (on average 1.320754716981132) internal successors, (70), 61 states have internal predecessors, (70), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 8 states have call predecessors, (12), 12 states have call successors, (12) [2023-11-06 21:53:47,664 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 73 states to 73 states and 94 transitions. [2023-11-06 21:53:47,664 INFO L78 Accepts]: Start accepts. Automaton has 73 states and 94 transitions. Word has length 24 [2023-11-06 21:53:47,665 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 21:53:47,665 INFO L495 AbstractCegarLoop]: Abstraction has 73 states and 94 transitions. [2023-11-06 21:53:47,665 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.666666666666667) internal successors, (20), 3 states have internal predecessors, (20), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 21:53:47,665 INFO L276 IsEmpty]: Start isEmpty. Operand 73 states and 94 transitions. [2023-11-06 21:53:47,667 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2023-11-06 21:53:47,667 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 21:53:47,668 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 21:53:47,668 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2023-11-06 21:53:47,668 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 21:53:47,669 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 21:53:47,669 INFO L85 PathProgramCache]: Analyzing trace with hash 1922236756, now seen corresponding path program 1 times [2023-11-06 21:53:47,670 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 21:53:47,670 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [730967068] [2023-11-06 21:53:47,670 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 21:53:47,671 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 21:53:47,702 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 21:53:47,900 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 19 [2023-11-06 21:53:47,903 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 21:53:47,905 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 21:53:47,906 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 21:53:47,906 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [730967068] [2023-11-06 21:53:47,906 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [730967068] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 21:53:47,907 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 21:53:47,907 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2023-11-06 21:53:47,907 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [581324324] [2023-11-06 21:53:47,908 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 21:53:47,908 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2023-11-06 21:53:47,908 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 21:53:47,909 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2023-11-06 21:53:47,910 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30 [2023-11-06 21:53:47,910 INFO L87 Difference]: Start difference. First operand 73 states and 94 transitions. Second operand has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 21:53:48,146 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 21:53:48,146 INFO L93 Difference]: Finished difference Result 246 states and 323 transitions. [2023-11-06 21:53:48,147 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2023-11-06 21:53:48,147 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 28 [2023-11-06 21:53:48,148 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 21:53:48,150 INFO L225 Difference]: With dead ends: 246 [2023-11-06 21:53:48,151 INFO L226 Difference]: Without dead ends: 180 [2023-11-06 21:53:48,152 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=22, Invalid=34, Unknown=0, NotChecked=0, Total=56 [2023-11-06 21:53:48,154 INFO L413 NwaCegarLoop]: 102 mSDtfsCounter, 245 mSDsluCounter, 296 mSDsCounter, 0 mSdLazyCounter, 99 mSolverCounterSat, 34 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 245 SdHoareTripleChecker+Valid, 398 SdHoareTripleChecker+Invalid, 133 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 34 IncrementalHoareTripleChecker+Valid, 99 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-11-06 21:53:48,155 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [245 Valid, 398 Invalid, 133 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [34 Valid, 99 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-11-06 21:53:48,156 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 180 states. [2023-11-06 21:53:48,203 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 180 to 174. [2023-11-06 21:53:48,205 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 174 states, 125 states have (on average 1.352) internal successors, (169), 143 states have internal predecessors, (169), 29 states have call successors, (29), 19 states have call predecessors, (29), 19 states have return successors, (30), 19 states have call predecessors, (30), 29 states have call successors, (30) [2023-11-06 21:53:48,208 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 174 states to 174 states and 228 transitions. [2023-11-06 21:53:48,208 INFO L78 Accepts]: Start accepts. Automaton has 174 states and 228 transitions. Word has length 28 [2023-11-06 21:53:48,209 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 21:53:48,209 INFO L495 AbstractCegarLoop]: Abstraction has 174 states and 228 transitions. [2023-11-06 21:53:48,209 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 21:53:48,210 INFO L276 IsEmpty]: Start isEmpty. Operand 174 states and 228 transitions. [2023-11-06 21:53:48,214 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2023-11-06 21:53:48,214 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 21:53:48,214 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 21:53:48,214 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2023-11-06 21:53:48,215 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 21:53:48,215 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 21:53:48,215 INFO L85 PathProgramCache]: Analyzing trace with hash 1773208458, now seen corresponding path program 1 times [2023-11-06 21:53:48,216 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 21:53:48,216 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [709497755] [2023-11-06 21:53:48,216 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 21:53:48,216 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 21:53:48,240 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 21:53:48,383 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 23 [2023-11-06 21:53:48,386 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 21:53:48,401 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 21:53:48,401 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 21:53:48,402 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [709497755] [2023-11-06 21:53:48,402 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [709497755] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 21:53:48,402 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 21:53:48,402 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2023-11-06 21:53:48,403 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1593733153] [2023-11-06 21:53:48,403 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 21:53:48,403 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2023-11-06 21:53:48,404 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 21:53:48,404 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2023-11-06 21:53:48,405 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2023-11-06 21:53:48,405 INFO L87 Difference]: Start difference. First operand 174 states and 228 transitions. Second operand has 5 states, 5 states have (on average 5.8) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 21:53:48,483 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 21:53:48,484 INFO L93 Difference]: Finished difference Result 304 states and 401 transitions. [2023-11-06 21:53:48,484 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2023-11-06 21:53:48,484 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 5.8) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 32 [2023-11-06 21:53:48,485 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 21:53:48,485 INFO L225 Difference]: With dead ends: 304 [2023-11-06 21:53:48,485 INFO L226 Difference]: Without dead ends: 0 [2023-11-06 21:53:48,488 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=25, Unknown=0, NotChecked=0, Total=42 [2023-11-06 21:53:48,490 INFO L413 NwaCegarLoop]: 56 mSDtfsCounter, 40 mSDsluCounter, 107 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 40 SdHoareTripleChecker+Valid, 163 SdHoareTripleChecker+Invalid, 23 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-06 21:53:48,490 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [40 Valid, 163 Invalid, 23 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-06 21:53:48,491 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2023-11-06 21:53:48,492 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2023-11-06 21:53:48,492 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 21:53:48,492 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2023-11-06 21:53:48,492 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 32 [2023-11-06 21:53:48,493 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 21:53:48,493 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2023-11-06 21:53:48,493 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 5.8) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 21:53:48,494 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2023-11-06 21:53:48,494 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2023-11-06 21:53:48,497 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2023-11-06 21:53:48,498 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2023-11-06 21:53:48,500 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2023-11-06 21:53:49,036 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 681 688) no Hoare annotation was computed. [2023-11-06 21:53:49,037 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 681 688) the Hoare annotation is: true [2023-11-06 21:53:49,037 INFO L899 garLoopResultBuilder]: For program point deactivatePumpFINAL(lines 681 688) no Hoare annotation was computed. [2023-11-06 21:53:49,037 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 614 620) no Hoare annotation was computed. [2023-11-06 21:53:49,038 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 614 620) the Hoare annotation is: true [2023-11-06 21:53:49,038 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 449 460) the Hoare annotation is: true [2023-11-06 21:53:49,038 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 449 460) no Hoare annotation was computed. [2023-11-06 21:53:49,039 INFO L899 garLoopResultBuilder]: For program point L453-1(lines 449 460) no Hoare annotation was computed. [2023-11-06 21:53:49,039 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 846 875) no Hoare annotation was computed. [2023-11-06 21:53:49,039 INFO L899 garLoopResultBuilder]: For program point L860(lines 860 864) no Hoare annotation was computed. [2023-11-06 21:53:49,040 INFO L902 garLoopResultBuilder]: At program point L860-1(lines 860 864) the Hoare annotation is: true [2023-11-06 21:53:49,041 INFO L899 garLoopResultBuilder]: For program point L857(line 857) no Hoare annotation was computed. [2023-11-06 21:53:49,042 INFO L902 garLoopResultBuilder]: At program point L856-2(lines 856 870) the Hoare annotation is: true [2023-11-06 21:53:49,043 INFO L902 garLoopResultBuilder]: At program point L852(line 852) the Hoare annotation is: true [2023-11-06 21:53:49,044 INFO L899 garLoopResultBuilder]: For program point L852-1(line 852) no Hoare annotation was computed. [2023-11-06 21:53:49,046 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 846 875) the Hoare annotation is: true [2023-11-06 21:53:49,046 INFO L902 garLoopResultBuilder]: At program point L871(lines 846 875) the Hoare annotation is: true [2023-11-06 21:53:49,046 INFO L899 garLoopResultBuilder]: For program point L867(line 867) no Hoare annotation was computed. [2023-11-06 21:53:49,048 INFO L895 garLoopResultBuilder]: At program point L667(line 667) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (not (= 0 ~systemActive~0)))) [2023-11-06 21:53:49,049 INFO L895 garLoopResultBuilder]: At program point L667-1(lines 648 672) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (not (= 0 ~systemActive~0)))) [2023-11-06 21:53:49,049 INFO L899 garLoopResultBuilder]: For program point L601-1(lines 601 607) no Hoare annotation was computed. [2023-11-06 21:53:49,049 INFO L895 garLoopResultBuilder]: At program point L787(line 787) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0)) [2023-11-06 21:53:49,050 INFO L899 garLoopResultBuilder]: For program point L787-1(line 787) no Hoare annotation was computed. [2023-11-06 21:53:49,050 INFO L899 garLoopResultBuilder]: For program point timeShiftFINAL(lines 590 613) no Hoare annotation was computed. [2023-11-06 21:53:49,050 INFO L899 garLoopResultBuilder]: For program point L594-1(lines 593 612) no Hoare annotation was computed. [2023-11-06 21:53:49,051 INFO L899 garLoopResultBuilder]: For program point L945(line 945) no Hoare annotation was computed. [2023-11-06 21:53:49,051 INFO L899 garLoopResultBuilder]: For program point L656(lines 656 664) no Hoare annotation was computed. [2023-11-06 21:53:49,052 INFO L899 garLoopResultBuilder]: For program point L429(lines 429 433) no Hoare annotation was computed. [2023-11-06 21:53:49,052 INFO L899 garLoopResultBuilder]: For program point L652(lines 652 669) no Hoare annotation was computed. [2023-11-06 21:53:49,052 INFO L895 garLoopResultBuilder]: At program point L429-2(lines 425 436) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 21:53:49,052 INFO L899 garLoopResultBuilder]: For program point L793(lines 793 799) no Hoare annotation was computed. [2023-11-06 21:53:49,053 INFO L895 garLoopResultBuilder]: At program point L694(line 694) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 21:53:49,053 INFO L899 garLoopResultBuilder]: For program point L694-1(line 694) no Hoare annotation was computed. [2023-11-06 21:53:49,053 INFO L899 garLoopResultBuilder]: For program point L789(lines 789 802) no Hoare annotation was computed. [2023-11-06 21:53:49,053 INFO L895 garLoopResultBuilder]: At program point L789-1(lines 781 805) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0)) [2023-11-06 21:53:49,054 INFO L895 garLoopResultBuilder]: At program point __automaton_fail_returnLabel#1(lines 941 948) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 21:53:49,054 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 590 613) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0)) [2023-11-06 21:53:49,059 INFO L895 garLoopResultBuilder]: At program point L662(line 662) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 21:53:49,060 INFO L895 garLoopResultBuilder]: At program point L658(line 658) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 21:53:49,060 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 590 613) no Hoare annotation was computed. [2023-11-06 21:53:49,061 INFO L895 garLoopResultBuilder]: At program point isMethaneAlarm_returnLabel#1(lines 689 699) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 21:53:49,061 INFO L895 garLoopResultBuilder]: At program point isPumpRunning_returnLabel#1(lines 700 708) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (= |timeShift_isPumpRunning_#res#1| 0))) [2023-11-06 21:53:49,062 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 945) no Hoare annotation was computed. [2023-11-06 21:53:49,063 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 461 469) the Hoare annotation is: true [2023-11-06 21:53:49,066 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalFINAL(lines 461 469) no Hoare annotation was computed. [2023-11-06 21:53:49,067 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 461 469) no Hoare annotation was computed. [2023-11-06 21:53:49,067 INFO L902 garLoopResultBuilder]: At program point L576(lines 515 580) the Hoare annotation is: true [2023-11-06 21:53:49,067 INFO L899 garLoopResultBuilder]: For program point L927(lines 927 934) no Hoare annotation was computed. [2023-11-06 21:53:49,068 INFO L899 garLoopResultBuilder]: For program point L927-2(lines 927 934) no Hoare annotation was computed. [2023-11-06 21:53:49,068 INFO L899 garLoopResultBuilder]: For program point L535(lines 535 541) no Hoare annotation was computed. [2023-11-06 21:53:49,069 INFO L899 garLoopResultBuilder]: For program point L535-1(lines 535 541) no Hoare annotation was computed. [2023-11-06 21:53:49,070 INFO L899 garLoopResultBuilder]: For program point L527(lines 527 531) no Hoare annotation was computed. [2023-11-06 21:53:49,070 INFO L902 garLoopResultBuilder]: At program point runTest_returnLabel#1(lines 907 916) the Hoare annotation is: true [2023-11-06 21:53:49,072 INFO L895 garLoopResultBuilder]: At program point select_features_returnLabel#1(lines 821 827) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0)) [2023-11-06 21:53:49,075 INFO L902 garLoopResultBuilder]: At program point main_returnLabel#1(lines 917 939) the Hoare annotation is: true [2023-11-06 21:53:49,075 INFO L899 garLoopResultBuilder]: For program point L-1(line -1) no Hoare annotation was computed. [2023-11-06 21:53:49,075 INFO L895 garLoopResultBuilder]: At program point L573(lines 524 574) the Hoare annotation is: false [2023-11-06 21:53:49,076 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startFINAL(line -1) no Hoare annotation was computed. [2023-11-06 21:53:49,076 INFO L899 garLoopResultBuilder]: For program point L561(lines 561 567) no Hoare annotation was computed. [2023-11-06 21:53:49,077 INFO L895 garLoopResultBuilder]: At program point L561-2(lines 555 568) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 21:53:49,077 INFO L895 garLoopResultBuilder]: At program point setup_returnLabel#1(lines 900 906) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= 1 ~systemActive~0) (= |ULTIMATE.start_main_~tmp~8#1| 1)) [2023-11-06 21:53:49,077 INFO L899 garLoopResultBuilder]: For program point L545(lines 545 551) no Hoare annotation was computed. [2023-11-06 21:53:49,077 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2023-11-06 21:53:49,078 INFO L899 garLoopResultBuilder]: For program point L545-1(lines 545 551) no Hoare annotation was computed. [2023-11-06 21:53:49,078 INFO L899 garLoopResultBuilder]: For program point L768(lines 768 774) no Hoare annotation was computed. [2023-11-06 21:53:49,078 INFO L899 garLoopResultBuilder]: For program point L768-1(lines 768 774) no Hoare annotation was computed. [2023-11-06 21:53:49,079 INFO L895 garLoopResultBuilder]: At program point L570(lines 525 572) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 21:53:49,080 INFO L895 garLoopResultBuilder]: At program point L537(line 537) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 21:53:49,080 INFO L899 garLoopResultBuilder]: For program point $Ultimate##0(line -1) no Hoare annotation was computed. [2023-11-06 21:53:49,080 INFO L895 garLoopResultBuilder]: At program point select_helpers_returnLabel#1(lines 828 834) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0)) [2023-11-06 21:53:49,080 INFO L895 garLoopResultBuilder]: At program point stopSystem_returnLabel#1(lines 764 778) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 21:53:49,081 INFO L899 garLoopResultBuilder]: For program point L526(lines 525 572) no Hoare annotation was computed. [2023-11-06 21:53:49,081 INFO L895 garLoopResultBuilder]: At program point valid_product_returnLabel#1(lines 835 843) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= 1 ~systemActive~0)) [2023-11-06 21:53:49,081 INFO L899 garLoopResultBuilder]: For program point L555(lines 555 568) no Hoare annotation was computed. [2023-11-06 21:53:49,081 INFO L895 garLoopResultBuilder]: At program point L547(line 547) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 21:53:49,082 INFO L895 garLoopResultBuilder]: At program point L770(line 770) the Hoare annotation is: false [2023-11-06 21:53:49,084 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 437 448) no Hoare annotation was computed. [2023-11-06 21:53:49,084 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 437 448) the Hoare annotation is: true [2023-11-06 21:53:49,084 INFO L899 garLoopResultBuilder]: For program point L441-1(lines 437 448) no Hoare annotation was computed. [2023-11-06 21:53:49,085 INFO L895 garLoopResultBuilder]: At program point L636(line 636) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= 0 ~systemActive~0)) [2023-11-06 21:53:49,085 INFO L895 garLoopResultBuilder]: At program point L632(line 632) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= 0 ~systemActive~0)) [2023-11-06 21:53:49,085 INFO L899 garLoopResultBuilder]: For program point L630(lines 630 638) no Hoare annotation was computed. [2023-11-06 21:53:49,085 INFO L899 garLoopResultBuilder]: For program point L626(lines 626 643) no Hoare annotation was computed. [2023-11-06 21:53:49,085 INFO L899 garLoopResultBuilder]: For program point L754(lines 754 758) no Hoare annotation was computed. [2023-11-06 21:53:49,085 INFO L899 garLoopResultBuilder]: For program point L754-2(lines 754 758) no Hoare annotation was computed. [2023-11-06 21:53:49,086 INFO L895 garLoopResultBuilder]: At program point isLowWaterSensorDry_returnLabel#1(lines 502 510) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= 0 ~systemActive~0)) [2023-11-06 21:53:49,086 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 622 646) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) (= 0 ~systemActive~0)) [2023-11-06 21:53:49,086 INFO L895 garLoopResultBuilder]: At program point L641(line 641) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) (= 0 ~systemActive~0)) [2023-11-06 21:53:49,086 INFO L899 garLoopResultBuilder]: For program point L641-1(lines 622 646) no Hoare annotation was computed. [2023-11-06 21:53:49,087 INFO L895 garLoopResultBuilder]: At program point isLowWaterLevel_returnLabel#1(lines 745 763) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= 0 ~systemActive~0)) [2023-11-06 21:53:49,087 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__lowWaterSensorEXIT(lines 622 646) no Hoare annotation was computed. [2023-11-06 21:53:49,089 INFO L445 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1] [2023-11-06 21:53:49,092 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2023-11-06 21:53:49,118 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 06.11 09:53:49 BoogieIcfgContainer [2023-11-06 21:53:49,118 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2023-11-06 21:53:49,119 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2023-11-06 21:53:49,119 INFO L270 PluginConnector]: Initializing Witness Printer... [2023-11-06 21:53:49,119 INFO L274 PluginConnector]: Witness Printer initialized [2023-11-06 21:53:49,119 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 09:53:46" (3/4) ... [2023-11-06 21:53:49,122 INFO L137 WitnessPrinter]: Generating witness for correct program [2023-11-06 21:53:49,127 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2023-11-06 21:53:49,127 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2023-11-06 21:53:49,127 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2023-11-06 21:53:49,127 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2023-11-06 21:53:49,127 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2023-11-06 21:53:49,127 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2023-11-06 21:53:49,128 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2023-11-06 21:53:49,128 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2023-11-06 21:53:49,137 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 17 nodes and edges [2023-11-06 21:53:49,137 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2023-11-06 21:53:49,138 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2023-11-06 21:53:49,139 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-06 21:53:49,139 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-06 21:53:49,172 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((pumpRunning == 0) && (\result == 1)) && (1 == systemActive)) [2023-11-06 21:53:49,172 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (1 == systemActive)) && (tmp == 1)) [2023-11-06 21:53:49,173 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 21:53:49,174 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && !((0 == systemActive)))) [2023-11-06 21:53:49,175 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || (pumpRunning == 0)) [2023-11-06 21:53:49,175 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 21:53:49,176 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\result == 0))) [2023-11-06 21:53:49,176 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || (0 == systemActive)) [2023-11-06 21:53:49,177 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 21:53:49,177 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || (0 == systemActive)) [2023-11-06 21:53:49,226 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((pumpRunning == 0) && (\result == 1)) && (1 == systemActive)) [2023-11-06 21:53:49,227 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (1 == systemActive)) && (tmp == 1)) [2023-11-06 21:53:49,228 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 21:53:49,229 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && !((0 == systemActive)))) [2023-11-06 21:53:49,230 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || (pumpRunning == 0)) [2023-11-06 21:53:49,230 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 21:53:49,231 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\result == 0))) [2023-11-06 21:53:49,231 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || (0 == systemActive)) [2023-11-06 21:53:49,231 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 21:53:49,232 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || (0 == systemActive)) [2023-11-06 21:53:49,261 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/witness.graphml.graphml [2023-11-06 21:53:49,262 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/witness.graphml.yaml [2023-11-06 21:53:49,262 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2023-11-06 21:53:49,263 INFO L158 Benchmark]: Toolchain (without parser) took 3635.70ms. Allocated memory was 148.9MB in the beginning and 186.6MB in the end (delta: 37.7MB). Free memory was 117.7MB in the beginning and 97.1MB in the end (delta: 20.6MB). Peak memory consumption was 61.1MB. Max. memory is 16.1GB. [2023-11-06 21:53:49,263 INFO L158 Benchmark]: CDTParser took 0.32ms. Allocated memory is still 109.1MB. Free memory is still 70.0MB. There was no memory consumed. Max. memory is 16.1GB. [2023-11-06 21:53:49,264 INFO L158 Benchmark]: CACSL2BoogieTranslator took 550.29ms. Allocated memory is still 148.9MB. Free memory was 117.3MB in the beginning and 98.5MB in the end (delta: 18.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2023-11-06 21:53:49,264 INFO L158 Benchmark]: Boogie Procedure Inliner took 69.42ms. Allocated memory is still 148.9MB. Free memory was 98.5MB in the beginning and 96.0MB in the end (delta: 2.5MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2023-11-06 21:53:49,265 INFO L158 Benchmark]: Boogie Preprocessor took 61.82ms. Allocated memory is still 148.9MB. Free memory was 96.0MB in the beginning and 94.5MB in the end (delta: 1.5MB). There was no memory consumed. Max. memory is 16.1GB. [2023-11-06 21:53:49,265 INFO L158 Benchmark]: RCFGBuilder took 502.62ms. Allocated memory is still 148.9MB. Free memory was 94.5MB in the beginning and 118.2MB in the end (delta: -23.7MB). Peak memory consumption was 21.4MB. Max. memory is 16.1GB. [2023-11-06 21:53:49,266 INFO L158 Benchmark]: TraceAbstraction took 2296.78ms. Allocated memory was 148.9MB in the beginning and 186.6MB in the end (delta: 37.7MB). Free memory was 117.5MB in the beginning and 104.5MB in the end (delta: 13.0MB). Peak memory consumption was 50.2MB. Max. memory is 16.1GB. [2023-11-06 21:53:49,266 INFO L158 Benchmark]: Witness Printer took 143.91ms. Allocated memory is still 186.6MB. Free memory was 104.5MB in the beginning and 97.1MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2023-11-06 21:53:49,269 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.32ms. Allocated memory is still 109.1MB. Free memory is still 70.0MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 550.29ms. Allocated memory is still 148.9MB. Free memory was 117.3MB in the beginning and 98.5MB in the end (delta: 18.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 69.42ms. Allocated memory is still 148.9MB. Free memory was 98.5MB in the beginning and 96.0MB in the end (delta: 2.5MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Boogie Preprocessor took 61.82ms. Allocated memory is still 148.9MB. Free memory was 96.0MB in the beginning and 94.5MB in the end (delta: 1.5MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 502.62ms. Allocated memory is still 148.9MB. Free memory was 94.5MB in the beginning and 118.2MB in the end (delta: -23.7MB). Peak memory consumption was 21.4MB. Max. memory is 16.1GB. * TraceAbstraction took 2296.78ms. Allocated memory was 148.9MB in the beginning and 186.6MB in the end (delta: 37.7MB). Free memory was 117.5MB in the beginning and 104.5MB in the end (delta: 13.0MB). Peak memory consumption was 50.2MB. Max. memory is 16.1GB. * Witness Printer took 143.91ms. Allocated memory is still 186.6MB. Free memory was 104.5MB in the beginning and 97.1MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] - GenericResultAtLocation [Line: 415]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [415] - GenericResultAtLocation [Line: 511]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [511] - GenericResultAtLocation [Line: 581]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [581] - GenericResultAtLocation [Line: 779]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [779] - GenericResultAtLocation [Line: 806]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [806] - GenericResultAtLocation [Line: 844]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [844] - GenericResultAtLocation [Line: 940]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [940] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 945]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 91 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 2.2s, OverallIterations: 4, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.5s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.5s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 305 SdHoareTripleChecker+Valid, 0.2s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 301 mSDsluCounter, 841 SdHoareTripleChecker+Invalid, 0.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 475 mSDsCounter, 38 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 119 IncrementalHoareTripleChecker+Invalid, 157 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 38 mSolverCounterUnsat, 366 mSDtfsCounter, 119 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 27 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=174occurred in iteration=3, InterpolantAutomatonStates: 16, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 4 MinimizatonAttempts, 6 StatesRemovedByMinimization, 1 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 42 LocationsWithAnnotation, 297 PreInvPairs, 336 NumberOfFragments, 227 HoareAnnotationTreeSize, 297 FomulaSimplifications, 42 FormulaSimplificationTreeSizeReduction, 0.1s HoareSimplificationTime, 42 FomulaSimplificationsInter, 674 FormulaSimplificationTreeSizeReductionInter, 0.4s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.6s InterpolantComputationTime, 107 NumberOfCodeBlocks, 107 NumberOfCodeBlocksAsserted, 4 NumberOfCheckSat, 103 ConstructedInterpolants, 0 QuantifiedInterpolants, 207 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 4 InterpolantComputations, 4 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 764]: Loop Invariant Derived loop invariant: ((pumpRunning == 0) && (splverifierCounter == 0)) - InvariantResult [Line: 900]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0) && (\result == 1)) && (1 == systemActive)) && (tmp == 1)) - InvariantResult [Line: 524]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 502]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || (0 == systemActive)) - InvariantResult [Line: 745]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || (0 == systemActive)) - InvariantResult [Line: 846]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 515]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 941]: Loop Invariant Derived loop invariant: !((\old(pumpRunning) == 0)) - InvariantResult [Line: 821]: Loop Invariant Derived loop invariant: ((pumpRunning == 0) && (1 == systemActive)) - InvariantResult [Line: 835]: Loop Invariant Derived loop invariant: (((pumpRunning == 0) && (\result == 1)) && (1 == systemActive)) - InvariantResult [Line: 689]: Loop Invariant Derived loop invariant: !((\old(pumpRunning) == 0)) - InvariantResult [Line: 648]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && !((0 == systemActive)))) - InvariantResult [Line: 525]: Loop Invariant Derived loop invariant: ((pumpRunning == 0) && (splverifierCounter == 0)) - InvariantResult [Line: 828]: Loop Invariant Derived loop invariant: ((pumpRunning == 0) && (1 == systemActive)) - InvariantResult [Line: 781]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || (pumpRunning == 0)) - InvariantResult [Line: 917]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 700]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\result == 0))) - InvariantResult [Line: 856]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 907]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 425]: Loop Invariant Derived loop invariant: !((\old(pumpRunning) == 0)) RESULT: Ultimate proved your program to be correct! [2023-11-06 21:53:49,297 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_cd0fc12c-6b76-4428-be8a-3ad09b7233ef/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE