./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec2_product20.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version e7bb482b Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec2_product20.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 8c57aad23cdcf8081ba5352d473aea77ba42b47e93421a900d6921ce930c9593 --- Real Ultimate output --- This is Ultimate 0.2.3-dev-e7bb482 [2023-11-06 22:28:34,967 INFO L188 SettingsManager]: Resetting all preferences to default values... [2023-11-06 22:28:35,064 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/config/svcomp-Reach-32bit-Automizer_Default.epf [2023-11-06 22:28:35,070 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2023-11-06 22:28:35,071 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2023-11-06 22:28:35,095 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2023-11-06 22:28:35,096 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2023-11-06 22:28:35,096 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2023-11-06 22:28:35,097 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2023-11-06 22:28:35,098 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2023-11-06 22:28:35,099 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2023-11-06 22:28:35,100 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2023-11-06 22:28:35,100 INFO L153 SettingsManager]: * Use SBE=true [2023-11-06 22:28:35,101 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2023-11-06 22:28:35,101 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2023-11-06 22:28:35,102 INFO L153 SettingsManager]: * sizeof long=4 [2023-11-06 22:28:35,102 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2023-11-06 22:28:35,103 INFO L153 SettingsManager]: * sizeof POINTER=4 [2023-11-06 22:28:35,104 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2023-11-06 22:28:35,104 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2023-11-06 22:28:35,105 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2023-11-06 22:28:35,105 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2023-11-06 22:28:35,106 INFO L153 SettingsManager]: * sizeof long double=12 [2023-11-06 22:28:35,106 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2023-11-06 22:28:35,107 INFO L153 SettingsManager]: * Use constant arrays=true [2023-11-06 22:28:35,107 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2023-11-06 22:28:35,108 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2023-11-06 22:28:35,108 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2023-11-06 22:28:35,109 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-11-06 22:28:35,109 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2023-11-06 22:28:35,110 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2023-11-06 22:28:35,110 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2023-11-06 22:28:35,111 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2023-11-06 22:28:35,111 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2023-11-06 22:28:35,112 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2023-11-06 22:28:35,112 INFO L153 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2023-11-06 22:28:35,112 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2023-11-06 22:28:35,113 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2023-11-06 22:28:35,113 INFO L153 SettingsManager]: * Independence relation used for large block encoding in concurrent analysis=SYNTACTIC [2023-11-06 22:28:35,114 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 8c57aad23cdcf8081ba5352d473aea77ba42b47e93421a900d6921ce930c9593 [2023-11-06 22:28:35,398 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2023-11-06 22:28:35,431 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2023-11-06 22:28:35,433 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2023-11-06 22:28:35,435 INFO L270 PluginConnector]: Initializing CDTParser... [2023-11-06 22:28:35,436 INFO L274 PluginConnector]: CDTParser initialized [2023-11-06 22:28:35,437 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/../../sv-benchmarks/c/product-lines/minepump_spec2_product20.cil.c [2023-11-06 22:28:38,675 INFO L533 CDTParser]: Created temporary CDT project at NULL [2023-11-06 22:28:39,014 INFO L384 CDTParser]: Found 1 translation units. [2023-11-06 22:28:39,020 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/sv-benchmarks/c/product-lines/minepump_spec2_product20.cil.c [2023-11-06 22:28:39,051 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/data/2537a9639/7ee66c9b6d1d4c4fa458efc68e829790/FLAGe5ea62092 [2023-11-06 22:28:39,072 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/data/2537a9639/7ee66c9b6d1d4c4fa458efc68e829790 [2023-11-06 22:28:39,081 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2023-11-06 22:28:39,083 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2023-11-06 22:28:39,087 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2023-11-06 22:28:39,087 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2023-11-06 22:28:39,093 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2023-11-06 22:28:39,094 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,095 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2a19e3b3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39, skipping insertion in model container [2023-11-06 22:28:39,095 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,173 INFO L177 MainTranslator]: Built tables and reachable declarations [2023-11-06 22:28:39,495 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/sv-benchmarks/c/product-lines/minepump_spec2_product20.cil.c[15113,15126] [2023-11-06 22:28:39,512 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-06 22:28:39,527 INFO L202 MainTranslator]: Completed pre-run [2023-11-06 22:28:39,539 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [49] [2023-11-06 22:28:39,541 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [91] [2023-11-06 22:28:39,541 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [129] [2023-11-06 22:28:39,541 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [224] [2023-11-06 22:28:39,542 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [324] [2023-11-06 22:28:39,543 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [690] [2023-11-06 22:28:39,544 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [699] [2023-11-06 22:28:39,544 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [770] [2023-11-06 22:28:39,657 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/sv-benchmarks/c/product-lines/minepump_spec2_product20.cil.c[15113,15126] [2023-11-06 22:28:39,689 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-06 22:28:39,714 INFO L206 MainTranslator]: Completed translation [2023-11-06 22:28:39,715 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39 WrapperNode [2023-11-06 22:28:39,716 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2023-11-06 22:28:39,717 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2023-11-06 22:28:39,717 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2023-11-06 22:28:39,718 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2023-11-06 22:28:39,726 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,758 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,800 INFO L138 Inliner]: procedures = 55, calls = 97, calls flagged for inlining = 21, calls inlined = 18, statements flattened = 174 [2023-11-06 22:28:39,800 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2023-11-06 22:28:39,801 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2023-11-06 22:28:39,802 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2023-11-06 22:28:39,802 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2023-11-06 22:28:39,812 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,813 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,827 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,829 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,835 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,851 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,853 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,854 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,861 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2023-11-06 22:28:39,862 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2023-11-06 22:28:39,864 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2023-11-06 22:28:39,864 INFO L274 PluginConnector]: RCFGBuilder initialized [2023-11-06 22:28:39,865 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (1/1) ... [2023-11-06 22:28:39,872 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-11-06 22:28:39,884 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/z3 [2023-11-06 22:28:39,899 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2023-11-06 22:28:39,935 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2023-11-06 22:28:39,951 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2023-11-06 22:28:39,951 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2023-11-06 22:28:39,952 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2023-11-06 22:28:39,952 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2023-11-06 22:28:39,954 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2023-11-06 22:28:39,954 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2023-11-06 22:28:39,954 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2023-11-06 22:28:39,954 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2023-11-06 22:28:39,955 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2023-11-06 22:28:39,955 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2023-11-06 22:28:39,955 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2023-11-06 22:28:39,955 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2023-11-06 22:28:39,956 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2023-11-06 22:28:39,956 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2023-11-06 22:28:39,956 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2023-11-06 22:28:39,956 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2023-11-06 22:28:39,957 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2023-11-06 22:28:39,957 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2023-11-06 22:28:40,080 INFO L236 CfgBuilder]: Building ICFG [2023-11-06 22:28:40,082 INFO L262 CfgBuilder]: Building CFG for each procedure with an implementation [2023-11-06 22:28:40,373 INFO L277 CfgBuilder]: Performing block encoding [2023-11-06 22:28:40,381 INFO L297 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2023-11-06 22:28:40,381 INFO L302 CfgBuilder]: Removed 2 assume(true) statements. [2023-11-06 22:28:40,396 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 10:28:40 BoogieIcfgContainer [2023-11-06 22:28:40,396 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2023-11-06 22:28:40,399 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2023-11-06 22:28:40,399 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2023-11-06 22:28:40,402 INFO L274 PluginConnector]: TraceAbstraction initialized [2023-11-06 22:28:40,402 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 06.11 10:28:39" (1/3) ... [2023-11-06 22:28:40,403 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@16cadbb9 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 06.11 10:28:40, skipping insertion in model container [2023-11-06 22:28:40,403 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:28:39" (2/3) ... [2023-11-06 22:28:40,404 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@16cadbb9 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 06.11 10:28:40, skipping insertion in model container [2023-11-06 22:28:40,404 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 10:28:40" (3/3) ... [2023-11-06 22:28:40,405 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product20.cil.c [2023-11-06 22:28:40,421 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2023-11-06 22:28:40,421 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2023-11-06 22:28:40,475 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2023-11-06 22:28:40,487 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@1cd9cab7, mLbeIndependenceSettings=[IndependenceType=SYNTACTIC, AbstractionType=NONE, UseConditional=, UseSemiCommutativity=, Solver=, SolverTimeout=] [2023-11-06 22:28:40,487 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2023-11-06 22:28:40,491 INFO L276 IsEmpty]: Start isEmpty. Operand has 83 states, 63 states have (on average 1.380952380952381) internal successors, (87), 70 states have internal predecessors, (87), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2023-11-06 22:28:40,518 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2023-11-06 22:28:40,518 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:28:40,519 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:28:40,520 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:28:40,525 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:28:40,526 INFO L85 PathProgramCache]: Analyzing trace with hash -533939434, now seen corresponding path program 1 times [2023-11-06 22:28:40,536 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:28:40,536 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [45925874] [2023-11-06 22:28:40,536 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:28:40,537 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:28:40,655 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:28:40,747 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2023-11-06 22:28:40,751 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:28:40,757 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:28:40,757 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:28:40,758 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [45925874] [2023-11-06 22:28:40,758 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [45925874] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:28:40,759 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:28:40,759 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2023-11-06 22:28:40,761 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2142805053] [2023-11-06 22:28:40,762 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:28:40,766 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2023-11-06 22:28:40,766 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:28:40,802 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2023-11-06 22:28:40,803 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-06 22:28:40,805 INFO L87 Difference]: Start difference. First operand has 83 states, 63 states have (on average 1.380952380952381) internal successors, (87), 70 states have internal predecessors, (87), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) Second operand has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 22:28:40,836 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:28:40,836 INFO L93 Difference]: Finished difference Result 157 states and 212 transitions. [2023-11-06 22:28:40,837 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2023-11-06 22:28:40,838 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 25 [2023-11-06 22:28:40,839 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:28:40,848 INFO L225 Difference]: With dead ends: 157 [2023-11-06 22:28:40,848 INFO L226 Difference]: Without dead ends: 74 [2023-11-06 22:28:40,852 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-06 22:28:40,856 INFO L413 NwaCegarLoop]: 103 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 103 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-06 22:28:40,858 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 103 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-06 22:28:40,873 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 74 states. [2023-11-06 22:28:40,919 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 74 to 74. [2023-11-06 22:28:40,920 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 74 states, 56 states have (on average 1.3035714285714286) internal successors, (73), 62 states have internal predecessors, (73), 11 states have call successors, (11), 7 states have call predecessors, (11), 6 states have return successors, (10), 8 states have call predecessors, (10), 10 states have call successors, (10) [2023-11-06 22:28:40,923 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 74 states to 74 states and 94 transitions. [2023-11-06 22:28:40,925 INFO L78 Accepts]: Start accepts. Automaton has 74 states and 94 transitions. Word has length 25 [2023-11-06 22:28:40,925 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:28:40,925 INFO L495 AbstractCegarLoop]: Abstraction has 74 states and 94 transitions. [2023-11-06 22:28:40,926 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 22:28:40,926 INFO L276 IsEmpty]: Start isEmpty. Operand 74 states and 94 transitions. [2023-11-06 22:28:40,933 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2023-11-06 22:28:40,934 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:28:40,934 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:28:40,935 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2023-11-06 22:28:40,935 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:28:40,936 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:28:40,936 INFO L85 PathProgramCache]: Analyzing trace with hash -1868756667, now seen corresponding path program 1 times [2023-11-06 22:28:40,937 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:28:40,937 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [515587891] [2023-11-06 22:28:40,937 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:28:40,938 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:28:40,992 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:28:41,099 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2023-11-06 22:28:41,101 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:28:41,105 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:28:41,105 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:28:41,105 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [515587891] [2023-11-06 22:28:41,106 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [515587891] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:28:41,106 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:28:41,106 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-11-06 22:28:41,107 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1136289622] [2023-11-06 22:28:41,107 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:28:41,108 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-11-06 22:28:41,108 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:28:41,109 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-11-06 22:28:41,110 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-06 22:28:41,110 INFO L87 Difference]: Start difference. First operand 74 states and 94 transitions. Second operand has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 22:28:41,128 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:28:41,128 INFO L93 Difference]: Finished difference Result 108 states and 136 transitions. [2023-11-06 22:28:41,129 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-11-06 22:28:41,129 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 26 [2023-11-06 22:28:41,129 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:28:41,131 INFO L225 Difference]: With dead ends: 108 [2023-11-06 22:28:41,131 INFO L226 Difference]: Without dead ends: 65 [2023-11-06 22:28:41,132 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-06 22:28:41,134 INFO L413 NwaCegarLoop]: 81 mSDtfsCounter, 17 mSDsluCounter, 59 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-06 22:28:41,135 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 140 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-06 22:28:41,136 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 65 states. [2023-11-06 22:28:41,144 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 65 to 65. [2023-11-06 22:28:41,145 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 65 states, 50 states have (on average 1.32) internal successors, (66), 56 states have internal predecessors, (66), 8 states have call successors, (8), 6 states have call predecessors, (8), 6 states have return successors, (8), 6 states have call predecessors, (8), 8 states have call successors, (8) [2023-11-06 22:28:41,147 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 65 states to 65 states and 82 transitions. [2023-11-06 22:28:41,147 INFO L78 Accepts]: Start accepts. Automaton has 65 states and 82 transitions. Word has length 26 [2023-11-06 22:28:41,148 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:28:41,148 INFO L495 AbstractCegarLoop]: Abstraction has 65 states and 82 transitions. [2023-11-06 22:28:41,148 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 22:28:41,149 INFO L276 IsEmpty]: Start isEmpty. Operand 65 states and 82 transitions. [2023-11-06 22:28:41,150 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2023-11-06 22:28:41,150 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:28:41,151 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:28:41,151 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2023-11-06 22:28:41,151 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:28:41,152 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:28:41,152 INFO L85 PathProgramCache]: Analyzing trace with hash 1886146375, now seen corresponding path program 1 times [2023-11-06 22:28:41,152 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:28:41,153 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1891311613] [2023-11-06 22:28:41,153 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:28:41,153 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:28:41,176 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:28:41,307 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 21 [2023-11-06 22:28:41,309 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:28:41,311 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:28:41,312 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:28:41,312 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1891311613] [2023-11-06 22:28:41,312 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1891311613] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:28:41,312 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:28:41,313 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2023-11-06 22:28:41,313 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1013969903] [2023-11-06 22:28:41,313 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:28:41,314 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2023-11-06 22:28:41,314 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:28:41,314 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2023-11-06 22:28:41,315 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2023-11-06 22:28:41,315 INFO L87 Difference]: Start difference. First operand 65 states and 82 transitions. Second operand has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 22:28:41,433 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:28:41,433 INFO L93 Difference]: Finished difference Result 165 states and 213 transitions. [2023-11-06 22:28:41,434 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2023-11-06 22:28:41,434 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 31 [2023-11-06 22:28:41,434 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:28:41,436 INFO L225 Difference]: With dead ends: 165 [2023-11-06 22:28:41,437 INFO L226 Difference]: Without dead ends: 108 [2023-11-06 22:28:41,438 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 13 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=22, Invalid=34, Unknown=0, NotChecked=0, Total=56 [2023-11-06 22:28:41,439 INFO L413 NwaCegarLoop]: 92 mSDtfsCounter, 147 mSDsluCounter, 192 mSDsCounter, 0 mSdLazyCounter, 12 mSolverCounterSat, 19 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 147 SdHoareTripleChecker+Valid, 284 SdHoareTripleChecker+Invalid, 31 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 19 IncrementalHoareTripleChecker+Valid, 12 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-11-06 22:28:41,440 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [147 Valid, 284 Invalid, 31 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [19 Valid, 12 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-11-06 22:28:41,441 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 108 states. [2023-11-06 22:28:41,459 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 108 to 105. [2023-11-06 22:28:41,460 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 105 states, 80 states have (on average 1.35) internal successors, (108), 89 states have internal predecessors, (108), 13 states have call successors, (13), 11 states have call predecessors, (13), 11 states have return successors, (14), 10 states have call predecessors, (14), 13 states have call successors, (14) [2023-11-06 22:28:41,462 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 105 states to 105 states and 135 transitions. [2023-11-06 22:28:41,463 INFO L78 Accepts]: Start accepts. Automaton has 105 states and 135 transitions. Word has length 31 [2023-11-06 22:28:41,463 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:28:41,463 INFO L495 AbstractCegarLoop]: Abstraction has 105 states and 135 transitions. [2023-11-06 22:28:41,464 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 22:28:41,464 INFO L276 IsEmpty]: Start isEmpty. Operand 105 states and 135 transitions. [2023-11-06 22:28:41,466 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2023-11-06 22:28:41,466 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:28:41,466 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:28:41,466 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2023-11-06 22:28:41,467 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:28:41,467 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:28:41,467 INFO L85 PathProgramCache]: Analyzing trace with hash 1556691395, now seen corresponding path program 1 times [2023-11-06 22:28:41,468 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:28:41,468 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2014965857] [2023-11-06 22:28:41,468 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:28:41,468 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:28:41,487 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:28:41,625 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2023-11-06 22:28:41,628 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:28:41,634 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:28:41,647 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:28:41,647 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2014965857] [2023-11-06 22:28:41,647 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2014965857] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:28:41,648 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:28:41,649 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2023-11-06 22:28:41,649 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1545420963] [2023-11-06 22:28:41,649 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:28:41,650 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2023-11-06 22:28:41,651 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:28:41,652 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2023-11-06 22:28:41,652 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2023-11-06 22:28:41,652 INFO L87 Difference]: Start difference. First operand 105 states and 135 transitions. Second operand has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 22:28:41,769 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:28:41,770 INFO L93 Difference]: Finished difference Result 185 states and 242 transitions. [2023-11-06 22:28:41,773 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2023-11-06 22:28:41,773 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 34 [2023-11-06 22:28:41,774 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:28:41,774 INFO L225 Difference]: With dead ends: 185 [2023-11-06 22:28:41,774 INFO L226 Difference]: Without dead ends: 0 [2023-11-06 22:28:41,776 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=25, Unknown=0, NotChecked=0, Total=42 [2023-11-06 22:28:41,781 INFO L413 NwaCegarLoop]: 54 mSDtfsCounter, 36 mSDsluCounter, 103 mSDsCounter, 0 mSdLazyCounter, 16 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 36 SdHoareTripleChecker+Valid, 157 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 16 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-11-06 22:28:41,785 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [36 Valid, 157 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 16 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-11-06 22:28:41,786 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2023-11-06 22:28:41,786 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2023-11-06 22:28:41,789 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 22:28:41,790 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2023-11-06 22:28:41,790 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 34 [2023-11-06 22:28:41,790 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:28:41,790 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2023-11-06 22:28:41,791 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-06 22:28:41,791 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2023-11-06 22:28:41,791 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2023-11-06 22:28:41,794 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2023-11-06 22:28:41,797 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2023-11-06 22:28:41,800 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2023-11-06 22:28:42,219 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 841 848) no Hoare annotation was computed. [2023-11-06 22:28:42,219 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 841 848) the Hoare annotation is: true [2023-11-06 22:28:42,220 INFO L899 garLoopResultBuilder]: For program point deactivatePumpFINAL(lines 841 848) no Hoare annotation was computed. [2023-11-06 22:28:42,220 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 800 806) no Hoare annotation was computed. [2023-11-06 22:28:42,220 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 800 806) the Hoare annotation is: true [2023-11-06 22:28:42,220 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 162 173) the Hoare annotation is: true [2023-11-06 22:28:42,221 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 162 173) no Hoare annotation was computed. [2023-11-06 22:28:42,221 INFO L899 garLoopResultBuilder]: For program point L166-1(lines 162 173) no Hoare annotation was computed. [2023-11-06 22:28:42,221 INFO L899 garLoopResultBuilder]: For program point L787-1(lines 787 793) no Hoare annotation was computed. [2023-11-06 22:28:42,221 INFO L899 garLoopResultBuilder]: For program point L816(lines 816 824) no Hoare annotation was computed. [2023-11-06 22:28:42,222 INFO L895 garLoopResultBuilder]: At program point isLowWaterSensorDry_returnLabel#1(lines 215 223) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 22:28:42,222 INFO L899 garLoopResultBuilder]: For program point L812(lines 812 829) no Hoare annotation was computed. [2023-11-06 22:28:42,222 INFO L899 garLoopResultBuilder]: For program point timeShiftFINAL(lines 776 799) no Hoare annotation was computed. [2023-11-06 22:28:42,222 INFO L899 garLoopResultBuilder]: For program point L780-1(lines 779 798) no Hoare annotation was computed. [2023-11-06 22:28:42,222 INFO L899 garLoopResultBuilder]: For program point L74(lines 74 84) no Hoare annotation was computed. [2023-11-06 22:28:42,223 INFO L899 garLoopResultBuilder]: For program point L70(lines 70 87) no Hoare annotation was computed. [2023-11-06 22:28:42,223 INFO L895 garLoopResultBuilder]: At program point L70-1(lines 62 90) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0)) [2023-11-06 22:28:42,223 INFO L895 garLoopResultBuilder]: At program point L822(line 822) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 22:28:42,223 INFO L895 garLoopResultBuilder]: At program point L818(line 818) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 22:28:42,224 INFO L899 garLoopResultBuilder]: For program point L75(lines 75 81) no Hoare annotation was computed. [2023-11-06 22:28:42,224 INFO L895 garLoopResultBuilder]: At program point __automaton_fail_returnLabel#1(lines 691 698) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 22:28:42,224 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 776 799) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0)) [2023-11-06 22:28:42,224 INFO L895 garLoopResultBuilder]: At program point isLowWaterLevel_returnLabel#1(lines 905 923) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 22:28:42,225 INFO L895 garLoopResultBuilder]: At program point L827(line 827) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (not (= 0 ~systemActive~0)))) [2023-11-06 22:28:42,225 INFO L895 garLoopResultBuilder]: At program point L827-1(lines 808 832) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (not (= 0 ~systemActive~0)))) [2023-11-06 22:28:42,225 INFO L899 garLoopResultBuilder]: For program point L695(line 695) no Hoare annotation was computed. [2023-11-06 22:28:42,225 INFO L899 garLoopResultBuilder]: For program point L914(lines 914 918) no Hoare annotation was computed. [2023-11-06 22:28:42,225 INFO L899 garLoopResultBuilder]: For program point L914-2(lines 914 918) no Hoare annotation was computed. [2023-11-06 22:28:42,226 INFO L899 garLoopResultBuilder]: For program point L142(lines 142 146) no Hoare annotation was computed. [2023-11-06 22:28:42,226 INFO L895 garLoopResultBuilder]: At program point L142-2(lines 138 149) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-06 22:28:42,226 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 776 799) no Hoare annotation was computed. [2023-11-06 22:28:42,226 INFO L895 garLoopResultBuilder]: At program point isPumpRunning_returnLabel#1(lines 860 868) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (= |timeShift_isPumpRunning_#res#1| 0))) [2023-11-06 22:28:42,227 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 695) no Hoare annotation was computed. [2023-11-06 22:28:42,227 INFO L895 garLoopResultBuilder]: At program point L68(line 68) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0)) [2023-11-06 22:28:42,227 INFO L899 garLoopResultBuilder]: For program point L68-1(line 68) no Hoare annotation was computed. [2023-11-06 22:28:42,227 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 227 256) no Hoare annotation was computed. [2023-11-06 22:28:42,228 INFO L902 garLoopResultBuilder]: At program point L252(lines 227 256) the Hoare annotation is: true [2023-11-06 22:28:42,228 INFO L899 garLoopResultBuilder]: For program point L248(line 248) no Hoare annotation was computed. [2023-11-06 22:28:42,228 INFO L899 garLoopResultBuilder]: For program point L241(lines 241 245) no Hoare annotation was computed. [2023-11-06 22:28:42,228 INFO L902 garLoopResultBuilder]: At program point L241-1(lines 241 245) the Hoare annotation is: true [2023-11-06 22:28:42,229 INFO L899 garLoopResultBuilder]: For program point L238(line 238) no Hoare annotation was computed. [2023-11-06 22:28:42,229 INFO L902 garLoopResultBuilder]: At program point L237-2(lines 237 251) the Hoare annotation is: true [2023-11-06 22:28:42,229 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 227 256) the Hoare annotation is: true [2023-11-06 22:28:42,229 INFO L902 garLoopResultBuilder]: At program point L233(line 233) the Hoare annotation is: true [2023-11-06 22:28:42,229 INFO L899 garLoopResultBuilder]: For program point L233-1(line 233) no Hoare annotation was computed. [2023-11-06 22:28:42,230 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 174 182) the Hoare annotation is: true [2023-11-06 22:28:42,230 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalFINAL(lines 174 182) no Hoare annotation was computed. [2023-11-06 22:28:42,230 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 174 182) no Hoare annotation was computed. [2023-11-06 22:28:42,230 INFO L895 garLoopResultBuilder]: At program point startSystem_returnLabel#1(lines 939 946) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (= |ULTIMATE.start_main_~tmp~1#1| 1) (not (= 0 ~systemActive~0))) [2023-11-06 22:28:42,231 INFO L895 garLoopResultBuilder]: At program point L762(lines 711 763) the Hoare annotation is: false [2023-11-06 22:28:42,231 INFO L902 garLoopResultBuilder]: At program point runTest_returnLabel#1(lines 290 300) the Hoare annotation is: true [2023-11-06 22:28:42,231 INFO L899 garLoopResultBuilder]: For program point L750(lines 750 756) no Hoare annotation was computed. [2023-11-06 22:28:42,231 INFO L895 garLoopResultBuilder]: At program point L750-2(lines 742 757) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (= |ULTIMATE.start_main_~tmp~1#1| 1)) [2023-11-06 22:28:42,232 INFO L895 garLoopResultBuilder]: At program point select_features_returnLabel#1(lines 106 112) the Hoare annotation is: (and (= ~pumpRunning~0 0) (not (= 0 ~systemActive~0))) [2023-11-06 22:28:42,232 INFO L899 garLoopResultBuilder]: For program point L713(lines 712 761) no Hoare annotation was computed. [2023-11-06 22:28:42,232 INFO L902 garLoopResultBuilder]: At program point main_returnLabel#1(lines 301 323) the Hoare annotation is: true [2023-11-06 22:28:42,232 INFO L899 garLoopResultBuilder]: For program point L742(lines 742 757) no Hoare annotation was computed. [2023-11-06 22:28:42,232 INFO L899 garLoopResultBuilder]: For program point L928(lines 928 934) no Hoare annotation was computed. [2023-11-06 22:28:42,233 INFO L899 garLoopResultBuilder]: For program point L-1(line -1) no Hoare annotation was computed. [2023-11-06 22:28:42,233 INFO L899 garLoopResultBuilder]: For program point L928-1(lines 928 934) no Hoare annotation was computed. [2023-11-06 22:28:42,233 INFO L895 garLoopResultBuilder]: At program point L734(line 734) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (= |ULTIMATE.start_main_~tmp~1#1| 1)) [2023-11-06 22:28:42,233 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startFINAL(line -1) no Hoare annotation was computed. [2023-11-06 22:28:42,234 INFO L895 garLoopResultBuilder]: At program point L759(lines 712 761) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (= |ULTIMATE.start_main_~tmp~1#1| 1)) [2023-11-06 22:28:42,234 INFO L899 garLoopResultBuilder]: For program point L722(lines 722 728) no Hoare annotation was computed. [2023-11-06 22:28:42,234 INFO L899 garLoopResultBuilder]: For program point L722-1(lines 722 728) no Hoare annotation was computed. [2023-11-06 22:28:42,234 INFO L899 garLoopResultBuilder]: For program point L714(lines 714 718) no Hoare annotation was computed. [2023-11-06 22:28:42,234 INFO L895 garLoopResultBuilder]: At program point setup_returnLabel#1(lines 282 288) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= |ULTIMATE.start_main_~tmp~1#1| 1) (not (= 0 ~systemActive~0))) [2023-11-06 22:28:42,235 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2023-11-06 22:28:42,235 INFO L899 garLoopResultBuilder]: For program point $Ultimate##0(line -1) no Hoare annotation was computed. [2023-11-06 22:28:42,235 INFO L895 garLoopResultBuilder]: At program point select_helpers_returnLabel#1(lines 113 119) the Hoare annotation is: (and (= ~pumpRunning~0 0) (not (= 0 ~systemActive~0))) [2023-11-06 22:28:42,235 INFO L895 garLoopResultBuilder]: At program point L930(line 930) the Hoare annotation is: false [2023-11-06 22:28:42,236 INFO L895 garLoopResultBuilder]: At program point __utac_acc__Specification2_spec__1_returnLabel#1(lines 54 61) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= |ULTIMATE.start_main_~tmp~1#1| 1) (not (= 0 ~systemActive~0))) [2023-11-06 22:28:42,236 INFO L902 garLoopResultBuilder]: At program point L765(lines 702 769) the Hoare annotation is: true [2023-11-06 22:28:42,236 INFO L899 garLoopResultBuilder]: For program point L732(lines 732 738) no Hoare annotation was computed. [2023-11-06 22:28:42,236 INFO L899 garLoopResultBuilder]: For program point L732-1(lines 732 738) no Hoare annotation was computed. [2023-11-06 22:28:42,236 INFO L899 garLoopResultBuilder]: For program point L311(lines 311 318) no Hoare annotation was computed. [2023-11-06 22:28:42,237 INFO L899 garLoopResultBuilder]: For program point L311-2(lines 311 318) no Hoare annotation was computed. [2023-11-06 22:28:42,237 INFO L895 garLoopResultBuilder]: At program point L724(line 724) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (= |ULTIMATE.start_main_~tmp~1#1| 1)) [2023-11-06 22:28:42,237 INFO L895 garLoopResultBuilder]: At program point stopSystem_returnLabel#1(lines 924 938) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0) (= |ULTIMATE.start_main_~tmp~1#1| 1)) [2023-11-06 22:28:42,237 INFO L895 garLoopResultBuilder]: At program point valid_product_returnLabel#1(lines 120 128) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_valid_product_#res#1| 1) (not (= 0 ~systemActive~0))) [2023-11-06 22:28:42,238 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 150 161) no Hoare annotation was computed. [2023-11-06 22:28:42,238 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 150 161) the Hoare annotation is: true [2023-11-06 22:28:42,238 INFO L899 garLoopResultBuilder]: For program point L154-1(lines 150 161) no Hoare annotation was computed. [2023-11-06 22:28:42,241 INFO L445 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1] [2023-11-06 22:28:42,243 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2023-11-06 22:28:42,260 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 06.11 10:28:42 BoogieIcfgContainer [2023-11-06 22:28:42,260 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2023-11-06 22:28:42,261 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2023-11-06 22:28:42,261 INFO L270 PluginConnector]: Initializing Witness Printer... [2023-11-06 22:28:42,262 INFO L274 PluginConnector]: Witness Printer initialized [2023-11-06 22:28:42,262 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 10:28:40" (3/4) ... [2023-11-06 22:28:42,265 INFO L137 WitnessPrinter]: Generating witness for correct program [2023-11-06 22:28:42,269 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2023-11-06 22:28:42,269 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2023-11-06 22:28:42,269 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2023-11-06 22:28:42,270 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2023-11-06 22:28:42,270 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2023-11-06 22:28:42,270 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2023-11-06 22:28:42,270 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2023-11-06 22:28:42,278 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 17 nodes and edges [2023-11-06 22:28:42,278 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2023-11-06 22:28:42,279 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2023-11-06 22:28:42,280 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-06 22:28:42,280 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-06 22:28:42,309 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((pumpRunning == 0) && (\result == 1)) && !((0 == systemActive))) [2023-11-06 22:28:42,310 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (tmp == 1)) && !((0 == systemActive))) [2023-11-06 22:28:42,310 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (tmp == 1)) && !((0 == systemActive))) [2023-11-06 22:28:42,310 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) [2023-11-06 22:28:42,311 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 22:28:42,312 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && !((0 == systemActive)))) [2023-11-06 22:28:42,313 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || (pumpRunning == 0)) [2023-11-06 22:28:42,313 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) && !((0 == systemActive))) [2023-11-06 22:28:42,314 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\result == 0))) [2023-11-06 22:28:42,314 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 22:28:42,314 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) [2023-11-06 22:28:42,315 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 22:28:42,315 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 22:28:42,345 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((pumpRunning == 0) && (\result == 1)) && !((0 == systemActive))) [2023-11-06 22:28:42,346 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (tmp == 1)) && !((0 == systemActive))) [2023-11-06 22:28:42,346 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (tmp == 1)) && !((0 == systemActive))) [2023-11-06 22:28:42,346 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) [2023-11-06 22:28:42,347 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 22:28:42,347 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && !((0 == systemActive)))) [2023-11-06 22:28:42,348 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || (pumpRunning == 0)) [2023-11-06 22:28:42,348 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) && !((0 == systemActive))) [2023-11-06 22:28:42,348 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\result == 0))) [2023-11-06 22:28:42,348 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 22:28:42,349 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) [2023-11-06 22:28:42,349 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 22:28:42,349 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: !((\old(pumpRunning) == 0)) [2023-11-06 22:28:42,364 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/witness.graphml.graphml [2023-11-06 22:28:42,365 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/witness.graphml.yaml [2023-11-06 22:28:42,365 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2023-11-06 22:28:42,366 INFO L158 Benchmark]: Toolchain (without parser) took 3282.53ms. Allocated memory is still 192.9MB. Free memory was 155.7MB in the beginning and 132.8MB in the end (delta: 22.9MB). Peak memory consumption was 24.5MB. Max. memory is 16.1GB. [2023-11-06 22:28:42,366 INFO L158 Benchmark]: CDTParser took 0.30ms. Allocated memory is still 138.4MB. Free memory is still 82.5MB. There was no memory consumed. Max. memory is 16.1GB. [2023-11-06 22:28:42,366 INFO L158 Benchmark]: CACSL2BoogieTranslator took 629.37ms. Allocated memory is still 192.9MB. Free memory was 155.7MB in the beginning and 136.4MB in the end (delta: 19.3MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2023-11-06 22:28:42,367 INFO L158 Benchmark]: Boogie Procedure Inliner took 83.49ms. Allocated memory is still 192.9MB. Free memory was 136.4MB in the beginning and 134.4MB in the end (delta: 2.0MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-11-06 22:28:42,367 INFO L158 Benchmark]: Boogie Preprocessor took 60.48ms. Allocated memory is still 192.9MB. Free memory was 134.4MB in the beginning and 132.7MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-11-06 22:28:42,368 INFO L158 Benchmark]: RCFGBuilder took 534.11ms. Allocated memory is still 192.9MB. Free memory was 132.7MB in the beginning and 117.0MB in the end (delta: 15.7MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2023-11-06 22:28:42,368 INFO L158 Benchmark]: TraceAbstraction took 1861.34ms. Allocated memory is still 192.9MB. Free memory was 116.5MB in the beginning and 140.2MB in the end (delta: -23.7MB). Peak memory consumption was 30.8MB. Max. memory is 16.1GB. [2023-11-06 22:28:42,369 INFO L158 Benchmark]: Witness Printer took 103.77ms. Allocated memory is still 192.9MB. Free memory was 140.2MB in the beginning and 132.8MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2023-11-06 22:28:42,371 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.30ms. Allocated memory is still 138.4MB. Free memory is still 82.5MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 629.37ms. Allocated memory is still 192.9MB. Free memory was 155.7MB in the beginning and 136.4MB in the end (delta: 19.3MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 83.49ms. Allocated memory is still 192.9MB. Free memory was 136.4MB in the beginning and 134.4MB in the end (delta: 2.0MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 60.48ms. Allocated memory is still 192.9MB. Free memory was 134.4MB in the beginning and 132.7MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 534.11ms. Allocated memory is still 192.9MB. Free memory was 132.7MB in the beginning and 117.0MB in the end (delta: 15.7MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * TraceAbstraction took 1861.34ms. Allocated memory is still 192.9MB. Free memory was 116.5MB in the beginning and 140.2MB in the end (delta: -23.7MB). Peak memory consumption was 30.8MB. Max. memory is 16.1GB. * Witness Printer took 103.77ms. Allocated memory is still 192.9MB. Free memory was 140.2MB in the beginning and 132.8MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [49] - GenericResultAtLocation [Line: 91]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [91] - GenericResultAtLocation [Line: 129]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [129] - GenericResultAtLocation [Line: 224]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [224] - GenericResultAtLocation [Line: 324]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [324] - GenericResultAtLocation [Line: 690]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [690] - GenericResultAtLocation [Line: 699]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [699] - GenericResultAtLocation [Line: 770]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [770] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 695]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 83 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 1.8s, OverallIterations: 4, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.4s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 204 SdHoareTripleChecker+Valid, 0.1s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 200 mSDsluCounter, 684 SdHoareTripleChecker+Invalid, 0.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 354 mSDsCounter, 22 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 29 IncrementalHoareTripleChecker+Invalid, 51 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 22 mSolverCounterUnsat, 330 mSDtfsCounter, 29 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 31 GetRequests, 19 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=105occurred in iteration=3, InterpolantAutomatonStates: 16, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 4 MinimizatonAttempts, 3 StatesRemovedByMinimization, 1 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 38 LocationsWithAnnotation, 182 PreInvPairs, 212 NumberOfFragments, 238 HoareAnnotationTreeSize, 182 FomulaSimplifications, 42 FormulaSimplificationTreeSizeReduction, 0.0s HoareSimplificationTime, 38 FomulaSimplificationsInter, 316 FormulaSimplificationTreeSizeReductionInter, 0.4s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.5s InterpolantComputationTime, 116 NumberOfCodeBlocks, 116 NumberOfCodeBlocksAsserted, 4 NumberOfCheckSat, 112 ConstructedInterpolants, 0 QuantifiedInterpolants, 188 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 4 InterpolantComputations, 4 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 924]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) - InvariantResult [Line: 282]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0) && (\result == 1)) && (tmp == 1)) && !((0 == systemActive))) - InvariantResult [Line: 712]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) - InvariantResult [Line: 54]: Loop Invariant Derived loop invariant: ((((pumpRunning == 0) && (\result == 1)) && (tmp == 1)) && !((0 == systemActive))) - InvariantResult [Line: 702]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 939]: Loop Invariant Derived loop invariant: (((((pumpRunning == 0) && (\result == 1)) && (splverifierCounter == 0)) && (tmp == 1)) && !((0 == systemActive))) - InvariantResult [Line: 691]: Loop Invariant Derived loop invariant: !((\old(pumpRunning) == 0)) - InvariantResult [Line: 106]: Loop Invariant Derived loop invariant: ((pumpRunning == 0) && !((0 == systemActive))) - InvariantResult [Line: 711]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 120]: Loop Invariant Derived loop invariant: (((pumpRunning == 0) && (\result == 1)) && !((0 == systemActive))) - InvariantResult [Line: 905]: Loop Invariant Derived loop invariant: !((\old(pumpRunning) == 0)) - InvariantResult [Line: 808]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && !((0 == systemActive)))) - InvariantResult [Line: 113]: Loop Invariant Derived loop invariant: ((pumpRunning == 0) && !((0 == systemActive))) - InvariantResult [Line: 237]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 227]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 301]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 860]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\result == 0))) - InvariantResult [Line: 62]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || (pumpRunning == 0)) - InvariantResult [Line: 215]: Loop Invariant Derived loop invariant: !((\old(pumpRunning) == 0)) - InvariantResult [Line: 138]: Loop Invariant Derived loop invariant: !((\old(pumpRunning) == 0)) - InvariantResult [Line: 290]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2023-11-06 22:28:42,407 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b8e23331-ad5d-44cb-a0db-67aa1ad8c815/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE