./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec4_product22.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version e7bb482b Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec4_product22.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 0a7c3724e5ee5aec618285d48655e08e5160513f4f9a55965746ea75a93f68ad --- Real Ultimate output --- This is Ultimate 0.2.3-dev-e7bb482 [2023-11-06 22:53:33,629 INFO L188 SettingsManager]: Resetting all preferences to default values... [2023-11-06 22:53:33,702 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/config/svcomp-Reach-32bit-Automizer_Default.epf [2023-11-06 22:53:33,708 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2023-11-06 22:53:33,709 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2023-11-06 22:53:33,738 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2023-11-06 22:53:33,739 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2023-11-06 22:53:33,740 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2023-11-06 22:53:33,741 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2023-11-06 22:53:33,741 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2023-11-06 22:53:33,742 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2023-11-06 22:53:33,743 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2023-11-06 22:53:33,743 INFO L153 SettingsManager]: * Use SBE=true [2023-11-06 22:53:33,744 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2023-11-06 22:53:33,745 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2023-11-06 22:53:33,745 INFO L153 SettingsManager]: * sizeof long=4 [2023-11-06 22:53:33,746 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2023-11-06 22:53:33,747 INFO L153 SettingsManager]: * sizeof POINTER=4 [2023-11-06 22:53:33,747 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2023-11-06 22:53:33,748 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2023-11-06 22:53:33,748 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2023-11-06 22:53:33,749 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2023-11-06 22:53:33,750 INFO L153 SettingsManager]: * sizeof long double=12 [2023-11-06 22:53:33,750 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2023-11-06 22:53:33,751 INFO L153 SettingsManager]: * Use constant arrays=true [2023-11-06 22:53:33,751 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2023-11-06 22:53:33,752 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2023-11-06 22:53:33,752 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2023-11-06 22:53:33,753 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-11-06 22:53:33,754 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2023-11-06 22:53:33,754 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2023-11-06 22:53:33,755 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2023-11-06 22:53:33,755 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2023-11-06 22:53:33,755 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2023-11-06 22:53:33,756 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2023-11-06 22:53:33,756 INFO L153 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2023-11-06 22:53:33,757 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2023-11-06 22:53:33,757 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2023-11-06 22:53:33,757 INFO L153 SettingsManager]: * Independence relation used for large block encoding in concurrent analysis=SYNTACTIC [2023-11-06 22:53:33,758 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 0a7c3724e5ee5aec618285d48655e08e5160513f4f9a55965746ea75a93f68ad [2023-11-06 22:53:33,989 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2023-11-06 22:53:34,021 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2023-11-06 22:53:34,024 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2023-11-06 22:53:34,026 INFO L270 PluginConnector]: Initializing CDTParser... [2023-11-06 22:53:34,027 INFO L274 PluginConnector]: CDTParser initialized [2023-11-06 22:53:34,028 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/../../sv-benchmarks/c/product-lines/minepump_spec4_product22.cil.c [2023-11-06 22:53:37,134 INFO L533 CDTParser]: Created temporary CDT project at NULL [2023-11-06 22:53:37,400 INFO L384 CDTParser]: Found 1 translation units. [2023-11-06 22:53:37,402 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/sv-benchmarks/c/product-lines/minepump_spec4_product22.cil.c [2023-11-06 22:53:37,419 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/data/9cb6de252/aaad1089f42944febab6ca1a613ac2f0/FLAG093345d6d [2023-11-06 22:53:37,433 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/data/9cb6de252/aaad1089f42944febab6ca1a613ac2f0 [2023-11-06 22:53:37,435 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2023-11-06 22:53:37,437 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2023-11-06 22:53:37,438 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2023-11-06 22:53:37,439 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2023-11-06 22:53:37,444 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2023-11-06 22:53:37,445 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:37,446 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@21ac8301 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37, skipping insertion in model container [2023-11-06 22:53:37,446 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:37,497 INFO L177 MainTranslator]: Built tables and reachable declarations [2023-11-06 22:53:37,756 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/sv-benchmarks/c/product-lines/minepump_spec4_product22.cil.c[8015,8028] [2023-11-06 22:53:37,851 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-06 22:53:37,869 INFO L202 MainTranslator]: Completed pre-run [2023-11-06 22:53:37,879 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] [2023-11-06 22:53:37,881 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [145] [2023-11-06 22:53:37,881 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [183] [2023-11-06 22:53:37,882 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [376] [2023-11-06 22:53:37,882 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [444] [2023-11-06 22:53:37,882 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [540] [2023-11-06 22:53:37,882 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [549] [2023-11-06 22:53:37,883 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [575] [2023-11-06 22:53:37,905 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/sv-benchmarks/c/product-lines/minepump_spec4_product22.cil.c[8015,8028] [2023-11-06 22:53:37,938 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-06 22:53:37,959 INFO L206 MainTranslator]: Completed translation [2023-11-06 22:53:37,960 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37 WrapperNode [2023-11-06 22:53:37,960 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2023-11-06 22:53:37,961 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2023-11-06 22:53:37,962 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2023-11-06 22:53:37,962 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2023-11-06 22:53:37,970 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:37,985 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,014 INFO L138 Inliner]: procedures = 54, calls = 98, calls flagged for inlining = 22, calls inlined = 19, statements flattened = 193 [2023-11-06 22:53:38,015 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2023-11-06 22:53:38,016 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2023-11-06 22:53:38,016 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2023-11-06 22:53:38,016 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2023-11-06 22:53:38,026 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,026 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,029 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,030 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,036 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,042 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,044 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,046 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,049 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2023-11-06 22:53:38,050 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2023-11-06 22:53:38,050 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2023-11-06 22:53:38,050 INFO L274 PluginConnector]: RCFGBuilder initialized [2023-11-06 22:53:38,051 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (1/1) ... [2023-11-06 22:53:38,061 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-11-06 22:53:38,077 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/z3 [2023-11-06 22:53:38,089 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2023-11-06 22:53:38,121 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2023-11-06 22:53:38,143 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2023-11-06 22:53:38,143 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2023-11-06 22:53:38,143 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2023-11-06 22:53:38,144 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2023-11-06 22:53:38,144 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2023-11-06 22:53:38,144 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2023-11-06 22:53:38,144 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2023-11-06 22:53:38,144 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2023-11-06 22:53:38,145 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2023-11-06 22:53:38,145 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2023-11-06 22:53:38,145 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2023-11-06 22:53:38,145 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2023-11-06 22:53:38,145 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2023-11-06 22:53:38,146 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2023-11-06 22:53:38,146 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2023-11-06 22:53:38,146 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2023-11-06 22:53:38,146 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2023-11-06 22:53:38,146 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2023-11-06 22:53:38,241 INFO L236 CfgBuilder]: Building ICFG [2023-11-06 22:53:38,243 INFO L262 CfgBuilder]: Building CFG for each procedure with an implementation [2023-11-06 22:53:38,518 INFO L277 CfgBuilder]: Performing block encoding [2023-11-06 22:53:38,526 INFO L297 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2023-11-06 22:53:38,527 INFO L302 CfgBuilder]: Removed 2 assume(true) statements. [2023-11-06 22:53:38,529 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 10:53:38 BoogieIcfgContainer [2023-11-06 22:53:38,529 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2023-11-06 22:53:38,532 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2023-11-06 22:53:38,532 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2023-11-06 22:53:38,536 INFO L274 PluginConnector]: TraceAbstraction initialized [2023-11-06 22:53:38,536 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 06.11 10:53:37" (1/3) ... [2023-11-06 22:53:38,537 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5ff5b3d5 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 06.11 10:53:38, skipping insertion in model container [2023-11-06 22:53:38,537 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 06.11 10:53:37" (2/3) ... [2023-11-06 22:53:38,537 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5ff5b3d5 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 06.11 10:53:38, skipping insertion in model container [2023-11-06 22:53:38,538 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 10:53:38" (3/3) ... [2023-11-06 22:53:38,539 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product22.cil.c [2023-11-06 22:53:38,556 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2023-11-06 22:53:38,556 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2023-11-06 22:53:38,605 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2023-11-06 22:53:38,611 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@3b90782d, mLbeIndependenceSettings=[IndependenceType=SYNTACTIC, AbstractionType=NONE, UseConditional=, UseSemiCommutativity=, Solver=, SolverTimeout=] [2023-11-06 22:53:38,612 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2023-11-06 22:53:38,616 INFO L276 IsEmpty]: Start isEmpty. Operand has 83 states, 62 states have (on average 1.3870967741935485) internal successors, (86), 70 states have internal predecessors, (86), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 8 states have call predecessors, (12), 12 states have call successors, (12) [2023-11-06 22:53:38,623 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 20 [2023-11-06 22:53:38,623 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:53:38,624 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:53:38,624 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:53:38,630 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:53:38,630 INFO L85 PathProgramCache]: Analyzing trace with hash 1081284888, now seen corresponding path program 1 times [2023-11-06 22:53:38,639 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:53:38,640 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1122800848] [2023-11-06 22:53:38,640 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:53:38,640 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:53:38,759 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:38,865 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:53:38,866 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:53:38,866 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1122800848] [2023-11-06 22:53:38,867 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1122800848] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:53:38,867 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:53:38,867 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2023-11-06 22:53:38,869 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [114186118] [2023-11-06 22:53:38,870 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:53:38,876 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2023-11-06 22:53:38,877 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:53:38,925 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2023-11-06 22:53:38,926 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-06 22:53:38,929 INFO L87 Difference]: Start difference. First operand has 83 states, 62 states have (on average 1.3870967741935485) internal successors, (86), 70 states have internal predecessors, (86), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 8 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 22:53:39,050 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:53:39,051 INFO L93 Difference]: Finished difference Result 158 states and 215 transitions. [2023-11-06 22:53:39,052 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2023-11-06 22:53:39,053 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19 [2023-11-06 22:53:39,054 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:53:39,062 INFO L225 Difference]: With dead ends: 158 [2023-11-06 22:53:39,063 INFO L226 Difference]: Without dead ends: 74 [2023-11-06 22:53:39,067 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-06 22:53:39,069 INFO L413 NwaCegarLoop]: 104 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 104 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-06 22:53:39,071 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 104 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-06 22:53:39,085 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 74 states. [2023-11-06 22:53:39,114 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 74 to 74. [2023-11-06 22:53:39,116 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 74 states, 55 states have (on average 1.309090909090909) internal successors, (72), 62 states have internal predecessors, (72), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 7 states have call predecessors, (11), 11 states have call successors, (11) [2023-11-06 22:53:39,120 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 74 states to 74 states and 95 transitions. [2023-11-06 22:53:39,124 INFO L78 Accepts]: Start accepts. Automaton has 74 states and 95 transitions. Word has length 19 [2023-11-06 22:53:39,125 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:53:39,129 INFO L495 AbstractCegarLoop]: Abstraction has 74 states and 95 transitions. [2023-11-06 22:53:39,129 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 22:53:39,130 INFO L276 IsEmpty]: Start isEmpty. Operand 74 states and 95 transitions. [2023-11-06 22:53:39,132 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2023-11-06 22:53:39,133 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:53:39,133 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:53:39,135 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2023-11-06 22:53:39,135 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:53:39,136 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:53:39,137 INFO L85 PathProgramCache]: Analyzing trace with hash 1730590592, now seen corresponding path program 1 times [2023-11-06 22:53:39,137 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:53:39,138 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [731461364] [2023-11-06 22:53:39,138 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:53:39,138 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:53:39,176 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:39,297 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:53:39,297 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:53:39,298 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [731461364] [2023-11-06 22:53:39,298 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [731461364] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:53:39,298 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:53:39,298 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-11-06 22:53:39,299 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1510534456] [2023-11-06 22:53:39,299 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:53:39,300 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-11-06 22:53:39,300 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:53:39,301 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-11-06 22:53:39,301 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-06 22:53:39,302 INFO L87 Difference]: Start difference. First operand 74 states and 95 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 22:53:39,321 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:53:39,321 INFO L93 Difference]: Finished difference Result 113 states and 145 transitions. [2023-11-06 22:53:39,322 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-11-06 22:53:39,322 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 20 [2023-11-06 22:53:39,323 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:53:39,324 INFO L225 Difference]: With dead ends: 113 [2023-11-06 22:53:39,324 INFO L226 Difference]: Without dead ends: 65 [2023-11-06 22:53:39,326 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-06 22:53:39,327 INFO L413 NwaCegarLoop]: 82 mSDtfsCounter, 13 mSDsluCounter, 65 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 16 SdHoareTripleChecker+Valid, 147 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-06 22:53:39,328 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [16 Valid, 147 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-06 22:53:39,329 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 65 states. [2023-11-06 22:53:39,339 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 65 to 65. [2023-11-06 22:53:39,340 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 65 states, 49 states have (on average 1.3265306122448979) internal successors, (65), 56 states have internal predecessors, (65), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 5 states have call predecessors, (9), 9 states have call successors, (9) [2023-11-06 22:53:39,342 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 65 states to 65 states and 83 transitions. [2023-11-06 22:53:39,342 INFO L78 Accepts]: Start accepts. Automaton has 65 states and 83 transitions. Word has length 20 [2023-11-06 22:53:39,342 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:53:39,343 INFO L495 AbstractCegarLoop]: Abstraction has 65 states and 83 transitions. [2023-11-06 22:53:39,343 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 22:53:39,343 INFO L276 IsEmpty]: Start isEmpty. Operand 65 states and 83 transitions. [2023-11-06 22:53:39,345 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2023-11-06 22:53:39,345 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:53:39,345 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:53:39,345 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2023-11-06 22:53:39,346 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:53:39,346 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:53:39,347 INFO L85 PathProgramCache]: Analyzing trace with hash -1455931255, now seen corresponding path program 1 times [2023-11-06 22:53:39,347 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:53:39,347 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1631779128] [2023-11-06 22:53:39,347 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:53:39,348 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:53:39,372 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:39,465 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:53:39,465 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:53:39,465 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1631779128] [2023-11-06 22:53:39,466 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1631779128] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:53:39,468 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:53:39,469 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-11-06 22:53:39,469 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [906632489] [2023-11-06 22:53:39,469 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:53:39,470 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-11-06 22:53:39,470 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:53:39,471 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-11-06 22:53:39,471 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-06 22:53:39,471 INFO L87 Difference]: Start difference. First operand 65 states and 83 transitions. Second operand has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 22:53:39,497 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:53:39,498 INFO L93 Difference]: Finished difference Result 123 states and 160 transitions. [2023-11-06 22:53:39,498 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-11-06 22:53:39,498 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 25 [2023-11-06 22:53:39,499 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:53:39,500 INFO L225 Difference]: With dead ends: 123 [2023-11-06 22:53:39,500 INFO L226 Difference]: Without dead ends: 65 [2023-11-06 22:53:39,501 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-06 22:53:39,503 INFO L413 NwaCegarLoop]: 81 mSDtfsCounter, 77 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 77 SdHoareTripleChecker+Valid, 81 SdHoareTripleChecker+Invalid, 2 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-06 22:53:39,504 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [77 Valid, 81 Invalid, 2 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-06 22:53:39,505 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 65 states. [2023-11-06 22:53:39,516 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 65 to 65. [2023-11-06 22:53:39,517 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 65 states, 49 states have (on average 1.3061224489795917) internal successors, (64), 56 states have internal predecessors, (64), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 5 states have call predecessors, (9), 9 states have call successors, (9) [2023-11-06 22:53:39,519 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 65 states to 65 states and 82 transitions. [2023-11-06 22:53:39,519 INFO L78 Accepts]: Start accepts. Automaton has 65 states and 82 transitions. Word has length 25 [2023-11-06 22:53:39,519 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:53:39,520 INFO L495 AbstractCegarLoop]: Abstraction has 65 states and 82 transitions. [2023-11-06 22:53:39,520 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 22:53:39,520 INFO L276 IsEmpty]: Start isEmpty. Operand 65 states and 82 transitions. [2023-11-06 22:53:39,522 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2023-11-06 22:53:39,522 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:53:39,522 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:53:39,522 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2023-11-06 22:53:39,523 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:53:39,523 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:53:39,524 INFO L85 PathProgramCache]: Analyzing trace with hash -930014932, now seen corresponding path program 1 times [2023-11-06 22:53:39,524 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:53:39,524 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1214089648] [2023-11-06 22:53:39,524 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:53:39,524 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:53:39,562 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:39,738 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2023-11-06 22:53:39,741 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:39,744 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2023-11-06 22:53:39,746 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:39,748 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:53:39,748 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:53:39,748 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1214089648] [2023-11-06 22:53:39,749 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1214089648] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:53:39,749 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:53:39,749 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2023-11-06 22:53:39,749 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [773222260] [2023-11-06 22:53:39,750 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:53:39,750 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2023-11-06 22:53:39,750 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:53:39,751 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2023-11-06 22:53:39,752 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2023-11-06 22:53:39,752 INFO L87 Difference]: Start difference. First operand 65 states and 82 transitions. Second operand has 6 states, 6 states have (on average 5.0) internal successors, (30), 5 states have internal predecessors, (30), 2 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-11-06 22:53:40,041 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:53:40,042 INFO L93 Difference]: Finished difference Result 196 states and 256 transitions. [2023-11-06 22:53:40,042 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2023-11-06 22:53:40,042 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 5.0) internal successors, (30), 5 states have internal predecessors, (30), 2 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 35 [2023-11-06 22:53:40,043 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:53:40,046 INFO L225 Difference]: With dead ends: 196 [2023-11-06 22:53:40,046 INFO L226 Difference]: Without dead ends: 138 [2023-11-06 22:53:40,048 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=40, Invalid=70, Unknown=0, NotChecked=0, Total=110 [2023-11-06 22:53:40,049 INFO L413 NwaCegarLoop]: 67 mSDtfsCounter, 117 mSDsluCounter, 222 mSDsCounter, 0 mSdLazyCounter, 123 mSolverCounterSat, 35 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 120 SdHoareTripleChecker+Valid, 289 SdHoareTripleChecker+Invalid, 158 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 35 IncrementalHoareTripleChecker+Valid, 123 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2023-11-06 22:53:40,050 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [120 Valid, 289 Invalid, 158 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [35 Valid, 123 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2023-11-06 22:53:40,051 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 138 states. [2023-11-06 22:53:40,088 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 138 to 116. [2023-11-06 22:53:40,089 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 116 states, 86 states have (on average 1.302325581395349) internal successors, (112), 98 states have internal predecessors, (112), 18 states have call successors, (18), 12 states have call predecessors, (18), 11 states have return successors, (19), 9 states have call predecessors, (19), 18 states have call successors, (19) [2023-11-06 22:53:40,091 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 116 states to 116 states and 149 transitions. [2023-11-06 22:53:40,091 INFO L78 Accepts]: Start accepts. Automaton has 116 states and 149 transitions. Word has length 35 [2023-11-06 22:53:40,092 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:53:40,092 INFO L495 AbstractCegarLoop]: Abstraction has 116 states and 149 transitions. [2023-11-06 22:53:40,092 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 5.0) internal successors, (30), 5 states have internal predecessors, (30), 2 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-11-06 22:53:40,092 INFO L276 IsEmpty]: Start isEmpty. Operand 116 states and 149 transitions. [2023-11-06 22:53:40,095 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2023-11-06 22:53:40,095 INFO L187 NwaCegarLoop]: Found error trace [2023-11-06 22:53:40,095 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-06 22:53:40,096 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2023-11-06 22:53:40,096 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-06 22:53:40,096 INFO L145 PredicateUnifier]: Initialized classic predicate unifier [2023-11-06 22:53:40,098 INFO L85 PathProgramCache]: Analyzing trace with hash 320961478, now seen corresponding path program 1 times [2023-11-06 22:53:40,099 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-06 22:53:40,099 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1759780978] [2023-11-06 22:53:40,099 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-06 22:53:40,100 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-06 22:53:40,130 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:40,259 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2023-11-06 22:53:40,262 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:40,289 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2023-11-06 22:53:40,293 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:40,302 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2023-11-06 22:53:40,304 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-06 22:53:40,307 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-06 22:53:40,308 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-06 22:53:40,308 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1759780978] [2023-11-06 22:53:40,308 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1759780978] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-06 22:53:40,309 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-06 22:53:40,310 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2023-11-06 22:53:40,311 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1626181951] [2023-11-06 22:53:40,312 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-06 22:53:40,313 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2023-11-06 22:53:40,314 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-06 22:53:40,314 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2023-11-06 22:53:40,315 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2023-11-06 22:53:40,315 INFO L87 Difference]: Start difference. First operand 116 states and 149 transitions. Second operand has 7 states, 7 states have (on average 4.571428571428571) internal successors, (32), 5 states have internal predecessors, (32), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2023-11-06 22:53:40,490 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-06 22:53:40,490 INFO L93 Difference]: Finished difference Result 195 states and 253 transitions. [2023-11-06 22:53:40,490 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2023-11-06 22:53:40,491 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 4.571428571428571) internal successors, (32), 5 states have internal predecessors, (32), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 39 [2023-11-06 22:53:40,492 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-06 22:53:40,492 INFO L225 Difference]: With dead ends: 195 [2023-11-06 22:53:40,492 INFO L226 Difference]: Without dead ends: 0 [2023-11-06 22:53:40,497 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 9 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=39, Invalid=71, Unknown=0, NotChecked=0, Total=110 [2023-11-06 22:53:40,503 INFO L413 NwaCegarLoop]: 33 mSDtfsCounter, 85 mSDsluCounter, 102 mSDsCounter, 0 mSdLazyCounter, 86 mSolverCounterSat, 19 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 87 SdHoareTripleChecker+Valid, 135 SdHoareTripleChecker+Invalid, 105 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 19 IncrementalHoareTripleChecker+Valid, 86 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-11-06 22:53:40,504 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [87 Valid, 135 Invalid, 105 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [19 Valid, 86 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-11-06 22:53:40,506 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2023-11-06 22:53:40,507 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2023-11-06 22:53:40,508 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-06 22:53:40,508 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2023-11-06 22:53:40,508 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 39 [2023-11-06 22:53:40,508 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-06 22:53:40,509 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2023-11-06 22:53:40,509 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 4.571428571428571) internal successors, (32), 5 states have internal predecessors, (32), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2023-11-06 22:53:40,509 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2023-11-06 22:53:40,509 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2023-11-06 22:53:40,512 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2023-11-06 22:53:40,513 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2023-11-06 22:53:40,515 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2023-11-06 22:53:41,167 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 285 292) no Hoare annotation was computed. [2023-11-06 22:53:41,168 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 285 292) the Hoare annotation is: true [2023-11-06 22:53:41,168 INFO L899 garLoopResultBuilder]: For program point deactivatePumpFINAL(lines 285 292) no Hoare annotation was computed. [2023-11-06 22:53:41,168 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 218 224) no Hoare annotation was computed. [2023-11-06 22:53:41,168 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 218 224) the Hoare annotation is: true [2023-11-06 22:53:41,168 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 83 94) the Hoare annotation is: true [2023-11-06 22:53:41,168 INFO L899 garLoopResultBuilder]: For program point L87-1(lines 83 94) no Hoare annotation was computed. [2023-11-06 22:53:41,169 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 83 94) no Hoare annotation was computed. [2023-11-06 22:53:41,169 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 446 475) no Hoare annotation was computed. [2023-11-06 22:53:41,169 INFO L902 garLoopResultBuilder]: At program point L471(lines 446 475) the Hoare annotation is: true [2023-11-06 22:53:41,169 INFO L899 garLoopResultBuilder]: For program point L467(line 467) no Hoare annotation was computed. [2023-11-06 22:53:41,169 INFO L899 garLoopResultBuilder]: For program point L460(lines 460 464) no Hoare annotation was computed. [2023-11-06 22:53:41,169 INFO L902 garLoopResultBuilder]: At program point L460-1(lines 460 464) the Hoare annotation is: true [2023-11-06 22:53:41,169 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 446 475) the Hoare annotation is: true [2023-11-06 22:53:41,170 INFO L899 garLoopResultBuilder]: For program point L457(line 457) no Hoare annotation was computed. [2023-11-06 22:53:41,170 INFO L902 garLoopResultBuilder]: At program point L456-2(lines 456 470) the Hoare annotation is: true [2023-11-06 22:53:41,170 INFO L902 garLoopResultBuilder]: At program point L452(line 452) the Hoare annotation is: true [2023-11-06 22:53:41,170 INFO L899 garLoopResultBuilder]: For program point L452-1(line 452) no Hoare annotation was computed. [2023-11-06 22:53:41,170 INFO L895 garLoopResultBuilder]: At program point L271(line 271) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,171 INFO L895 garLoopResultBuilder]: At program point L271-1(lines 252 276) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,171 INFO L899 garLoopResultBuilder]: For program point L205-1(lines 205 211) no Hoare annotation was computed. [2023-11-06 22:53:41,171 INFO L899 garLoopResultBuilder]: For program point timeShiftFINAL(lines 194 217) no Hoare annotation was computed. [2023-11-06 22:53:41,171 INFO L895 garLoopResultBuilder]: At program point getWaterLevel_returnLabel#1(lines 127 135) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse1 (= |timeShift_getWaterLevel_#res#1| 1)) (or .cse0 (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse1))) [2023-11-06 22:53:41,171 INFO L899 garLoopResultBuilder]: For program point L198-1(lines 197 216) no Hoare annotation was computed. [2023-11-06 22:53:41,171 INFO L899 garLoopResultBuilder]: For program point L260(lines 260 268) no Hoare annotation was computed. [2023-11-06 22:53:41,172 INFO L899 garLoopResultBuilder]: For program point L545(line 545) no Hoare annotation was computed. [2023-11-06 22:53:41,172 INFO L899 garLoopResultBuilder]: For program point L256(lines 256 273) no Hoare annotation was computed. [2023-11-06 22:53:41,172 INFO L899 garLoopResultBuilder]: For program point L562(lines 562 568) no Hoare annotation was computed. [2023-11-06 22:53:41,172 INFO L899 garLoopResultBuilder]: For program point L558(lines 558 571) no Hoare annotation was computed. [2023-11-06 22:53:41,172 INFO L895 garLoopResultBuilder]: At program point L558-1(lines 550 574) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse1 (and (= |timeShift___utac_acc__Specification4_spec__1_~tmp~5#1| 1) (= |timeShift_getWaterLevel_#res#1| 1))) (or .cse0 (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse1))) [2023-11-06 22:53:41,172 INFO L895 garLoopResultBuilder]: At program point __automaton_fail_returnLabel#1(lines 541 548) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,173 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 194 217) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,173 INFO L899 garLoopResultBuilder]: For program point L63(lines 63 67) no Hoare annotation was computed. [2023-11-06 22:53:41,173 INFO L895 garLoopResultBuilder]: At program point L63-2(lines 59 70) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,177 INFO L895 garLoopResultBuilder]: At program point isMethaneLevelCritical_returnLabel#1(lines 95 103) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,178 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 194 217) no Hoare annotation was computed. [2023-11-06 22:53:41,178 INFO L895 garLoopResultBuilder]: At program point isMethaneAlarm_returnLabel#1(lines 293 303) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,178 INFO L895 garLoopResultBuilder]: At program point L266(line 266) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,181 INFO L895 garLoopResultBuilder]: At program point isPumpRunning_returnLabel#1(lines 304 312) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 (and (= ~pumpRunning~0 0) (= |timeShift_isPumpRunning_#res#1| 0) (= |old(~waterLevel~0)| ~waterLevel~0))) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse1))) [2023-11-06 22:53:41,181 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 545) no Hoare annotation was computed. [2023-11-06 22:53:41,182 INFO L895 garLoopResultBuilder]: At program point L262(line 262) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,183 INFO L895 garLoopResultBuilder]: At program point startSystem_returnLabel#1(lines 368 375) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 22:53:41,185 INFO L895 garLoopResultBuilder]: At program point L436(lines 387 437) the Hoare annotation is: false [2023-11-06 22:53:41,185 INFO L899 garLoopResultBuilder]: For program point L527(lines 527 534) no Hoare annotation was computed. [2023-11-06 22:53:41,185 INFO L902 garLoopResultBuilder]: At program point runTest_returnLabel#1(lines 507 516) the Hoare annotation is: true [2023-11-06 22:53:41,185 INFO L899 garLoopResultBuilder]: For program point L527-2(lines 527 534) no Hoare annotation was computed. [2023-11-06 22:53:41,187 INFO L895 garLoopResultBuilder]: At program point select_features_returnLabel#1(lines 160 166) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2023-11-06 22:53:41,188 INFO L902 garLoopResultBuilder]: At program point main_returnLabel#1(lines 517 539) the Hoare annotation is: true [2023-11-06 22:53:41,188 INFO L899 garLoopResultBuilder]: For program point L-1(line -1) no Hoare annotation was computed. [2023-11-06 22:53:41,188 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startFINAL(line -1) no Hoare annotation was computed. [2023-11-06 22:53:41,188 INFO L899 garLoopResultBuilder]: For program point L408(lines 408 414) no Hoare annotation was computed. [2023-11-06 22:53:41,189 INFO L899 garLoopResultBuilder]: For program point L408-1(lines 408 414) no Hoare annotation was computed. [2023-11-06 22:53:41,189 INFO L895 garLoopResultBuilder]: At program point L433(lines 388 435) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 22:53:41,189 INFO L895 garLoopResultBuilder]: At program point L400(line 400) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 22:53:41,189 INFO L895 garLoopResultBuilder]: At program point setup_returnLabel#1(lines 500 506) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2023-11-06 22:53:41,190 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2023-11-06 22:53:41,190 INFO L899 garLoopResultBuilder]: For program point L426(lines 426 430) no Hoare annotation was computed. [2023-11-06 22:53:41,190 INFO L899 garLoopResultBuilder]: For program point $Ultimate##0(line -1) no Hoare annotation was computed. [2023-11-06 22:53:41,190 INFO L895 garLoopResultBuilder]: At program point select_helpers_returnLabel#1(lines 167 173) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2023-11-06 22:53:41,193 INFO L895 garLoopResultBuilder]: At program point L426-2(lines 418 431) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 22:53:41,193 INFO L899 garLoopResultBuilder]: For program point L389(lines 388 435) no Hoare annotation was computed. [2023-11-06 22:53:41,193 INFO L899 garLoopResultBuilder]: For program point L418(lines 418 431) no Hoare annotation was computed. [2023-11-06 22:53:41,193 INFO L895 garLoopResultBuilder]: At program point L410(line 410) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-06 22:53:41,193 INFO L902 garLoopResultBuilder]: At program point L439(lines 378 443) the Hoare annotation is: true [2023-11-06 22:53:41,194 INFO L899 garLoopResultBuilder]: For program point L398(lines 398 404) no Hoare annotation was computed. [2023-11-06 22:53:41,194 INFO L899 garLoopResultBuilder]: For program point L398-1(lines 398 404) no Hoare annotation was computed. [2023-11-06 22:53:41,194 INFO L895 garLoopResultBuilder]: At program point valid_product_returnLabel#1(lines 174 182) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= ~waterLevel~0 1)) [2023-11-06 22:53:41,194 INFO L899 garLoopResultBuilder]: For program point L390(lines 390 394) no Hoare annotation was computed. [2023-11-06 22:53:41,194 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 71 82) no Hoare annotation was computed. [2023-11-06 22:53:41,195 INFO L899 garLoopResultBuilder]: For program point L75-1(lines 71 82) no Hoare annotation was computed. [2023-11-06 22:53:41,195 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 71 82) the Hoare annotation is: (or (not (= ~pumpRunning~0 0)) (not (= 1 ~systemActive~0)) (= |old(~waterLevel~0)| ~waterLevel~0)) [2023-11-06 22:53:41,195 INFO L895 garLoopResultBuilder]: At program point L240(line 240) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,195 INFO L895 garLoopResultBuilder]: At program point isLowWaterSensorDry_returnLabel#1(lines 136 144) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,196 INFO L895 garLoopResultBuilder]: At program point L236(line 236) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,197 INFO L899 garLoopResultBuilder]: For program point L234(lines 234 242) no Hoare annotation was computed. [2023-11-06 22:53:41,198 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 226 250) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,198 INFO L899 garLoopResultBuilder]: For program point L230(lines 230 247) no Hoare annotation was computed. [2023-11-06 22:53:41,198 INFO L899 garLoopResultBuilder]: For program point L358(lines 358 362) no Hoare annotation was computed. [2023-11-06 22:53:41,198 INFO L899 garLoopResultBuilder]: For program point L358-2(lines 358 362) no Hoare annotation was computed. [2023-11-06 22:53:41,200 INFO L895 garLoopResultBuilder]: At program point isLowWaterLevel_returnLabel#1(lines 349 367) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,200 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__lowWaterSensorEXIT(lines 226 250) no Hoare annotation was computed. [2023-11-06 22:53:41,200 INFO L895 garLoopResultBuilder]: At program point L245(line 245) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) (not (= 1 ~systemActive~0))) [2023-11-06 22:53:41,201 INFO L899 garLoopResultBuilder]: For program point L245-1(lines 226 250) no Hoare annotation was computed. [2023-11-06 22:53:41,205 INFO L445 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1] [2023-11-06 22:53:41,207 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2023-11-06 22:53:41,244 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 06.11 10:53:41 BoogieIcfgContainer [2023-11-06 22:53:41,244 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2023-11-06 22:53:41,244 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2023-11-06 22:53:41,245 INFO L270 PluginConnector]: Initializing Witness Printer... [2023-11-06 22:53:41,245 INFO L274 PluginConnector]: Witness Printer initialized [2023-11-06 22:53:41,245 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 06.11 10:53:38" (3/4) ... [2023-11-06 22:53:41,247 INFO L137 WitnessPrinter]: Generating witness for correct program [2023-11-06 22:53:41,251 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2023-11-06 22:53:41,251 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2023-11-06 22:53:41,251 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2023-11-06 22:53:41,252 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2023-11-06 22:53:41,252 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2023-11-06 22:53:41,252 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2023-11-06 22:53:41,252 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2023-11-06 22:53:41,264 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 17 nodes and edges [2023-11-06 22:53:41,268 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2023-11-06 22:53:41,269 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2023-11-06 22:53:41,269 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-06 22:53:41,270 INFO L939 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-06 22:53:41,302 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,304 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive))) [2023-11-06 22:53:41,306 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive))) || (\result == 1)) && ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive)))) [2023-11-06 22:53:41,306 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,308 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive))) || ((tmp == 1) && (\result == 1))) && ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive)))) [2023-11-06 22:53:41,308 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,309 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,309 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!((\old(pumpRunning) == 0)) || !((1 == systemActive))) || (((pumpRunning == 0) && (\result == 0)) && (\old(waterLevel) == waterLevel))) && ((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive)))) [2023-11-06 22:53:41,310 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,310 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,362 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,363 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive))) [2023-11-06 22:53:41,363 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive))) || (\result == 1)) && ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive)))) [2023-11-06 22:53:41,364 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,364 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive))) || ((tmp == 1) && (\result == 1))) && ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive)))) [2023-11-06 22:53:41,364 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,364 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,365 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((!((\old(pumpRunning) == 0)) || !((1 == systemActive))) || (((pumpRunning == 0) && (\result == 0)) && (\old(waterLevel) == waterLevel))) && ((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive)))) [2023-11-06 22:53:41,365 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,365 WARN L115 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) [2023-11-06 22:53:41,399 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/witness.graphml.graphml [2023-11-06 22:53:41,400 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/witness.graphml.yaml [2023-11-06 22:53:41,400 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2023-11-06 22:53:41,404 INFO L158 Benchmark]: Toolchain (without parser) took 3967.04ms. Allocated memory was 138.4MB in the beginning and 172.0MB in the end (delta: 33.6MB). Free memory was 76.2MB in the beginning and 77.6MB in the end (delta: -1.5MB). Peak memory consumption was 34.6MB. Max. memory is 16.1GB. [2023-11-06 22:53:41,404 INFO L158 Benchmark]: CDTParser took 0.28ms. Allocated memory is still 138.4MB. Free memory is still 71.3MB. There was no memory consumed. Max. memory is 16.1GB. [2023-11-06 22:53:41,405 INFO L158 Benchmark]: CACSL2BoogieTranslator took 522.14ms. Allocated memory was 138.4MB in the beginning and 172.0MB in the end (delta: 33.6MB). Free memory was 76.2MB in the beginning and 138.1MB in the end (delta: -61.9MB). Peak memory consumption was 17.2MB. Max. memory is 16.1GB. [2023-11-06 22:53:41,405 INFO L158 Benchmark]: Boogie Procedure Inliner took 53.91ms. Allocated memory is still 172.0MB. Free memory was 138.1MB in the beginning and 136.0MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-11-06 22:53:41,405 INFO L158 Benchmark]: Boogie Preprocessor took 33.35ms. Allocated memory is still 172.0MB. Free memory was 136.0MB in the beginning and 133.9MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-11-06 22:53:41,406 INFO L158 Benchmark]: RCFGBuilder took 479.40ms. Allocated memory is still 172.0MB. Free memory was 133.9MB in the beginning and 117.1MB in the end (delta: 16.8MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2023-11-06 22:53:41,406 INFO L158 Benchmark]: TraceAbstraction took 2711.94ms. Allocated memory is still 172.0MB. Free memory was 117.1MB in the beginning and 85.0MB in the end (delta: 32.1MB). Peak memory consumption was 32.1MB. Max. memory is 16.1GB. [2023-11-06 22:53:41,407 INFO L158 Benchmark]: Witness Printer took 158.76ms. Allocated memory is still 172.0MB. Free memory was 85.0MB in the beginning and 77.6MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2023-11-06 22:53:41,411 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.28ms. Allocated memory is still 138.4MB. Free memory is still 71.3MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 522.14ms. Allocated memory was 138.4MB in the beginning and 172.0MB in the end (delta: 33.6MB). Free memory was 76.2MB in the beginning and 138.1MB in the end (delta: -61.9MB). Peak memory consumption was 17.2MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 53.91ms. Allocated memory is still 172.0MB. Free memory was 138.1MB in the beginning and 136.0MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 33.35ms. Allocated memory is still 172.0MB. Free memory was 136.0MB in the beginning and 133.9MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 479.40ms. Allocated memory is still 172.0MB. Free memory was 133.9MB in the beginning and 117.1MB in the end (delta: 16.8MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * TraceAbstraction took 2711.94ms. Allocated memory is still 172.0MB. Free memory was 117.1MB in the beginning and 85.0MB in the end (delta: 32.1MB). Peak memory consumption was 32.1MB. Max. memory is 16.1GB. * Witness Printer took 158.76ms. Allocated memory is still 172.0MB. Free memory was 85.0MB in the beginning and 77.6MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] - GenericResultAtLocation [Line: 145]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [145] - GenericResultAtLocation [Line: 183]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [183] - GenericResultAtLocation [Line: 376]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [376] - GenericResultAtLocation [Line: 444]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [444] - GenericResultAtLocation [Line: 540]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [540] - GenericResultAtLocation [Line: 549]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [549] - GenericResultAtLocation [Line: 575]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [575] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 545]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 83 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 2.6s, OverallIterations: 5, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.8s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.7s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 300 SdHoareTripleChecker+Valid, 0.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 292 mSDsluCounter, 756 SdHoareTripleChecker+Invalid, 0.2s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 389 mSDsCounter, 55 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 211 IncrementalHoareTripleChecker+Invalid, 266 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 55 mSolverCounterUnsat, 367 mSDtfsCounter, 211 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 41 GetRequests, 21 SyntacticMatches, 0 SemanticMatches, 20 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=116occurred in iteration=4, InterpolantAutomatonStates: 24, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 5 MinimizatonAttempts, 22 StatesRemovedByMinimization, 1 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 40 LocationsWithAnnotation, 279 PreInvPairs, 303 NumberOfFragments, 379 HoareAnnotationTreeSize, 279 FomulaSimplifications, 127 FormulaSimplificationTreeSizeReduction, 0.0s HoareSimplificationTime, 40 FomulaSimplificationsInter, 566 FormulaSimplificationTreeSizeReductionInter, 0.6s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.7s InterpolantComputationTime, 138 NumberOfCodeBlocks, 138 NumberOfCodeBlocksAsserted, 5 NumberOfCheckSat, 133 ConstructedInterpolants, 0 QuantifiedInterpolants, 223 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 5 InterpolantComputations, 5 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 550]: Loop Invariant Derived loop invariant: ((((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive))) || ((tmp == 1) && (\result == 1))) && ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive)))) - InvariantResult [Line: 388]: Loop Invariant Derived loop invariant: (((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0)) - InvariantResult [Line: 456]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 500]: Loop Invariant Derived loop invariant: (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) - InvariantResult [Line: 446]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 136]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) - InvariantResult [Line: 349]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) - InvariantResult [Line: 368]: Loop Invariant Derived loop invariant: (((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0)) - InvariantResult [Line: 541]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) - InvariantResult [Line: 160]: Loop Invariant Derived loop invariant: (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) - InvariantResult [Line: 387]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 95]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) - InvariantResult [Line: 127]: Loop Invariant Derived loop invariant: ((((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive))) || (\result == 1)) && ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive)))) - InvariantResult [Line: 174]: Loop Invariant Derived loop invariant: (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) - InvariantResult [Line: 293]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) - InvariantResult [Line: 378]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 167]: Loop Invariant Derived loop invariant: (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) - InvariantResult [Line: 252]: Loop Invariant Derived loop invariant: ((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || !((1 == systemActive))) - InvariantResult [Line: 517]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 304]: Loop Invariant Derived loop invariant: (((!((\old(pumpRunning) == 0)) || !((1 == systemActive))) || (((pumpRunning == 0) && (\result == 0)) && (\old(waterLevel) == waterLevel))) && ((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || !((1 == systemActive)))) - InvariantResult [Line: 59]: Loop Invariant Derived loop invariant: (!((\old(pumpRunning) == 0)) || !((1 == systemActive))) - InvariantResult [Line: 507]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2023-11-06 22:53:41,452 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7d2573b5-1f79-4574-bb25-c10dceda2496/bin/uautomizer-verify-WvqO1wxjHP/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE