./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 0e0057cc Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 0858956fa78fab41d54951630cb21e24f98b592c89580084f0bb3139b8ef83d9 --- Real Ultimate output --- This is Ultimate 0.2.4-dev-0e0057c [2023-11-26 11:52:21,932 INFO L188 SettingsManager]: Resetting all preferences to default values... [2023-11-26 11:52:22,055 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/config/svcomp-Reach-32bit-Automizer_Default.epf [2023-11-26 11:52:22,064 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2023-11-26 11:52:22,065 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2023-11-26 11:52:22,109 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2023-11-26 11:52:22,110 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2023-11-26 11:52:22,111 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2023-11-26 11:52:22,112 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2023-11-26 11:52:22,118 INFO L153 SettingsManager]: * Use memory slicer=true [2023-11-26 11:52:22,118 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2023-11-26 11:52:22,120 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2023-11-26 11:52:22,120 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2023-11-26 11:52:22,122 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2023-11-26 11:52:22,123 INFO L153 SettingsManager]: * Use SBE=true [2023-11-26 11:52:22,123 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2023-11-26 11:52:22,124 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2023-11-26 11:52:22,124 INFO L153 SettingsManager]: * sizeof long=4 [2023-11-26 11:52:22,125 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2023-11-26 11:52:22,125 INFO L153 SettingsManager]: * sizeof POINTER=4 [2023-11-26 11:52:22,126 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2023-11-26 11:52:22,126 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2023-11-26 11:52:22,127 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2023-11-26 11:52:22,127 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2023-11-26 11:52:22,128 INFO L153 SettingsManager]: * sizeof long double=12 [2023-11-26 11:52:22,128 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2023-11-26 11:52:22,129 INFO L153 SettingsManager]: * Use constant arrays=true [2023-11-26 11:52:22,130 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2023-11-26 11:52:22,130 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2023-11-26 11:52:22,131 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2023-11-26 11:52:22,132 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2023-11-26 11:52:22,132 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2023-11-26 11:52:22,133 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2023-11-26 11:52:22,133 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2023-11-26 11:52:22,133 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2023-11-26 11:52:22,133 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2023-11-26 11:52:22,134 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2023-11-26 11:52:22,134 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2023-11-26 11:52:22,134 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2023-11-26 11:52:22,134 INFO L153 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2023-11-26 11:52:22,135 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2023-11-26 11:52:22,135 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2023-11-26 11:52:22,135 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 0858956fa78fab41d54951630cb21e24f98b592c89580084f0bb3139b8ef83d9 [2023-11-26 11:52:22,465 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2023-11-26 11:52:22,499 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2023-11-26 11:52:22,502 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2023-11-26 11:52:22,504 INFO L270 PluginConnector]: Initializing CDTParser... [2023-11-26 11:52:22,504 INFO L274 PluginConnector]: CDTParser initialized [2023-11-26 11:52:22,506 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/../../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c [2023-11-26 11:52:25,597 INFO L533 CDTParser]: Created temporary CDT project at NULL [2023-11-26 11:52:25,882 INFO L384 CDTParser]: Found 1 translation units. [2023-11-26 11:52:25,882 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c [2023-11-26 11:52:25,920 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/data/b84c0f21a/5e11364ca8d8419a8cdc31dc577b4dd4/FLAGf90b57f3c [2023-11-26 11:52:25,935 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/data/b84c0f21a/5e11364ca8d8419a8cdc31dc577b4dd4 [2023-11-26 11:52:25,950 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2023-11-26 11:52:25,952 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2023-11-26 11:52:25,953 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2023-11-26 11:52:25,953 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2023-11-26 11:52:25,959 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2023-11-26 11:52:25,962 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 26.11 11:52:25" (1/1) ... [2023-11-26 11:52:25,963 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@5c4455dd and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:25, skipping insertion in model container [2023-11-26 11:52:25,964 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 26.11 11:52:25" (1/1) ... [2023-11-26 11:52:26,043 INFO L177 MainTranslator]: Built tables and reachable declarations [2023-11-26 11:52:26,368 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c[18140,18153] [2023-11-26 11:52:26,372 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-26 11:52:26,384 INFO L202 MainTranslator]: Completed pre-run [2023-11-26 11:52:26,395 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] [2023-11-26 11:52:26,397 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [415] [2023-11-26 11:52:26,397 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [511] [2023-11-26 11:52:26,397 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [581] [2023-11-26 11:52:26,398 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [779] [2023-11-26 11:52:26,398 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [806] [2023-11-26 11:52:26,398 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [844] [2023-11-26 11:52:26,398 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [940] [2023-11-26 11:52:26,482 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c[18140,18153] [2023-11-26 11:52:26,483 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-26 11:52:26,505 INFO L206 MainTranslator]: Completed translation [2023-11-26 11:52:26,505 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26 WrapperNode [2023-11-26 11:52:26,505 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2023-11-26 11:52:26,507 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2023-11-26 11:52:26,507 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2023-11-26 11:52:26,507 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2023-11-26 11:52:26,515 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,545 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,593 INFO L138 Inliner]: procedures = 54, calls = 99, calls flagged for inlining = 20, calls inlined = 17, statements flattened = 183 [2023-11-26 11:52:26,593 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2023-11-26 11:52:26,594 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2023-11-26 11:52:26,594 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2023-11-26 11:52:26,594 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2023-11-26 11:52:26,607 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,608 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,610 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,633 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2023-11-26 11:52:26,633 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,633 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,638 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,643 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,645 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,647 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,650 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2023-11-26 11:52:26,650 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2023-11-26 11:52:26,651 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2023-11-26 11:52:26,651 INFO L274 PluginConnector]: RCFGBuilder initialized [2023-11-26 11:52:26,652 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (1/1) ... [2023-11-26 11:52:26,658 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2023-11-26 11:52:26,673 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/z3 [2023-11-26 11:52:26,685 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2023-11-26 11:52:26,708 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2023-11-26 11:52:26,734 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2023-11-26 11:52:26,734 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2023-11-26 11:52:26,735 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2023-11-26 11:52:26,735 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2023-11-26 11:52:26,735 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2023-11-26 11:52:26,735 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2023-11-26 11:52:26,735 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2023-11-26 11:52:26,736 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2023-11-26 11:52:26,736 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2023-11-26 11:52:26,736 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2023-11-26 11:52:26,736 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2023-11-26 11:52:26,736 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2023-11-26 11:52:26,737 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2023-11-26 11:52:26,737 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2023-11-26 11:52:26,737 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2023-11-26 11:52:26,737 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2023-11-26 11:52:26,738 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2023-11-26 11:52:26,738 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2023-11-26 11:52:26,738 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2023-11-26 11:52:26,738 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2023-11-26 11:52:26,837 INFO L241 CfgBuilder]: Building ICFG [2023-11-26 11:52:26,840 INFO L267 CfgBuilder]: Building CFG for each procedure with an implementation [2023-11-26 11:52:27,153 INFO L282 CfgBuilder]: Performing block encoding [2023-11-26 11:52:27,265 INFO L304 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2023-11-26 11:52:27,274 INFO L309 CfgBuilder]: Removed 2 assume(true) statements. [2023-11-26 11:52:27,275 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 26.11 11:52:27 BoogieIcfgContainer [2023-11-26 11:52:27,275 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2023-11-26 11:52:27,278 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2023-11-26 11:52:27,280 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2023-11-26 11:52:27,284 INFO L274 PluginConnector]: TraceAbstraction initialized [2023-11-26 11:52:27,284 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 26.11 11:52:25" (1/3) ... [2023-11-26 11:52:27,286 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@102ab1f8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 26.11 11:52:27, skipping insertion in model container [2023-11-26 11:52:27,286 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 26.11 11:52:26" (2/3) ... [2023-11-26 11:52:27,291 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@102ab1f8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 26.11 11:52:27, skipping insertion in model container [2023-11-26 11:52:27,291 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 26.11 11:52:27" (3/3) ... [2023-11-26 11:52:27,293 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec1_product23.cil.c [2023-11-26 11:52:27,314 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2023-11-26 11:52:27,314 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2023-11-26 11:52:27,377 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2023-11-26 11:52:27,384 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@3e7a4d04, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2023-11-26 11:52:27,384 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2023-11-26 11:52:27,388 INFO L276 IsEmpty]: Start isEmpty. Operand has 72 states, 47 states have (on average 1.5319148936170213) internal successors, (72), 56 states have internal predecessors, (72), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 11 states have call predecessors, (15), 15 states have call successors, (15) [2023-11-26 11:52:27,397 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 17 [2023-11-26 11:52:27,397 INFO L187 NwaCegarLoop]: Found error trace [2023-11-26 11:52:27,398 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-26 11:52:27,399 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-26 11:52:27,404 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-26 11:52:27,405 INFO L85 PathProgramCache]: Analyzing trace with hash 854107779, now seen corresponding path program 1 times [2023-11-26 11:52:27,415 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-26 11:52:27,416 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [281550022] [2023-11-26 11:52:27,416 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-26 11:52:27,416 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-26 11:52:27,591 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-26 11:52:27,694 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 9 [2023-11-26 11:52:27,699 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-26 11:52:27,709 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-26 11:52:27,710 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-26 11:52:27,710 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [281550022] [2023-11-26 11:52:27,711 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [281550022] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-26 11:52:27,712 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-26 11:52:27,712 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2023-11-26 11:52:27,714 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [520416441] [2023-11-26 11:52:27,715 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-26 11:52:27,723 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2023-11-26 11:52:27,723 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-26 11:52:27,763 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2023-11-26 11:52:27,764 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-26 11:52:27,767 INFO L87 Difference]: Start difference. First operand has 72 states, 47 states have (on average 1.5319148936170213) internal successors, (72), 56 states have internal predecessors, (72), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 11 states have call predecessors, (15), 15 states have call successors, (15) Second operand has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-26 11:52:27,894 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-26 11:52:27,894 INFO L93 Difference]: Finished difference Result 142 states and 205 transitions. [2023-11-26 11:52:27,896 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2023-11-26 11:52:27,897 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 16 [2023-11-26 11:52:27,898 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-26 11:52:27,909 INFO L225 Difference]: With dead ends: 142 [2023-11-26 11:52:27,909 INFO L226 Difference]: Without dead ends: 67 [2023-11-26 11:52:27,914 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-26 11:52:27,919 INFO L413 NwaCegarLoop]: 83 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 14 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 83 SdHoareTripleChecker+Invalid, 14 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 14 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-11-26 11:52:27,921 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 83 Invalid, 14 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 14 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-11-26 11:52:27,941 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 67 states. [2023-11-26 11:52:27,973 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 67 to 67. [2023-11-26 11:52:27,975 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 67 states, 44 states have (on average 1.4090909090909092) internal successors, (62), 52 states have internal predecessors, (62), 15 states have call successors, (15), 8 states have call predecessors, (15), 7 states have return successors, (14), 10 states have call predecessors, (14), 14 states have call successors, (14) [2023-11-26 11:52:27,985 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 67 states to 67 states and 91 transitions. [2023-11-26 11:52:27,987 INFO L78 Accepts]: Start accepts. Automaton has 67 states and 91 transitions. Word has length 16 [2023-11-26 11:52:27,988 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-26 11:52:27,988 INFO L495 AbstractCegarLoop]: Abstraction has 67 states and 91 transitions. [2023-11-26 11:52:27,988 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 6.0) internal successors, (12), 2 states have internal predecessors, (12), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-26 11:52:27,989 INFO L276 IsEmpty]: Start isEmpty. Operand 67 states and 91 transitions. [2023-11-26 11:52:27,992 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 18 [2023-11-26 11:52:27,993 INFO L187 NwaCegarLoop]: Found error trace [2023-11-26 11:52:27,993 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-26 11:52:27,993 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2023-11-26 11:52:27,994 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-26 11:52:27,995 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-26 11:52:27,996 INFO L85 PathProgramCache]: Analyzing trace with hash -1349940867, now seen corresponding path program 1 times [2023-11-26 11:52:27,996 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-26 11:52:27,997 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1235843214] [2023-11-26 11:52:27,997 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-26 11:52:27,997 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-26 11:52:28,021 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-26 11:52:28,095 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2023-11-26 11:52:28,097 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-26 11:52:28,100 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-26 11:52:28,100 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-26 11:52:28,101 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1235843214] [2023-11-26 11:52:28,101 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1235843214] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-26 11:52:28,101 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-26 11:52:28,102 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-11-26 11:52:28,102 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [308387214] [2023-11-26 11:52:28,102 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-26 11:52:28,104 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-11-26 11:52:28,104 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-26 11:52:28,105 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-11-26 11:52:28,105 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-26 11:52:28,106 INFO L87 Difference]: Start difference. First operand 67 states and 91 transitions. Second operand has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-26 11:52:28,145 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-26 11:52:28,145 INFO L93 Difference]: Finished difference Result 104 states and 140 transitions. [2023-11-26 11:52:28,146 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-11-26 11:52:28,146 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 17 [2023-11-26 11:52:28,147 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-26 11:52:28,148 INFO L225 Difference]: With dead ends: 104 [2023-11-26 11:52:28,148 INFO L226 Difference]: Without dead ends: 59 [2023-11-26 11:52:28,149 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-11-26 11:52:28,151 INFO L413 NwaCegarLoop]: 69 mSDtfsCounter, 14 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 19 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 121 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 19 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-26 11:52:28,152 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 121 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 19 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-26 11:52:28,153 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 59 states. [2023-11-26 11:52:28,161 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 59 to 59. [2023-11-26 11:52:28,162 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 59 states, 39 states have (on average 1.435897435897436) internal successors, (56), 47 states have internal predecessors, (56), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 8 states have call predecessors, (12), 12 states have call successors, (12) [2023-11-26 11:52:28,163 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 59 states to 59 states and 80 transitions. [2023-11-26 11:52:28,163 INFO L78 Accepts]: Start accepts. Automaton has 59 states and 80 transitions. Word has length 17 [2023-11-26 11:52:28,164 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-26 11:52:28,164 INFO L495 AbstractCegarLoop]: Abstraction has 59 states and 80 transitions. [2023-11-26 11:52:28,164 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 4.333333333333333) internal successors, (13), 3 states have internal predecessors, (13), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-26 11:52:28,165 INFO L276 IsEmpty]: Start isEmpty. Operand 59 states and 80 transitions. [2023-11-26 11:52:28,166 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2023-11-26 11:52:28,166 INFO L187 NwaCegarLoop]: Found error trace [2023-11-26 11:52:28,167 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-26 11:52:28,167 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2023-11-26 11:52:28,167 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-26 11:52:28,168 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-26 11:52:28,168 INFO L85 PathProgramCache]: Analyzing trace with hash 448718329, now seen corresponding path program 1 times [2023-11-26 11:52:28,168 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-26 11:52:28,169 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [778561160] [2023-11-26 11:52:28,169 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-26 11:52:28,169 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-26 11:52:28,202 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-26 11:52:28,298 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 13 [2023-11-26 11:52:28,300 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-26 11:52:28,302 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-26 11:52:28,303 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-26 11:52:28,303 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [778561160] [2023-11-26 11:52:28,303 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [778561160] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-26 11:52:28,303 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-26 11:52:28,304 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2023-11-26 11:52:28,304 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1909890448] [2023-11-26 11:52:28,304 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-26 11:52:28,304 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2023-11-26 11:52:28,305 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-26 11:52:28,305 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2023-11-26 11:52:28,306 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2023-11-26 11:52:28,306 INFO L87 Difference]: Start difference. First operand 59 states and 80 transitions. Second operand has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-26 11:52:28,531 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-26 11:52:28,531 INFO L93 Difference]: Finished difference Result 167 states and 232 transitions. [2023-11-26 11:52:28,531 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2023-11-26 11:52:28,532 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 20 [2023-11-26 11:52:28,532 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-26 11:52:28,534 INFO L225 Difference]: With dead ends: 167 [2023-11-26 11:52:28,535 INFO L226 Difference]: Without dead ends: 110 [2023-11-26 11:52:28,537 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2023-11-26 11:52:28,540 INFO L413 NwaCegarLoop]: 73 mSDtfsCounter, 93 mSDsluCounter, 108 mSDsCounter, 0 mSdLazyCounter, 64 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 93 SdHoareTripleChecker+Valid, 181 SdHoareTripleChecker+Invalid, 73 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 64 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2023-11-26 11:52:28,545 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [93 Valid, 181 Invalid, 73 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 64 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2023-11-26 11:52:28,548 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 110 states. [2023-11-26 11:52:28,568 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 110 to 93. [2023-11-26 11:52:28,570 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 93 states, 63 states have (on average 1.4444444444444444) internal successors, (91), 74 states have internal predecessors, (91), 17 states have call successors, (17), 12 states have call predecessors, (17), 12 states have return successors, (18), 12 states have call predecessors, (18), 17 states have call successors, (18) [2023-11-26 11:52:28,572 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 93 states to 93 states and 126 transitions. [2023-11-26 11:52:28,572 INFO L78 Accepts]: Start accepts. Automaton has 93 states and 126 transitions. Word has length 20 [2023-11-26 11:52:28,572 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-26 11:52:28,573 INFO L495 AbstractCegarLoop]: Abstraction has 93 states and 126 transitions. [2023-11-26 11:52:28,573 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 4.25) internal successors, (17), 4 states have internal predecessors, (17), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-26 11:52:28,573 INFO L276 IsEmpty]: Start isEmpty. Operand 93 states and 126 transitions. [2023-11-26 11:52:28,579 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 24 [2023-11-26 11:52:28,579 INFO L187 NwaCegarLoop]: Found error trace [2023-11-26 11:52:28,579 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-26 11:52:28,580 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2023-11-26 11:52:28,580 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-26 11:52:28,581 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-26 11:52:28,581 INFO L85 PathProgramCache]: Analyzing trace with hash 1295726455, now seen corresponding path program 1 times [2023-11-26 11:52:28,581 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2023-11-26 11:52:28,581 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [43333394] [2023-11-26 11:52:28,582 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-26 11:52:28,583 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-26 11:52:28,616 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-26 11:52:28,724 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2023-11-26 11:52:28,726 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-26 11:52:28,729 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-26 11:52:28,729 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2023-11-26 11:52:28,730 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [43333394] [2023-11-26 11:52:28,730 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [43333394] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-26 11:52:28,730 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-26 11:52:28,730 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2023-11-26 11:52:28,731 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [879975909] [2023-11-26 11:52:28,731 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-26 11:52:28,731 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2023-11-26 11:52:28,732 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2023-11-26 11:52:28,732 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2023-11-26 11:52:28,732 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2023-11-26 11:52:28,733 INFO L87 Difference]: Start difference. First operand 93 states and 126 transitions. Second operand has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-26 11:52:28,778 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-26 11:52:28,779 INFO L93 Difference]: Finished difference Result 164 states and 225 transitions. [2023-11-26 11:52:28,779 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2023-11-26 11:52:28,779 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 23 [2023-11-26 11:52:28,780 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-26 11:52:28,780 INFO L225 Difference]: With dead ends: 164 [2023-11-26 11:52:28,780 INFO L226 Difference]: Without dead ends: 0 [2023-11-26 11:52:28,782 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2023-11-26 11:52:28,784 INFO L413 NwaCegarLoop]: 38 mSDtfsCounter, 33 mSDsluCounter, 37 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 75 SdHoareTripleChecker+Invalid, 29 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-11-26 11:52:28,785 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 75 Invalid, 29 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-11-26 11:52:28,785 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2023-11-26 11:52:28,786 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2023-11-26 11:52:28,786 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-26 11:52:28,786 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2023-11-26 11:52:28,787 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 23 [2023-11-26 11:52:28,787 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-26 11:52:28,787 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2023-11-26 11:52:28,787 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 5.0) internal successors, (20), 4 states have internal predecessors, (20), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-11-26 11:52:28,788 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2023-11-26 11:52:28,788 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2023-11-26 11:52:28,790 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2023-11-26 11:52:28,791 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2023-11-26 11:52:28,793 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2023-11-26 11:52:29,024 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 681 688) no Hoare annotation was computed. [2023-11-26 11:52:29,024 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 681 688) the Hoare annotation is: true [2023-11-26 11:52:29,025 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 614 620) no Hoare annotation was computed. [2023-11-26 11:52:29,025 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 614 620) the Hoare annotation is: true [2023-11-26 11:52:29,025 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 449 460) the Hoare annotation is: true [2023-11-26 11:52:29,025 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 449 460) no Hoare annotation was computed. [2023-11-26 11:52:29,026 INFO L899 garLoopResultBuilder]: For program point L453-1(lines 449 460) no Hoare annotation was computed. [2023-11-26 11:52:29,027 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 846 875) no Hoare annotation was computed. [2023-11-26 11:52:29,027 INFO L899 garLoopResultBuilder]: For program point L860(lines 860 864) no Hoare annotation was computed. [2023-11-26 11:52:29,027 INFO L902 garLoopResultBuilder]: At program point L860-1(lines 860 864) the Hoare annotation is: true [2023-11-26 11:52:29,029 INFO L902 garLoopResultBuilder]: At program point L856-2(lines 856 870) the Hoare annotation is: true [2023-11-26 11:52:29,030 INFO L902 garLoopResultBuilder]: At program point L852(line 852) the Hoare annotation is: true [2023-11-26 11:52:29,030 INFO L899 garLoopResultBuilder]: For program point L852-1(line 852) no Hoare annotation was computed. [2023-11-26 11:52:29,030 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 846 875) the Hoare annotation is: true [2023-11-26 11:52:29,030 INFO L899 garLoopResultBuilder]: For program point L871(lines 846 875) no Hoare annotation was computed. [2023-11-26 11:52:29,038 INFO L899 garLoopResultBuilder]: For program point L867(line 867) no Hoare annotation was computed. [2023-11-26 11:52:29,039 INFO L895 garLoopResultBuilder]: At program point L667(line 667) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (and (= ~pumpRunning~0 0) (not (= 0 ~systemActive~0)))) [2023-11-26 11:52:29,040 INFO L899 garLoopResultBuilder]: For program point L667-1(lines 648 672) no Hoare annotation was computed. [2023-11-26 11:52:29,041 INFO L899 garLoopResultBuilder]: For program point L601-1(lines 601 607) no Hoare annotation was computed. [2023-11-26 11:52:29,041 INFO L895 garLoopResultBuilder]: At program point L787(line 787) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0)) [2023-11-26 11:52:29,041 INFO L899 garLoopResultBuilder]: For program point L787-1(line 787) no Hoare annotation was computed. [2023-11-26 11:52:29,041 INFO L899 garLoopResultBuilder]: For program point L594-1(lines 593 612) no Hoare annotation was computed. [2023-11-26 11:52:29,042 INFO L899 garLoopResultBuilder]: For program point L945(line 945) no Hoare annotation was computed. [2023-11-26 11:52:29,042 INFO L899 garLoopResultBuilder]: For program point L656(lines 656 664) no Hoare annotation was computed. [2023-11-26 11:52:29,042 INFO L899 garLoopResultBuilder]: For program point L429(lines 429 433) no Hoare annotation was computed. [2023-11-26 11:52:29,042 INFO L899 garLoopResultBuilder]: For program point L652(lines 652 669) no Hoare annotation was computed. [2023-11-26 11:52:29,042 INFO L899 garLoopResultBuilder]: For program point L429-2(lines 425 436) no Hoare annotation was computed. [2023-11-26 11:52:29,042 INFO L899 garLoopResultBuilder]: For program point L793(lines 793 799) no Hoare annotation was computed. [2023-11-26 11:52:29,043 INFO L895 garLoopResultBuilder]: At program point L694(line 694) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-26 11:52:29,043 INFO L899 garLoopResultBuilder]: For program point L694-1(line 694) no Hoare annotation was computed. [2023-11-26 11:52:29,043 INFO L899 garLoopResultBuilder]: For program point L789(lines 789 802) no Hoare annotation was computed. [2023-11-26 11:52:29,043 INFO L899 garLoopResultBuilder]: For program point L789-1(lines 781 805) no Hoare annotation was computed. [2023-11-26 11:52:29,044 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 590 613) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0)) [2023-11-26 11:52:29,047 INFO L895 garLoopResultBuilder]: At program point L662(line 662) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-26 11:52:29,047 INFO L895 garLoopResultBuilder]: At program point L658(line 658) the Hoare annotation is: (not (= |old(~pumpRunning~0)| 0)) [2023-11-26 11:52:29,048 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 590 613) no Hoare annotation was computed. [2023-11-26 11:52:29,048 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 945) no Hoare annotation was computed. [2023-11-26 11:52:29,048 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 461 469) the Hoare annotation is: true [2023-11-26 11:52:29,049 INFO L899 garLoopResultBuilder]: For program point isMethaneLevelCriticalEXIT(lines 461 469) no Hoare annotation was computed. [2023-11-26 11:52:29,056 INFO L899 garLoopResultBuilder]: For program point L576(lines 515 580) no Hoare annotation was computed. [2023-11-26 11:52:29,056 INFO L899 garLoopResultBuilder]: For program point L927(lines 927 934) no Hoare annotation was computed. [2023-11-26 11:52:29,056 INFO L899 garLoopResultBuilder]: For program point L927-2(lines 927 934) no Hoare annotation was computed. [2023-11-26 11:52:29,057 INFO L899 garLoopResultBuilder]: For program point L535(lines 535 541) no Hoare annotation was computed. [2023-11-26 11:52:29,057 INFO L899 garLoopResultBuilder]: For program point L535-1(lines 535 541) no Hoare annotation was computed. [2023-11-26 11:52:29,057 INFO L895 garLoopResultBuilder]: At program point L573(lines 524 574) the Hoare annotation is: false [2023-11-26 11:52:29,057 INFO L899 garLoopResultBuilder]: For program point L561(lines 561 567) no Hoare annotation was computed. [2023-11-26 11:52:29,057 INFO L895 garLoopResultBuilder]: At program point L561-2(lines 555 568) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-26 11:52:29,057 INFO L899 garLoopResultBuilder]: For program point L545(lines 545 551) no Hoare annotation was computed. [2023-11-26 11:52:29,058 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2023-11-26 11:52:29,058 INFO L899 garLoopResultBuilder]: For program point L545-1(lines 545 551) no Hoare annotation was computed. [2023-11-26 11:52:29,058 INFO L899 garLoopResultBuilder]: For program point L768(lines 768 774) no Hoare annotation was computed. [2023-11-26 11:52:29,058 INFO L899 garLoopResultBuilder]: For program point L768-1(lines 768 774) no Hoare annotation was computed. [2023-11-26 11:52:29,058 INFO L895 garLoopResultBuilder]: At program point L570(lines 525 572) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-26 11:52:29,059 INFO L895 garLoopResultBuilder]: At program point L537(line 537) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-26 11:52:29,059 INFO L899 garLoopResultBuilder]: For program point $Ultimate##0(line -1) no Hoare annotation was computed. [2023-11-26 11:52:29,059 INFO L899 garLoopResultBuilder]: For program point L526(lines 525 572) no Hoare annotation was computed. [2023-11-26 11:52:29,059 INFO L899 garLoopResultBuilder]: For program point L555(lines 555 568) no Hoare annotation was computed. [2023-11-26 11:52:29,059 INFO L895 garLoopResultBuilder]: At program point L547(line 547) the Hoare annotation is: (and (= ~pumpRunning~0 0) (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) [2023-11-26 11:52:29,059 INFO L895 garLoopResultBuilder]: At program point L770(line 770) the Hoare annotation is: false [2023-11-26 11:52:29,060 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 437 448) no Hoare annotation was computed. [2023-11-26 11:52:29,060 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 437 448) the Hoare annotation is: true [2023-11-26 11:52:29,060 INFO L899 garLoopResultBuilder]: For program point L441-1(lines 437 448) no Hoare annotation was computed. [2023-11-26 11:52:29,060 INFO L895 garLoopResultBuilder]: At program point L636(line 636) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= 0 ~systemActive~0)) [2023-11-26 11:52:29,060 INFO L895 garLoopResultBuilder]: At program point L632(line 632) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= 0 ~systemActive~0)) [2023-11-26 11:52:29,060 INFO L899 garLoopResultBuilder]: For program point L630(lines 630 638) no Hoare annotation was computed. [2023-11-26 11:52:29,061 INFO L899 garLoopResultBuilder]: For program point L626(lines 626 643) no Hoare annotation was computed. [2023-11-26 11:52:29,061 INFO L899 garLoopResultBuilder]: For program point L754(lines 754 758) no Hoare annotation was computed. [2023-11-26 11:52:29,061 INFO L899 garLoopResultBuilder]: For program point L754-2(lines 754 758) no Hoare annotation was computed. [2023-11-26 11:52:29,061 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 622 646) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) (= 0 ~systemActive~0)) [2023-11-26 11:52:29,061 INFO L895 garLoopResultBuilder]: At program point L641(line 641) the Hoare annotation is: (or (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) (= 0 ~systemActive~0)) [2023-11-26 11:52:29,061 INFO L899 garLoopResultBuilder]: For program point L641-1(lines 622 646) no Hoare annotation was computed. [2023-11-26 11:52:29,062 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__lowWaterSensorEXIT(lines 622 646) no Hoare annotation was computed. [2023-11-26 11:52:29,070 INFO L445 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1] [2023-11-26 11:52:29,072 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2023-11-26 11:52:29,091 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 26.11 11:52:29 BoogieIcfgContainer [2023-11-26 11:52:29,091 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2023-11-26 11:52:29,092 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2023-11-26 11:52:29,092 INFO L270 PluginConnector]: Initializing Witness Printer... [2023-11-26 11:52:29,092 INFO L274 PluginConnector]: Witness Printer initialized [2023-11-26 11:52:29,093 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 26.11 11:52:27" (3/4) ... [2023-11-26 11:52:29,095 INFO L137 WitnessPrinter]: Generating witness for correct program [2023-11-26 11:52:29,101 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2023-11-26 11:52:29,101 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2023-11-26 11:52:29,101 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2023-11-26 11:52:29,101 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2023-11-26 11:52:29,101 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2023-11-26 11:52:29,101 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2023-11-26 11:52:29,102 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2023-11-26 11:52:29,102 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2023-11-26 11:52:29,119 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 32 nodes and edges [2023-11-26 11:52:29,120 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 10 nodes and edges [2023-11-26 11:52:29,121 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2023-11-26 11:52:29,122 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-26 11:52:29,122 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-26 11:52:29,236 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/witness.graphml [2023-11-26 11:52:29,237 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/witness.yml [2023-11-26 11:52:29,237 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2023-11-26 11:52:29,238 INFO L158 Benchmark]: Toolchain (without parser) took 3286.03ms. Allocated memory was 148.9MB in the beginning and 180.4MB in the end (delta: 31.5MB). Free memory was 108.6MB in the beginning and 139.7MB in the end (delta: -31.0MB). Peak memory consumption was 3.3MB. Max. memory is 16.1GB. [2023-11-26 11:52:29,238 INFO L158 Benchmark]: CDTParser took 0.31ms. Allocated memory is still 148.9MB. Free memory is still 118.7MB. There was no memory consumed. Max. memory is 16.1GB. [2023-11-26 11:52:29,238 INFO L158 Benchmark]: CACSL2BoogieTranslator took 552.70ms. Allocated memory is still 148.9MB. Free memory was 108.6MB in the beginning and 89.0MB in the end (delta: 19.6MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2023-11-26 11:52:29,239 INFO L158 Benchmark]: Boogie Procedure Inliner took 86.62ms. Allocated memory is still 148.9MB. Free memory was 89.0MB in the beginning and 86.9MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-11-26 11:52:29,239 INFO L158 Benchmark]: Boogie Preprocessor took 56.07ms. Allocated memory is still 148.9MB. Free memory was 86.9MB in the beginning and 84.8MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-11-26 11:52:29,239 INFO L158 Benchmark]: RCFGBuilder took 624.73ms. Allocated memory is still 148.9MB. Free memory was 84.4MB in the beginning and 63.4MB in the end (delta: 21.0MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2023-11-26 11:52:29,240 INFO L158 Benchmark]: TraceAbstraction took 1813.67ms. Allocated memory was 148.9MB in the beginning and 180.4MB in the end (delta: 31.5MB). Free memory was 63.0MB in the beginning and 147.0MB in the end (delta: -84.0MB). Peak memory consumption was 20.3MB. Max. memory is 16.1GB. [2023-11-26 11:52:29,240 INFO L158 Benchmark]: Witness Printer took 145.07ms. Allocated memory is still 180.4MB. Free memory was 147.0MB in the beginning and 139.7MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2023-11-26 11:52:29,242 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.31ms. Allocated memory is still 148.9MB. Free memory is still 118.7MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 552.70ms. Allocated memory is still 148.9MB. Free memory was 108.6MB in the beginning and 89.0MB in the end (delta: 19.6MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 86.62ms. Allocated memory is still 148.9MB. Free memory was 89.0MB in the beginning and 86.9MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 56.07ms. Allocated memory is still 148.9MB. Free memory was 86.9MB in the beginning and 84.8MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 624.73ms. Allocated memory is still 148.9MB. Free memory was 84.4MB in the beginning and 63.4MB in the end (delta: 21.0MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * TraceAbstraction took 1813.67ms. Allocated memory was 148.9MB in the beginning and 180.4MB in the end (delta: 31.5MB). Free memory was 63.0MB in the beginning and 147.0MB in the end (delta: -84.0MB). Peak memory consumption was 20.3MB. Max. memory is 16.1GB. * Witness Printer took 145.07ms. Allocated memory is still 180.4MB. Free memory was 147.0MB in the beginning and 139.7MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] - GenericResultAtLocation [Line: 415]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [415] - GenericResultAtLocation [Line: 511]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [511] - GenericResultAtLocation [Line: 581]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [581] - GenericResultAtLocation [Line: 779]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [779] - GenericResultAtLocation [Line: 806]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [806] - GenericResultAtLocation [Line: 844]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [844] - GenericResultAtLocation [Line: 940]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [940] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 945]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 72 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 1.7s, OverallIterations: 4, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.5s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.2s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 144 SdHoareTripleChecker+Valid, 0.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 140 mSDsluCounter, 460 SdHoareTripleChecker+Invalid, 0.2s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 197 mSDsCounter, 13 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 122 IncrementalHoareTripleChecker+Invalid, 135 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 13 mSolverCounterUnsat, 263 mSDtfsCounter, 122 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 22 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=93occurred in iteration=3, InterpolantAutomatonStates: 13, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 4 MinimizatonAttempts, 17 StatesRemovedByMinimization, 1 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 25 LocationsWithAnnotation, 154 PreInvPairs, 167 NumberOfFragments, 118 HoareAnnotationTreeSize, 154 FomulaSimplifications, 9 FormulaSimplificationTreeSizeReduction, 0.0s HoareSimplificationTime, 25 FomulaSimplificationsInter, 248 FormulaSimplificationTreeSizeReductionInter, 0.2s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.4s InterpolantComputationTime, 76 NumberOfCodeBlocks, 76 NumberOfCodeBlocksAsserted, 4 NumberOfCheckSat, 72 ConstructedInterpolants, 0 QuantifiedInterpolants, 146 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 4 InterpolantComputations, 4 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 524]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 525]: Loop Invariant Derived loop invariant: ((pumpRunning == 0) && (splverifierCounter == 0)) - InvariantResult [Line: 856]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2023-11-26 11:52:29,270 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_6a3b6a5d-785e-47c1-b276-aba96c3cda64/bin/uautomizer-verify-VRDe98Ueme/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE