./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec4_product28.cil.c --full-output --architecture 32bit


--------------------------------------------------------------------------------


Checking for ERROR reachability
Using default analysis
Version c7c6ca5d
Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec4_product28.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) )

 --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 55e5a3fffd3d06d466040a49171ceaa2c85a9bef51e649104f1e437fbb462cec
--- Real Ultimate output ---
This is Ultimate 0.2.5-?-c7c6ca5-m
[2024-11-08 15:15:43,193 INFO  L188        SettingsManager]: Resetting all preferences to default values...
[2024-11-08 15:15:43,243 INFO  L114        SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf
[2024-11-08 15:15:43,255 WARN  L101        SettingsManager]: Preference file contains the following unknown settings:
[2024-11-08 15:15:43,256 WARN  L103        SettingsManager]:   * de.uni_freiburg.informatik.ultimate.core.Log level for class
[2024-11-08 15:15:43,271 INFO  L130        SettingsManager]: Preferences different from defaults after loading the file:
[2024-11-08 15:15:43,271 INFO  L151        SettingsManager]: Preferences of UltimateCore differ from their defaults:
[2024-11-08 15:15:43,272 INFO  L153        SettingsManager]:  * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR;
[2024-11-08 15:15:43,272 INFO  L151        SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults:
[2024-11-08 15:15:43,272 INFO  L153        SettingsManager]:  * Use memory slicer=true
[2024-11-08 15:15:43,273 INFO  L151        SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults:
[2024-11-08 15:15:43,273 INFO  L153        SettingsManager]:  * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS
[2024-11-08 15:15:43,273 INFO  L151        SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults:
[2024-11-08 15:15:43,273 INFO  L153        SettingsManager]:  * Create parallel compositions if possible=false
[2024-11-08 15:15:43,274 INFO  L153        SettingsManager]:  * Use SBE=true
[2024-11-08 15:15:43,274 INFO  L151        SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults:
[2024-11-08 15:15:43,274 INFO  L153        SettingsManager]:  * Pointer base address is valid at dereference=IGNORE
[2024-11-08 15:15:43,275 INFO  L153        SettingsManager]:  * sizeof long=4
[2024-11-08 15:15:43,275 INFO  L153        SettingsManager]:  * Overapproximate operations on floating types=true
[2024-11-08 15:15:43,275 INFO  L153        SettingsManager]:  * sizeof POINTER=4
[2024-11-08 15:15:43,276 INFO  L153        SettingsManager]:  * Check division by zero=IGNORE
[2024-11-08 15:15:43,276 INFO  L153        SettingsManager]:  * Pointer to allocated memory at dereference=IGNORE
[2024-11-08 15:15:43,276 INFO  L153        SettingsManager]:  * If two pointers are subtracted or compared they have the same base address=IGNORE
[2024-11-08 15:15:43,277 INFO  L153        SettingsManager]:  * Check array bounds for arrays that are off heap=IGNORE
[2024-11-08 15:15:43,277 INFO  L153        SettingsManager]:  * Allow undefined functions=false
[2024-11-08 15:15:43,277 INFO  L153        SettingsManager]:  * sizeof long double=12
[2024-11-08 15:15:43,277 INFO  L153        SettingsManager]:  * Check if freed pointer was valid=false
[2024-11-08 15:15:43,278 INFO  L153        SettingsManager]:  * Use constant arrays=true
[2024-11-08 15:15:43,278 INFO  L151        SettingsManager]: Preferences of RCFGBuilder differ from their defaults:
[2024-11-08 15:15:43,278 INFO  L153        SettingsManager]:  * Size of a code block=SequenceOfStatements
[2024-11-08 15:15:43,278 INFO  L153        SettingsManager]:  * Only consider context switches at boundaries of atomic blocks=true
[2024-11-08 15:15:43,279 INFO  L153        SettingsManager]:  * SMT solver=External_DefaultMode
[2024-11-08 15:15:43,279 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2024-11-08 15:15:43,279 INFO  L151        SettingsManager]: Preferences of TraceAbstraction differ from their defaults:
[2024-11-08 15:15:43,279 INFO  L153        SettingsManager]:  * Compute Interpolants along a Counterexample=FPandBP
[2024-11-08 15:15:43,280 INFO  L153        SettingsManager]:  * Positions where we compute the Hoare Annotation=LoopHeads
[2024-11-08 15:15:43,280 INFO  L153        SettingsManager]:  * Trace refinement strategy=CAMEL
[2024-11-08 15:15:43,280 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in
[2024-11-08 15:15:43,280 INFO  L153        SettingsManager]:  * Apply one-shot large block encoding in concurrent analysis=false
[2024-11-08 15:15:43,281 INFO  L153        SettingsManager]:  * Automaton type used in concurrency analysis=PETRI_NET
[2024-11-08 15:15:43,281 INFO  L153        SettingsManager]:  * Order on configurations for Petri net unfoldings=DBO
[2024-11-08 15:15:43,281 INFO  L153        SettingsManager]:  * SMT solver=External_ModelsAndUnsatCoreMode
[2024-11-08 15:15:43,281 INFO  L153        SettingsManager]:  * Looper check in Petri net analysis=SEMANTIC
WARNING: An illegal reflective access operation has occurred
WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int)
WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1
WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations
WARNING: All illegal access operations will be denied in a future release
Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) )


Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 55e5a3fffd3d06d466040a49171ceaa2c85a9bef51e649104f1e437fbb462cec
[2024-11-08 15:15:43,487 INFO  L75    nceAwareModelManager]: Repository-Root is: /tmp
[2024-11-08 15:15:43,511 INFO  L261   ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized
[2024-11-08 15:15:43,514 INFO  L217   ainManager$Toolchain]: [Toolchain 1]: Toolchain selected.
[2024-11-08 15:15:43,516 INFO  L270        PluginConnector]: Initializing CDTParser...
[2024-11-08 15:15:43,517 INFO  L274        PluginConnector]: CDTParser initialized
[2024-11-08 15:15:43,518 INFO  L431   ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec4_product28.cil.c
[2024-11-08 15:15:44,917 INFO  L533              CDTParser]: Created temporary CDT project at NULL
[2024-11-08 15:15:45,092 INFO  L384              CDTParser]: Found 1 translation units.
[2024-11-08 15:15:45,093 INFO  L180              CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product28.cil.c
[2024-11-08 15:15:45,103 INFO  L427              CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/6f550a62b/0a5344f9b89d481f854aaa1ae48ff73e/FLAG067e5baac
[2024-11-08 15:15:45,115 INFO  L435              CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/6f550a62b/0a5344f9b89d481f854aaa1ae48ff73e
[2024-11-08 15:15:45,119 INFO  L299   ainManager$Toolchain]: ####################### [Toolchain 1] #######################
[2024-11-08 15:15:45,120 INFO  L133        ToolchainWalker]: Walking toolchain with 6 elements.
[2024-11-08 15:15:45,122 INFO  L112        PluginConnector]: ------------------------CACSL2BoogieTranslator----------------------------
[2024-11-08 15:15:45,123 INFO  L270        PluginConnector]: Initializing CACSL2BoogieTranslator...
[2024-11-08 15:15:45,127 INFO  L274        PluginConnector]: CACSL2BoogieTranslator initialized
[2024-11-08 15:15:45,128 INFO  L184        PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,128 INFO  L204        PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@79888b6f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45, skipping insertion in model container
[2024-11-08 15:15:45,130 INFO  L184        PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,173 INFO  L175         MainTranslator]: Built tables and reachable declarations
[2024-11-08 15:15:45,341 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product28.cil.c[1605,1618]
[2024-11-08 15:15:45,424 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2024-11-08 15:15:45,432 INFO  L200         MainTranslator]: Completed pre-run
[2024-11-08 15:15:45,439 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49]
[2024-11-08 15:15:45,440 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [58]
[2024-11-08 15:15:45,441 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [424]
[2024-11-08 15:15:45,441 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [452]
[2024-11-08 15:15:45,441 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [490]
[2024-11-08 15:15:45,441 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [693]
[2024-11-08 15:15:45,441 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [784]
[2024-11-08 15:15:45,441 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [881]
[2024-11-08 15:15:45,444 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product28.cil.c[1605,1618]
[2024-11-08 15:15:45,476 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2024-11-08 15:15:45,492 INFO  L204         MainTranslator]: Completed translation
[2024-11-08 15:15:45,492 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45 WrapperNode
[2024-11-08 15:15:45,492 INFO  L131        PluginConnector]: ------------------------ END CACSL2BoogieTranslator----------------------------
[2024-11-08 15:15:45,493 INFO  L112        PluginConnector]: ------------------------Boogie Procedure Inliner----------------------------
[2024-11-08 15:15:45,493 INFO  L270        PluginConnector]: Initializing Boogie Procedure Inliner...
[2024-11-08 15:15:45,494 INFO  L274        PluginConnector]: Boogie Procedure Inliner initialized
[2024-11-08 15:15:45,499 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,508 INFO  L184        PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,524 INFO  L138                Inliner]: procedures = 55, calls = 98, calls flagged for inlining = 24, calls inlined = 18, statements flattened = 172
[2024-11-08 15:15:45,525 INFO  L131        PluginConnector]: ------------------------ END Boogie Procedure Inliner----------------------------
[2024-11-08 15:15:45,525 INFO  L112        PluginConnector]: ------------------------Boogie Preprocessor----------------------------
[2024-11-08 15:15:45,526 INFO  L270        PluginConnector]: Initializing Boogie Preprocessor...
[2024-11-08 15:15:45,526 INFO  L274        PluginConnector]: Boogie Preprocessor initialized
[2024-11-08 15:15:45,535 INFO  L184        PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,535 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,541 INFO  L184        PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,553 INFO  L175           MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0].
[2024-11-08 15:15:45,553 INFO  L184        PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,553 INFO  L184        PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,557 INFO  L184        PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,560 INFO  L184        PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,561 INFO  L184        PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,562 INFO  L184        PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,563 INFO  L131        PluginConnector]: ------------------------ END Boogie Preprocessor----------------------------
[2024-11-08 15:15:45,564 INFO  L112        PluginConnector]: ------------------------RCFGBuilder----------------------------
[2024-11-08 15:15:45,564 INFO  L270        PluginConnector]: Initializing RCFGBuilder...
[2024-11-08 15:15:45,564 INFO  L274        PluginConnector]: RCFGBuilder initialized
[2024-11-08 15:15:45,565 INFO  L184        PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (1/1) ...
[2024-11-08 15:15:45,569 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2024-11-08 15:15:45,579 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3
[2024-11-08 15:15:45,592 INFO  L229       MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null)
[2024-11-08 15:15:45,594 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process
[2024-11-08 15:15:45,628 INFO  L130     BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit
[2024-11-08 15:15:45,628 INFO  L130     BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base
[2024-11-08 15:15:45,628 INFO  L138     BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base
[2024-11-08 15:15:45,628 INFO  L130     BoogieDeclarations]: Found specification of procedure cleanup
[2024-11-08 15:15:45,629 INFO  L138     BoogieDeclarations]: Found implementation of procedure cleanup
[2024-11-08 15:15:45,629 INFO  L130     BoogieDeclarations]: Found specification of procedure timeShift
[2024-11-08 15:15:45,629 INFO  L138     BoogieDeclarations]: Found implementation of procedure timeShift
[2024-11-08 15:15:45,629 INFO  L130     BoogieDeclarations]: Found specification of procedure waterRise
[2024-11-08 15:15:45,629 INFO  L138     BoogieDeclarations]: Found implementation of procedure waterRise
[2024-11-08 15:15:45,629 INFO  L130     BoogieDeclarations]: Found specification of procedure deactivatePump
[2024-11-08 15:15:45,629 INFO  L138     BoogieDeclarations]: Found implementation of procedure deactivatePump
[2024-11-08 15:15:45,629 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#0
[2024-11-08 15:15:45,629 INFO  L130     BoogieDeclarations]: Found specification of procedure changeMethaneLevel
[2024-11-08 15:15:45,629 INFO  L138     BoogieDeclarations]: Found implementation of procedure changeMethaneLevel
[2024-11-08 15:15:45,629 INFO  L130     BoogieDeclarations]: Found specification of procedure ULTIMATE.start
[2024-11-08 15:15:45,630 INFO  L138     BoogieDeclarations]: Found implementation of procedure ULTIMATE.start
[2024-11-08 15:15:45,686 INFO  L238             CfgBuilder]: Building ICFG
[2024-11-08 15:15:45,687 INFO  L264             CfgBuilder]: Building CFG for each procedure with an implementation
[2024-11-08 15:15:45,878 INFO  L?                        ?]: Removed 36 outVars from TransFormulas that were not future-live.
[2024-11-08 15:15:45,878 INFO  L287             CfgBuilder]: Performing block encoding
[2024-11-08 15:15:45,895 INFO  L311             CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start)
[2024-11-08 15:15:45,897 INFO  L316             CfgBuilder]: Removed 2 assume(true) statements.
[2024-11-08 15:15:45,898 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 08.11 03:15:45 BoogieIcfgContainer
[2024-11-08 15:15:45,898 INFO  L131        PluginConnector]: ------------------------ END RCFGBuilder----------------------------
[2024-11-08 15:15:45,899 INFO  L112        PluginConnector]: ------------------------TraceAbstraction----------------------------
[2024-11-08 15:15:45,900 INFO  L270        PluginConnector]: Initializing TraceAbstraction...
[2024-11-08 15:15:45,903 INFO  L274        PluginConnector]: TraceAbstraction initialized
[2024-11-08 15:15:45,903 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 08.11 03:15:45" (1/3) ...
[2024-11-08 15:15:45,903 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@25b85c37 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 08.11 03:15:45, skipping insertion in model container
[2024-11-08 15:15:45,904 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 03:15:45" (2/3) ...
[2024-11-08 15:15:45,904 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@25b85c37 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 08.11 03:15:45, skipping insertion in model container
[2024-11-08 15:15:45,904 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 08.11 03:15:45" (3/3) ...
[2024-11-08 15:15:45,905 INFO  L112   eAbstractionObserver]: Analyzing ICFG minepump_spec4_product28.cil.c
[2024-11-08 15:15:45,919 INFO  L214   ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION
[2024-11-08 15:15:45,919 INFO  L154   ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations.
[2024-11-08 15:15:45,973 INFO  L332      AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ========
[2024-11-08 15:15:45,983 INFO  L333      AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@58cccb6c, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms]
[2024-11-08 15:15:45,985 INFO  L334      AbstractCegarLoop]: Starting to check reachability of 1 error locations.
[2024-11-08 15:15:45,993 INFO  L276                IsEmpty]: Start isEmpty. Operand  has 77 states, 59 states have (on average 1.3898305084745763) internal successors, (82), 66 states have internal predecessors, (82), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 8 states have call predecessors, (10), 10 states have call successors, (10)
[2024-11-08 15:15:46,008 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 20
[2024-11-08 15:15:46,008 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-08 15:15:46,009 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-08 15:15:46,009 INFO  L396      AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-08 15:15:46,017 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-08 15:15:46,017 INFO  L85        PathProgramCache]: Analyzing trace with hash -1648394347, now seen corresponding path program 1 times
[2024-11-08 15:15:46,025 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-08 15:15:46,025 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [87014563]
[2024-11-08 15:15:46,025 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-08 15:15:46,026 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-08 15:15:46,113 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-08 15:15:46,170 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-08 15:15:46,171 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-08 15:15:46,171 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [87014563]
[2024-11-08 15:15:46,172 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [87014563] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-08 15:15:46,172 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-08 15:15:46,172 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2
[2024-11-08 15:15:46,174 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1608536929]
[2024-11-08 15:15:46,174 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-08 15:15:46,178 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 2 states
[2024-11-08 15:15:46,178 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-08 15:15:46,239 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants.
[2024-11-08 15:15:46,244 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2
[2024-11-08 15:15:46,246 INFO  L87              Difference]: Start difference. First operand  has 77 states, 59 states have (on average 1.3898305084745763) internal successors, (82), 66 states have internal predecessors, (82), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 8 states have call predecessors, (10), 10 states have call successors, (10) Second operand  has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:46,308 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-08 15:15:46,308 INFO  L93              Difference]: Finished difference Result 146 states and 199 transitions.
[2024-11-08 15:15:46,310 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. 
[2024-11-08 15:15:46,311 INFO  L78                 Accepts]: Start accepts. Automaton has  has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19
[2024-11-08 15:15:46,312 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-08 15:15:46,318 INFO  L225             Difference]: With dead ends: 146
[2024-11-08 15:15:46,318 INFO  L226             Difference]: Without dead ends: 68
[2024-11-08 15:15:46,322 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2
[2024-11-08 15:15:46,325 INFO  L432           NwaCegarLoop]: 96 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 96 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-08 15:15:46,326 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 96 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-08 15:15:46,338 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 68 states.
[2024-11-08 15:15:46,356 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 68 to 68.
[2024-11-08 15:15:46,358 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 68 states, 52 states have (on average 1.3076923076923077) internal successors, (68), 58 states have internal predecessors, (68), 10 states have call successors, (10), 6 states have call predecessors, (10), 5 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9)
[2024-11-08 15:15:46,360 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 68 states to 68 states and 87 transitions.
[2024-11-08 15:15:46,365 INFO  L78                 Accepts]: Start accepts. Automaton has 68 states and 87 transitions. Word has length 19
[2024-11-08 15:15:46,365 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-08 15:15:46,365 INFO  L471      AbstractCegarLoop]: Abstraction has 68 states and 87 transitions.
[2024-11-08 15:15:46,365 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:46,366 INFO  L276                IsEmpty]: Start isEmpty. Operand 68 states and 87 transitions.
[2024-11-08 15:15:46,368 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 21
[2024-11-08 15:15:46,369 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-08 15:15:46,369 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-08 15:15:46,369 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0
[2024-11-08 15:15:46,369 INFO  L396      AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-08 15:15:46,370 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-08 15:15:46,370 INFO  L85        PathProgramCache]: Analyzing trace with hash 1560615980, now seen corresponding path program 1 times
[2024-11-08 15:15:46,371 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-08 15:15:46,371 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2127871422]
[2024-11-08 15:15:46,371 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-08 15:15:46,371 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-08 15:15:46,393 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-08 15:15:46,489 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-08 15:15:46,490 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-08 15:15:46,490 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2127871422]
[2024-11-08 15:15:46,492 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2127871422] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-08 15:15:46,492 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-08 15:15:46,492 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2024-11-08 15:15:46,492 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [849611593]
[2024-11-08 15:15:46,492 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-08 15:15:46,493 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2024-11-08 15:15:46,493 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-08 15:15:46,494 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2024-11-08 15:15:46,494 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-08 15:15:46,494 INFO  L87              Difference]: Start difference. First operand 68 states and 87 transitions. Second operand  has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:46,506 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-08 15:15:46,508 INFO  L93              Difference]: Finished difference Result 97 states and 123 transitions.
[2024-11-08 15:15:46,509 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2024-11-08 15:15:46,509 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 20
[2024-11-08 15:15:46,509 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-08 15:15:46,510 INFO  L225             Difference]: With dead ends: 97
[2024-11-08 15:15:46,511 INFO  L226             Difference]: Without dead ends: 59
[2024-11-08 15:15:46,512 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-08 15:15:46,513 INFO  L432           NwaCegarLoop]: 74 mSDtfsCounter, 17 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 126 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-08 15:15:46,514 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 126 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-08 15:15:46,514 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 59 states.
[2024-11-08 15:15:46,521 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 59 to 59.
[2024-11-08 15:15:46,522 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 59 states, 46 states have (on average 1.326086956521739) internal successors, (61), 52 states have internal predecessors, (61), 7 states have call successors, (7), 5 states have call predecessors, (7), 5 states have return successors, (7), 5 states have call predecessors, (7), 7 states have call successors, (7)
[2024-11-08 15:15:46,524 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 59 states to 59 states and 75 transitions.
[2024-11-08 15:15:46,525 INFO  L78                 Accepts]: Start accepts. Automaton has 59 states and 75 transitions. Word has length 20
[2024-11-08 15:15:46,526 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-08 15:15:46,526 INFO  L471      AbstractCegarLoop]: Abstraction has 59 states and 75 transitions.
[2024-11-08 15:15:46,526 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:46,526 INFO  L276                IsEmpty]: Start isEmpty. Operand 59 states and 75 transitions.
[2024-11-08 15:15:46,527 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 26
[2024-11-08 15:15:46,527 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-08 15:15:46,527 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-08 15:15:46,528 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1
[2024-11-08 15:15:46,528 INFO  L396      AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-08 15:15:46,529 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-08 15:15:46,529 INFO  L85        PathProgramCache]: Analyzing trace with hash -554755590, now seen corresponding path program 1 times
[2024-11-08 15:15:46,532 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-08 15:15:46,532 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1939704353]
[2024-11-08 15:15:46,532 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-08 15:15:46,532 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-08 15:15:46,550 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-08 15:15:46,633 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-08 15:15:46,633 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-08 15:15:46,633 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1939704353]
[2024-11-08 15:15:46,634 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1939704353] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-08 15:15:46,634 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-08 15:15:46,634 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2
[2024-11-08 15:15:46,634 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [730729288]
[2024-11-08 15:15:46,634 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-08 15:15:46,634 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2024-11-08 15:15:46,634 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-08 15:15:46,635 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2024-11-08 15:15:46,635 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-08 15:15:46,635 INFO  L87              Difference]: Start difference. First operand 59 states and 75 transitions. Second operand  has 3 states, 3 states have (on average 8.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:46,665 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-08 15:15:46,669 INFO  L93              Difference]: Finished difference Result 161 states and 210 transitions.
[2024-11-08 15:15:46,670 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2024-11-08 15:15:46,670 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 8.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 25
[2024-11-08 15:15:46,670 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-08 15:15:46,671 INFO  L225             Difference]: With dead ends: 161
[2024-11-08 15:15:46,674 INFO  L226             Difference]: Without dead ends: 109
[2024-11-08 15:15:46,674 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-08 15:15:46,675 INFO  L432           NwaCegarLoop]: 86 mSDtfsCounter, 53 mSDsluCounter, 63 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 53 SdHoareTripleChecker+Valid, 149 SdHoareTripleChecker+Invalid, 6 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-08 15:15:46,675 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [53 Valid, 149 Invalid, 6 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-08 15:15:46,676 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 109 states.
[2024-11-08 15:15:46,692 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 109 to 106.
[2024-11-08 15:15:46,694 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 106 states, 81 states have (on average 1.3580246913580247) internal successors, (110), 92 states have internal predecessors, (110), 14 states have call successors, (14), 10 states have call predecessors, (14), 10 states have return successors, (14), 9 states have call predecessors, (14), 14 states have call successors, (14)
[2024-11-08 15:15:46,695 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 106 states to 106 states and 138 transitions.
[2024-11-08 15:15:46,697 INFO  L78                 Accepts]: Start accepts. Automaton has 106 states and 138 transitions. Word has length 25
[2024-11-08 15:15:46,697 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-08 15:15:46,697 INFO  L471      AbstractCegarLoop]: Abstraction has 106 states and 138 transitions.
[2024-11-08 15:15:46,697 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 8.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:46,698 INFO  L276                IsEmpty]: Start isEmpty. Operand 106 states and 138 transitions.
[2024-11-08 15:15:46,698 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 29
[2024-11-08 15:15:46,699 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-08 15:15:46,699 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-08 15:15:46,699 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2
[2024-11-08 15:15:46,700 INFO  L396      AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-08 15:15:46,700 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-08 15:15:46,702 INFO  L85        PathProgramCache]: Analyzing trace with hash -1630732591, now seen corresponding path program 1 times
[2024-11-08 15:15:46,703 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-08 15:15:46,703 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1623906377]
[2024-11-08 15:15:46,703 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-08 15:15:46,703 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-08 15:15:46,719 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-08 15:15:46,827 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-08 15:15:46,828 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-08 15:15:46,828 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1623906377]
[2024-11-08 15:15:46,828 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1623906377] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-08 15:15:46,828 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-08 15:15:46,828 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4
[2024-11-08 15:15:46,828 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [465394029]
[2024-11-08 15:15:46,829 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-08 15:15:46,829 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2024-11-08 15:15:46,829 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-08 15:15:46,830 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2024-11-08 15:15:46,830 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2024-11-08 15:15:46,830 INFO  L87              Difference]: Start difference. First operand 106 states and 138 transitions. Second operand  has 5 states, 5 states have (on average 5.4) internal successors, (27), 4 states have internal predecessors, (27), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:46,901 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-08 15:15:46,902 INFO  L93              Difference]: Finished difference Result 292 states and 395 transitions.
[2024-11-08 15:15:46,902 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2024-11-08 15:15:46,902 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 5 states have (on average 5.4) internal successors, (27), 4 states have internal predecessors, (27), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 28
[2024-11-08 15:15:46,902 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-08 15:15:46,904 INFO  L225             Difference]: With dead ends: 292
[2024-11-08 15:15:46,904 INFO  L226             Difference]: Without dead ends: 193
[2024-11-08 15:15:46,909 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42
[2024-11-08 15:15:46,910 INFO  L432           NwaCegarLoop]: 69 mSDtfsCounter, 41 mSDsluCounter, 198 mSDsCounter, 0 mSdLazyCounter, 26 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 41 SdHoareTripleChecker+Valid, 267 SdHoareTripleChecker+Invalid, 28 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 26 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-08 15:15:46,910 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [41 Valid, 267 Invalid, 28 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 26 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-08 15:15:46,911 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 193 states.
[2024-11-08 15:15:46,941 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 193 to 193.
[2024-11-08 15:15:46,942 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 193 states, 146 states have (on average 1.3424657534246576) internal successors, (196), 165 states have internal predecessors, (196), 28 states have call successors, (28), 20 states have call predecessors, (28), 18 states have return successors, (30), 16 states have call predecessors, (30), 28 states have call successors, (30)
[2024-11-08 15:15:46,945 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 193 states to 193 states and 254 transitions.
[2024-11-08 15:15:46,948 INFO  L78                 Accepts]: Start accepts. Automaton has 193 states and 254 transitions. Word has length 28
[2024-11-08 15:15:46,948 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-08 15:15:46,948 INFO  L471      AbstractCegarLoop]: Abstraction has 193 states and 254 transitions.
[2024-11-08 15:15:46,948 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 5 states have (on average 5.4) internal successors, (27), 4 states have internal predecessors, (27), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:46,949 INFO  L276                IsEmpty]: Start isEmpty. Operand 193 states and 254 transitions.
[2024-11-08 15:15:46,950 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 31
[2024-11-08 15:15:46,951 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-08 15:15:46,951 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-08 15:15:46,951 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3
[2024-11-08 15:15:46,952 INFO  L396      AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-08 15:15:46,952 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-08 15:15:46,952 INFO  L85        PathProgramCache]: Analyzing trace with hash -1914845034, now seen corresponding path program 1 times
[2024-11-08 15:15:46,952 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-08 15:15:46,953 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1525032563]
[2024-11-08 15:15:46,953 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-08 15:15:46,953 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-08 15:15:46,967 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-08 15:15:47,015 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-08 15:15:47,016 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-08 15:15:47,016 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1525032563]
[2024-11-08 15:15:47,016 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1525032563] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-08 15:15:47,016 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-08 15:15:47,016 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2
[2024-11-08 15:15:47,016 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [448625306]
[2024-11-08 15:15:47,017 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-08 15:15:47,017 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2024-11-08 15:15:47,017 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-08 15:15:47,017 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2024-11-08 15:15:47,017 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-08 15:15:47,018 INFO  L87              Difference]: Start difference. First operand 193 states and 254 transitions. Second operand  has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 2 states have internal predecessors, (29), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:47,043 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-08 15:15:47,045 INFO  L93              Difference]: Finished difference Result 329 states and 437 transitions.
[2024-11-08 15:15:47,046 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2024-11-08 15:15:47,046 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 2 states have internal predecessors, (29), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 30
[2024-11-08 15:15:47,046 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-08 15:15:47,048 INFO  L225             Difference]: With dead ends: 329
[2024-11-08 15:15:47,048 INFO  L226             Difference]: Without dead ends: 143
[2024-11-08 15:15:47,049 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-08 15:15:47,050 INFO  L432           NwaCegarLoop]: 50 mSDtfsCounter, 34 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 34 SdHoareTripleChecker+Valid, 50 SdHoareTripleChecker+Invalid, 6 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-08 15:15:47,050 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [34 Valid, 50 Invalid, 6 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-08 15:15:47,051 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 143 states.
[2024-11-08 15:15:47,060 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 143 to 141.
[2024-11-08 15:15:47,061 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 141 states, 110 states have (on average 1.2545454545454546) internal successors, (138), 117 states have internal predecessors, (138), 16 states have call successors, (16), 16 states have call predecessors, (16), 14 states have return successors, (16), 14 states have call predecessors, (16), 16 states have call successors, (16)
[2024-11-08 15:15:47,061 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 141 states to 141 states and 170 transitions.
[2024-11-08 15:15:47,062 INFO  L78                 Accepts]: Start accepts. Automaton has 141 states and 170 transitions. Word has length 30
[2024-11-08 15:15:47,062 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-08 15:15:47,062 INFO  L471      AbstractCegarLoop]: Abstraction has 141 states and 170 transitions.
[2024-11-08 15:15:47,062 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 2 states have internal predecessors, (29), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:47,062 INFO  L276                IsEmpty]: Start isEmpty. Operand 141 states and 170 transitions.
[2024-11-08 15:15:47,063 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 33
[2024-11-08 15:15:47,063 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-08 15:15:47,064 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-08 15:15:47,064 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4
[2024-11-08 15:15:47,064 INFO  L396      AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-08 15:15:47,064 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-08 15:15:47,064 INFO  L85        PathProgramCache]: Analyzing trace with hash -1848826057, now seen corresponding path program 1 times
[2024-11-08 15:15:47,065 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-08 15:15:47,065 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1364373786]
[2024-11-08 15:15:47,065 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-08 15:15:47,065 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-08 15:15:47,075 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-08 15:15:47,159 INFO  L368   atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11
[2024-11-08 15:15:47,161 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-08 15:15:47,165 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-08 15:15:47,166 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-08 15:15:47,166 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1364373786]
[2024-11-08 15:15:47,167 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1364373786] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-08 15:15:47,167 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-08 15:15:47,167 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6
[2024-11-08 15:15:47,170 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1902949012]
[2024-11-08 15:15:47,170 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-08 15:15:47,170 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 6 states
[2024-11-08 15:15:47,171 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-08 15:15:47,171 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants.
[2024-11-08 15:15:47,172 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30
[2024-11-08 15:15:47,172 INFO  L87              Difference]: Start difference. First operand 141 states and 170 transitions. Second operand  has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-08 15:15:47,253 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-08 15:15:47,254 INFO  L93              Difference]: Finished difference Result 145 states and 174 transitions.
[2024-11-08 15:15:47,254 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. 
[2024-11-08 15:15:47,254 INFO  L78                 Accepts]: Start accepts. Automaton has  has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 32
[2024-11-08 15:15:47,254 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-08 15:15:47,255 INFO  L225             Difference]: With dead ends: 145
[2024-11-08 15:15:47,255 INFO  L226             Difference]: Without dead ends: 0
[2024-11-08 15:15:47,256 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=25, Invalid=47, Unknown=0, NotChecked=0, Total=72
[2024-11-08 15:15:47,257 INFO  L432           NwaCegarLoop]: 40 mSDtfsCounter, 42 mSDsluCounter, 101 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 43 SdHoareTripleChecker+Valid, 141 SdHoareTripleChecker+Invalid, 56 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time
[2024-11-08 15:15:47,260 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [43 Valid, 141 Invalid, 56 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time]
[2024-11-08 15:15:47,261 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 0 states.
[2024-11-08 15:15:47,261 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0.
[2024-11-08 15:15:47,261 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-08 15:15:47,261 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions.
[2024-11-08 15:15:47,261 INFO  L78                 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 32
[2024-11-08 15:15:47,261 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-08 15:15:47,261 INFO  L471      AbstractCegarLoop]: Abstraction has 0 states and 0 transitions.
[2024-11-08 15:15:47,261 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-08 15:15:47,262 INFO  L276                IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions.
[2024-11-08 15:15:47,262 INFO  L282                IsEmpty]: Finished isEmpty. No accepting run.
[2024-11-08 15:15:47,264 INFO  L782   garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining)
[2024-11-08 15:15:47,266 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5
[2024-11-08 15:15:47,268 INFO  L407         BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1]
[2024-11-08 15:15:47,270 INFO  L343    DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions.
[2024-11-08 15:15:47,593 INFO  L170   ceAbstractionStarter]: Computing trace abstraction results
[2024-11-08 15:15:47,628 WARN  L156        FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (= |old(~pumpRunning~0)| 0) (= |old(~waterLevel~0)| ~waterLevel~0))  Eliminated clause: (= ~pumpRunning~0 0)
[2024-11-08 15:15:47,631 WARN  L156        FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (= |old(~waterLevel~0)| ~waterLevel~0))  Eliminated clause: (= ~pumpRunning~0 0)
[2024-11-08 15:15:47,631 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 08.11 03:15:47 BoogieIcfgContainer
[2024-11-08 15:15:47,632 INFO  L131        PluginConnector]: ------------------------ END TraceAbstraction----------------------------
[2024-11-08 15:15:47,632 INFO  L112        PluginConnector]: ------------------------Witness Printer----------------------------
[2024-11-08 15:15:47,632 INFO  L270        PluginConnector]: Initializing Witness Printer...
[2024-11-08 15:15:47,632 INFO  L274        PluginConnector]: Witness Printer initialized
[2024-11-08 15:15:47,633 INFO  L184        PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 08.11 03:15:45" (3/4) ...
[2024-11-08 15:15:47,635 INFO  L142         WitnessPrinter]: Generating witness for correct program
[2024-11-08 15:15:47,638 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump
[2024-11-08 15:15:47,638 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base
[2024-11-08 15:15:47,639 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel
[2024-11-08 15:15:47,639 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup
[2024-11-08 15:15:47,639 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift
[2024-11-08 15:15:47,639 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise
[2024-11-08 15:15:47,643 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 20 nodes and edges
[2024-11-08 15:15:47,643 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges
[2024-11-08 15:15:47,643 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges
[2024-11-08 15:15:47,644 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2024-11-08 15:15:47,644 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2024-11-08 15:15:47,719 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml
[2024-11-08 15:15:47,719 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml
[2024-11-08 15:15:47,719 INFO  L131        PluginConnector]: ------------------------ END Witness Printer----------------------------
[2024-11-08 15:15:47,720 INFO  L158              Benchmark]: Toolchain (without parser) took 2599.57ms. Allocated memory was 188.7MB in the beginning and 287.3MB in the end (delta: 98.6MB). Free memory was 113.8MB in the beginning and 116.6MB in the end (delta: -2.8MB). Peak memory consumption was 94.1MB. Max. memory is 16.1GB.
[2024-11-08 15:15:47,720 INFO  L158              Benchmark]: CDTParser took 0.16ms. Allocated memory is still 188.7MB. Free memory is still 140.5MB. There was no memory consumed. Max. memory is 16.1GB.
[2024-11-08 15:15:47,720 INFO  L158              Benchmark]: CACSL2BoogieTranslator took 370.89ms. Allocated memory was 188.7MB in the beginning and 287.3MB in the end (delta: 98.6MB). Free memory was 113.6MB in the beginning and 249.7MB in the end (delta: -136.1MB). Peak memory consumption was 17.7MB. Max. memory is 16.1GB.
[2024-11-08 15:15:47,720 INFO  L158              Benchmark]: Boogie Procedure Inliner took 31.55ms. Allocated memory is still 287.3MB. Free memory was 249.7MB in the beginning and 247.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
[2024-11-08 15:15:47,720 INFO  L158              Benchmark]: Boogie Preprocessor took 37.81ms. Allocated memory is still 287.3MB. Free memory was 247.6MB in the beginning and 245.5MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
[2024-11-08 15:15:47,721 INFO  L158              Benchmark]: RCFGBuilder took 334.03ms. Allocated memory is still 287.3MB. Free memory was 245.5MB in the beginning and 228.4MB in the end (delta: 17.1MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB.
[2024-11-08 15:15:47,721 INFO  L158              Benchmark]: TraceAbstraction took 1732.27ms. Allocated memory is still 287.3MB. Free memory was 227.4MB in the beginning and 123.9MB in the end (delta: 103.5MB). Peak memory consumption was 101.6MB. Max. memory is 16.1GB.
[2024-11-08 15:15:47,721 INFO  L158              Benchmark]: Witness Printer took 87.03ms. Allocated memory is still 287.3MB. Free memory was 123.9MB in the beginning and 116.6MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB.
[2024-11-08 15:15:47,722 INFO  L338   ainManager$Toolchain]: #######################  End [Toolchain 1] #######################
 --- Results ---
 * Results from de.uni_freiburg.informatik.ultimate.core:
  - StatisticsResult: Toolchain Benchmarks
    Benchmark results are:
 * CDTParser took 0.16ms. Allocated memory is still 188.7MB. Free memory is still 140.5MB. There was no memory consumed. Max. memory is 16.1GB.
 * CACSL2BoogieTranslator took 370.89ms. Allocated memory was 188.7MB in the beginning and 287.3MB in the end (delta: 98.6MB). Free memory was 113.6MB in the beginning and 249.7MB in the end (delta: -136.1MB). Peak memory consumption was 17.7MB. Max. memory is 16.1GB.
 * Boogie Procedure Inliner took 31.55ms. Allocated memory is still 287.3MB. Free memory was 249.7MB in the beginning and 247.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
 * Boogie Preprocessor took 37.81ms. Allocated memory is still 287.3MB. Free memory was 247.6MB in the beginning and 245.5MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
 * RCFGBuilder took 334.03ms. Allocated memory is still 287.3MB. Free memory was 245.5MB in the beginning and 228.4MB in the end (delta: 17.1MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB.
 * TraceAbstraction took 1732.27ms. Allocated memory is still 287.3MB. Free memory was 227.4MB in the beginning and 123.9MB in the end (delta: 103.5MB). Peak memory consumption was 101.6MB. Max. memory is 16.1GB.
 * Witness Printer took 87.03ms. Allocated memory is still 287.3MB. Free memory was 123.9MB in the beginning and 116.6MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB.
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator:
  - GenericResultAtLocation [Line: 49]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49]
  - GenericResultAtLocation [Line: 58]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [58]
  - GenericResultAtLocation [Line: 424]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [424]
  - GenericResultAtLocation [Line: 452]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [452]
  - GenericResultAtLocation [Line: 490]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [490]
  - GenericResultAtLocation [Line: 693]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [693]
  - GenericResultAtLocation [Line: 784]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [784]
  - GenericResultAtLocation [Line: 881]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [881]
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction:
  - StatisticsResult: ErrorAutomatonStatistics
    NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0
  - PositiveResult [Line: 54]: a call to reach_error is unreachable
    For all program executions holds that a call to reach_error is unreachable at this location
  - StatisticsResult: Ultimate Automizer benchmark data
    CFG has 7 procedures, 77 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 1.3s, OverallIterations: 6, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 192 SdHoareTripleChecker+Valid, 0.1s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 187 mSDsluCounter, 829 SdHoareTripleChecker+Invalid, 0.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 414 mSDsCounter, 13 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 84 IncrementalHoareTripleChecker+Invalid, 97 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 13 mSolverCounterUnsat, 415 mSDtfsCounter, 84 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 28 GetRequests, 13 SyntacticMatches, 0 SemanticMatches, 15 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=193occurred in iteration=4, InterpolantAutomatonStates: 22, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 6 MinimizatonAttempts, 5 StatesRemovedByMinimization, 2 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.5s InterpolantComputationTime, 154 NumberOfCodeBlocks, 154 NumberOfCodeBlocksAsserted, 6 NumberOfCheckSat, 148 ConstructedInterpolants, 0 QuantifiedInterpolants, 332 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 6 InterpolantComputations, 6 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available
  - AllSpecificationsHoldResult: All specifications hold
    1 specifications checked. All of them hold
  - InvariantResult [Line: 891]: Location Invariant
    Derived location invariant: 0
  - InvariantResult [Line: 796]: Loop Invariant
    Derived loop invariant: 0
  - InvariantResult [Line: 892]: Loop Invariant
    Derived loop invariant: ((pumpRunning == 0) && (splverifierCounter == 0))
  - ProcedureContractResult [Line: 587]: Procedure Contract for deactivatePump
    Derived contract for procedure deactivatePump. Requires: 0 Ensures: (0 && (((((head == \old(head)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 528]: Procedure Contract for processEnvironment__wrappee__base
    Derived contract for procedure processEnvironment__wrappee__base. Requires: (pumpRunning == 0) Ensures: ((pumpRunning == 0) && ((((((head == \old(head)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 722]: Procedure Contract for changeMethaneLevel
    Derived contract for procedure changeMethaneLevel. Requires: (pumpRunning == 0) Ensures: ((pumpRunning == 0) && (((((head == \old(head)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 786]: Procedure Contract for cleanup
    Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((head == \old(head)) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 504]: Procedure Contract for timeShift
    Derived contract for procedure timeShift. Requires: (pumpRunning == 0) Ensures: ((((pumpRunning == 0) && (\old(pumpRunning) == 0)) && (\old(waterLevel) == waterLevel)) && ((((head == \old(head)) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 710]: Procedure Contract for waterRise
    Derived contract for procedure waterRise. Requires: (pumpRunning == 0) Ensures: ((pumpRunning == 0) && (((((head == \old(head)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
RESULT: Ultimate proved your program to be correct!
[2024-11-08 15:15:47,760 INFO  L540       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0
Received shutdown request...
--- End real Ultimate output ---

Execution finished normally
Writing output log to file Ultimate.log
Result:
TRUE