./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c --full-output --architecture 32bit


--------------------------------------------------------------------------------


Checking for ERROR reachability
Using default analysis
Version 3289d67d
Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) )

 --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 0858956fa78fab41d54951630cb21e24f98b592c89580084f0bb3139b8ef83d9
--- Real Ultimate output ---
This is Ultimate 0.2.5-tmp.fs.icfgbuilder-eval-3289d67-m
[2024-11-16 07:51:38,411 INFO  L188        SettingsManager]: Resetting all preferences to default values...
[2024-11-16 07:51:38,481 INFO  L114        SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf
[2024-11-16 07:51:38,488 WARN  L101        SettingsManager]: Preference file contains the following unknown settings:
[2024-11-16 07:51:38,489 WARN  L103        SettingsManager]:   * de.uni_freiburg.informatik.ultimate.core.Log level for class
[2024-11-16 07:51:38,514 INFO  L130        SettingsManager]: Preferences different from defaults after loading the file:
[2024-11-16 07:51:38,515 INFO  L151        SettingsManager]: Preferences of UltimateCore differ from their defaults:
[2024-11-16 07:51:38,515 INFO  L153        SettingsManager]:  * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR;
[2024-11-16 07:51:38,516 INFO  L151        SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults:
[2024-11-16 07:51:38,517 INFO  L153        SettingsManager]:  * Use memory slicer=true
[2024-11-16 07:51:38,518 INFO  L151        SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults:
[2024-11-16 07:51:38,519 INFO  L153        SettingsManager]:  * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS
[2024-11-16 07:51:38,519 INFO  L151        SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults:
[2024-11-16 07:51:38,519 INFO  L153        SettingsManager]:  * Create parallel compositions if possible=false
[2024-11-16 07:51:38,520 INFO  L153        SettingsManager]:  * Use SBE=true
[2024-11-16 07:51:38,520 INFO  L151        SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults:
[2024-11-16 07:51:38,521 INFO  L153        SettingsManager]:  * Pointer base address is valid at dereference=IGNORE
[2024-11-16 07:51:38,522 INFO  L153        SettingsManager]:  * sizeof long=4
[2024-11-16 07:51:38,522 INFO  L153        SettingsManager]:  * Overapproximate operations on floating types=true
[2024-11-16 07:51:38,522 INFO  L153        SettingsManager]:  * sizeof POINTER=4
[2024-11-16 07:51:38,522 INFO  L153        SettingsManager]:  * Check division by zero=IGNORE
[2024-11-16 07:51:38,524 INFO  L153        SettingsManager]:  * Pointer to allocated memory at dereference=IGNORE
[2024-11-16 07:51:38,525 INFO  L153        SettingsManager]:  * If two pointers are subtracted or compared they have the same base address=IGNORE
[2024-11-16 07:51:38,525 INFO  L153        SettingsManager]:  * Check array bounds for arrays that are off heap=IGNORE
[2024-11-16 07:51:38,525 INFO  L153        SettingsManager]:  * Allow undefined functions=false
[2024-11-16 07:51:38,525 INFO  L153        SettingsManager]:  * sizeof long double=12
[2024-11-16 07:51:38,525 INFO  L153        SettingsManager]:  * Check if freed pointer was valid=false
[2024-11-16 07:51:38,526 INFO  L153        SettingsManager]:  * Use constant arrays=true
[2024-11-16 07:51:38,526 INFO  L151        SettingsManager]: Preferences of IcfgBuilder differ from their defaults:
[2024-11-16 07:51:38,526 INFO  L153        SettingsManager]:  * Size of a code block=SequenceOfStatements
[2024-11-16 07:51:38,526 INFO  L153        SettingsManager]:  * Only consider context switches at boundaries of atomic blocks=true
[2024-11-16 07:51:38,526 INFO  L153        SettingsManager]:  * SMT solver=External_DefaultMode
[2024-11-16 07:51:38,527 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2024-11-16 07:51:38,527 INFO  L151        SettingsManager]: Preferences of TraceAbstraction differ from their defaults:
[2024-11-16 07:51:38,527 INFO  L153        SettingsManager]:  * Compute Interpolants along a Counterexample=FPandBP
[2024-11-16 07:51:38,527 INFO  L153        SettingsManager]:  * Positions where we compute the Hoare Annotation=LoopHeads
[2024-11-16 07:51:38,527 INFO  L153        SettingsManager]:  * Trace refinement strategy=CAMEL
[2024-11-16 07:51:38,528 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in
[2024-11-16 07:51:38,528 INFO  L153        SettingsManager]:  * Apply one-shot large block encoding in concurrent analysis=false
[2024-11-16 07:51:38,528 INFO  L153        SettingsManager]:  * Automaton type used in concurrency analysis=PETRI_NET
[2024-11-16 07:51:38,530 INFO  L153        SettingsManager]:  * Order on configurations for Petri net unfoldings=DBO
[2024-11-16 07:51:38,530 INFO  L153        SettingsManager]:  * SMT solver=External_ModelsAndUnsatCoreMode
[2024-11-16 07:51:38,531 INFO  L153        SettingsManager]:  * Looper check in Petri net analysis=SEMANTIC
WARNING: An illegal reflective access operation has occurred
WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int)
WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1
WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations
WARNING: All illegal access operations will be denied in a future release
Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) )


Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 0858956fa78fab41d54951630cb21e24f98b592c89580084f0bb3139b8ef83d9
[2024-11-16 07:51:38,819 INFO  L75    nceAwareModelManager]: Repository-Root is: /tmp
[2024-11-16 07:51:38,843 INFO  L261   ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized
[2024-11-16 07:51:38,847 INFO  L217   ainManager$Toolchain]: [Toolchain 1]: Toolchain selected.
[2024-11-16 07:51:38,848 INFO  L270        PluginConnector]: Initializing CDTParser...
[2024-11-16 07:51:38,848 INFO  L274        PluginConnector]: CDTParser initialized
[2024-11-16 07:51:38,850 INFO  L431   ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c
[2024-11-16 07:51:40,267 INFO  L533              CDTParser]: Created temporary CDT project at NULL
[2024-11-16 07:51:40,486 INFO  L384              CDTParser]: Found 1 translation units.
[2024-11-16 07:51:40,487 INFO  L180              CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c
[2024-11-16 07:51:40,506 INFO  L427              CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/c0870a9a7/9870a1eb9a174d6e997a13efb4b0c295/FLAG7fe70331c
[2024-11-16 07:51:40,522 INFO  L435              CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/c0870a9a7/9870a1eb9a174d6e997a13efb4b0c295
[2024-11-16 07:51:40,526 INFO  L299   ainManager$Toolchain]: ####################### [Toolchain 1] #######################
[2024-11-16 07:51:40,528 INFO  L133        ToolchainWalker]: Walking toolchain with 6 elements.
[2024-11-16 07:51:40,530 INFO  L112        PluginConnector]: ------------------------CACSL2BoogieTranslator----------------------------
[2024-11-16 07:51:40,531 INFO  L270        PluginConnector]: Initializing CACSL2BoogieTranslator...
[2024-11-16 07:51:40,536 INFO  L274        PluginConnector]: CACSL2BoogieTranslator initialized
[2024-11-16 07:51:40,537 INFO  L184        PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.11 07:51:40" (1/1) ...
[2024-11-16 07:51:40,538 INFO  L204        PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@59b4789e and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:40, skipping insertion in model container
[2024-11-16 07:51:40,538 INFO  L184        PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 16.11 07:51:40" (1/1) ...
[2024-11-16 07:51:40,584 INFO  L175         MainTranslator]: Built tables and reachable declarations
[2024-11-16 07:51:40,865 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c[18140,18153]
[2024-11-16 07:51:40,870 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2024-11-16 07:51:40,881 INFO  L200         MainTranslator]: Completed pre-run
[2024-11-16 07:51:40,892 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49]
[2024-11-16 07:51:40,894 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [415]
[2024-11-16 07:51:40,894 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [511]
[2024-11-16 07:51:40,895 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [581]
[2024-11-16 07:51:40,895 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [779]
[2024-11-16 07:51:40,895 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [806]
[2024-11-16 07:51:40,895 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [844]
[2024-11-16 07:51:40,896 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [940]
[2024-11-16 07:51:40,986 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec1_product23.cil.c[18140,18153]
[2024-11-16 07:51:40,986 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2024-11-16 07:51:41,013 INFO  L204         MainTranslator]: Completed translation
[2024-11-16 07:51:41,013 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41 WrapperNode
[2024-11-16 07:51:41,014 INFO  L131        PluginConnector]: ------------------------ END CACSL2BoogieTranslator----------------------------
[2024-11-16 07:51:41,015 INFO  L112        PluginConnector]: ------------------------Boogie Procedure Inliner----------------------------
[2024-11-16 07:51:41,015 INFO  L270        PluginConnector]: Initializing Boogie Procedure Inliner...
[2024-11-16 07:51:41,015 INFO  L274        PluginConnector]: Boogie Procedure Inliner initialized
[2024-11-16 07:51:41,021 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,034 INFO  L184        PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,070 INFO  L138                Inliner]: procedures = 54, calls = 99, calls flagged for inlining = 20, calls inlined = 17, statements flattened = 182
[2024-11-16 07:51:41,073 INFO  L131        PluginConnector]: ------------------------ END Boogie Procedure Inliner----------------------------
[2024-11-16 07:51:41,074 INFO  L112        PluginConnector]: ------------------------Boogie Preprocessor----------------------------
[2024-11-16 07:51:41,074 INFO  L270        PluginConnector]: Initializing Boogie Preprocessor...
[2024-11-16 07:51:41,074 INFO  L274        PluginConnector]: Boogie Preprocessor initialized
[2024-11-16 07:51:41,084 INFO  L184        PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,088 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,094 INFO  L184        PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,120 INFO  L175           MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0].
[2024-11-16 07:51:41,121 INFO  L184        PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,121 INFO  L184        PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,125 INFO  L184        PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,125 INFO  L184        PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,130 INFO  L184        PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,131 INFO  L184        PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,133 INFO  L131        PluginConnector]: ------------------------ END Boogie Preprocessor----------------------------
[2024-11-16 07:51:41,134 INFO  L112        PluginConnector]: ------------------------IcfgBuilder----------------------------
[2024-11-16 07:51:41,134 INFO  L270        PluginConnector]: Initializing IcfgBuilder...
[2024-11-16 07:51:41,135 INFO  L274        PluginConnector]: IcfgBuilder initialized
[2024-11-16 07:51:41,136 INFO  L184        PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (1/1) ...
[2024-11-16 07:51:41,141 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2024-11-16 07:51:41,150 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3
[2024-11-16 07:51:41,164 INFO  L229       MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null)
[2024-11-16 07:51:41,166 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process
[2024-11-16 07:51:41,210 INFO  L130     BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit
[2024-11-16 07:51:41,210 INFO  L130     BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base
[2024-11-16 07:51:41,210 INFO  L138     BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base
[2024-11-16 07:51:41,211 INFO  L130     BoogieDeclarations]: Found specification of procedure cleanup
[2024-11-16 07:51:41,211 INFO  L138     BoogieDeclarations]: Found implementation of procedure cleanup
[2024-11-16 07:51:41,211 INFO  L130     BoogieDeclarations]: Found specification of procedure timeShift
[2024-11-16 07:51:41,211 INFO  L138     BoogieDeclarations]: Found implementation of procedure timeShift
[2024-11-16 07:51:41,211 INFO  L130     BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical
[2024-11-16 07:51:41,211 INFO  L138     BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical
[2024-11-16 07:51:41,211 INFO  L130     BoogieDeclarations]: Found specification of procedure waterRise
[2024-11-16 07:51:41,212 INFO  L138     BoogieDeclarations]: Found implementation of procedure waterRise
[2024-11-16 07:51:41,212 INFO  L130     BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor
[2024-11-16 07:51:41,212 INFO  L138     BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor
[2024-11-16 07:51:41,212 INFO  L130     BoogieDeclarations]: Found specification of procedure deactivatePump
[2024-11-16 07:51:41,212 INFO  L138     BoogieDeclarations]: Found implementation of procedure deactivatePump
[2024-11-16 07:51:41,212 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#0
[2024-11-16 07:51:41,213 INFO  L130     BoogieDeclarations]: Found specification of procedure changeMethaneLevel
[2024-11-16 07:51:41,213 INFO  L138     BoogieDeclarations]: Found implementation of procedure changeMethaneLevel
[2024-11-16 07:51:41,213 INFO  L130     BoogieDeclarations]: Found specification of procedure ULTIMATE.start
[2024-11-16 07:51:41,213 INFO  L138     BoogieDeclarations]: Found implementation of procedure ULTIMATE.start
[2024-11-16 07:51:41,293 INFO  L256             CfgBuilder]: Building ICFG
[2024-11-16 07:51:41,296 INFO  L286             CfgBuilder]: Building CFG for each procedure with an implementation
[2024-11-16 07:51:41,497 INFO  L1250  $ProcedureCfgBuilder]: dead code at ProgramPoint L706-1: isPumpRunning_#res#1 := isPumpRunning_~retValue_acc~7#1;
[2024-11-16 07:51:41,497 INFO  L1250  $ProcedureCfgBuilder]: dead code at ProgramPoint L697-1: isMethaneAlarm_#res#1 := isMethaneAlarm_~retValue_acc~6#1;
[2024-11-16 07:51:41,503 INFO  L1250  $ProcedureCfgBuilder]: dead code at ProgramPoint L467: #res := ~retValue_acc~3;
[2024-11-16 07:51:41,578 INFO  L1250  $ProcedureCfgBuilder]: dead code at ProgramPoint L841-1: valid_product_#res#1 := valid_product_~retValue_acc~10#1;
[2024-11-16 07:51:41,579 INFO  L1250  $ProcedureCfgBuilder]: dead code at ProgramPoint L937-1: main_#res#1 := main_~retValue_acc~11#1;
[2024-11-16 07:51:41,603 INFO  L1250  $ProcedureCfgBuilder]: dead code at ProgramPoint L508-1: isLowWaterSensorDry_#res#1 := isLowWaterSensorDry_~retValue_acc~5#1;
[2024-11-16 07:51:41,603 INFO  L1250  $ProcedureCfgBuilder]: dead code at ProgramPoint L761-1: isLowWaterLevel_#res#1 := isLowWaterLevel_~retValue_acc~8#1;
[2024-11-16 07:51:41,626 INFO  L?                        ?]: Removed 39 outVars from TransFormulas that were not future-live.
[2024-11-16 07:51:41,626 INFO  L307             CfgBuilder]: Performing block encoding
[2024-11-16 07:51:41,639 INFO  L331             CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start)
[2024-11-16 07:51:41,640 INFO  L336             CfgBuilder]: Removed 0 assume(true) statements.
[2024-11-16 07:51:41,640 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.11 07:51:41 BoogieIcfgContainer
[2024-11-16 07:51:41,640 INFO  L131        PluginConnector]: ------------------------ END IcfgBuilder----------------------------
[2024-11-16 07:51:41,643 INFO  L112        PluginConnector]: ------------------------TraceAbstraction----------------------------
[2024-11-16 07:51:41,643 INFO  L270        PluginConnector]: Initializing TraceAbstraction...
[2024-11-16 07:51:41,646 INFO  L274        PluginConnector]: TraceAbstraction initialized
[2024-11-16 07:51:41,646 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 16.11 07:51:40" (1/3) ...
[2024-11-16 07:51:41,646 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@4298f85f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.11 07:51:41, skipping insertion in model container
[2024-11-16 07:51:41,646 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 16.11 07:51:41" (2/3) ...
[2024-11-16 07:51:41,647 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@4298f85f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 16.11 07:51:41, skipping insertion in model container
[2024-11-16 07:51:41,647 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.11 07:51:41" (3/3) ...
[2024-11-16 07:51:41,648 INFO  L112   eAbstractionObserver]: Analyzing ICFG minepump_spec1_product23.cil.c
[2024-11-16 07:51:41,661 INFO  L214   ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION
[2024-11-16 07:51:41,661 INFO  L154   ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations.
[2024-11-16 07:51:41,729 INFO  L332      AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ========
[2024-11-16 07:51:41,735 INFO  L333      AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@25171921, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms]
[2024-11-16 07:51:41,736 INFO  L334      AbstractCegarLoop]: Starting to check reachability of 1 error locations.
[2024-11-16 07:51:41,742 INFO  L276                IsEmpty]: Start isEmpty. Operand  has 97 states, 72 states have (on average 1.3472222222222223) internal successors, (97), 81 states have internal predecessors, (97), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 11 states have call predecessors, (15), 15 states have call successors, (15)
[2024-11-16 07:51:41,757 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 26
[2024-11-16 07:51:41,758 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-16 07:51:41,758 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-16 07:51:41,759 INFO  L396      AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-16 07:51:41,765 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-16 07:51:41,765 INFO  L85        PathProgramCache]: Analyzing trace with hash -1664909061, now seen corresponding path program 1 times
[2024-11-16 07:51:41,773 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-16 07:51:41,774 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1654664214]
[2024-11-16 07:51:41,774 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-16 07:51:41,774 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-16 07:51:41,872 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-16 07:51:41,951 INFO  L368   atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15
[2024-11-16 07:51:41,954 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-16 07:51:41,960 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-16 07:51:41,961 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-16 07:51:41,961 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1654664214]
[2024-11-16 07:51:41,962 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1654664214] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-16 07:51:41,962 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-16 07:51:41,962 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2
[2024-11-16 07:51:41,964 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [816705826]
[2024-11-16 07:51:41,964 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-16 07:51:41,969 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 2 states
[2024-11-16 07:51:41,969 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-16 07:51:41,992 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants.
[2024-11-16 07:51:41,993 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2
[2024-11-16 07:51:41,995 INFO  L87              Difference]: Start difference. First operand  has 97 states, 72 states have (on average 1.3472222222222223) internal successors, (97), 81 states have internal predecessors, (97), 15 states have call successors, (15), 8 states have call predecessors, (15), 8 states have return successors, (15), 11 states have call predecessors, (15), 15 states have call successors, (15) Second operand  has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-16 07:51:42,023 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-16 07:51:42,023 INFO  L93              Difference]: Finished difference Result 185 states and 248 transitions.
[2024-11-16 07:51:42,024 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. 
[2024-11-16 07:51:42,025 INFO  L78                 Accepts]: Start accepts. Automaton has  has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 25
[2024-11-16 07:51:42,025 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-16 07:51:42,038 INFO  L225             Difference]: With dead ends: 185
[2024-11-16 07:51:42,038 INFO  L226             Difference]: Without dead ends: 86
[2024-11-16 07:51:42,042 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2
[2024-11-16 07:51:42,048 INFO  L432           NwaCegarLoop]: 120 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 120 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-16 07:51:42,049 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 120 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-16 07:51:42,066 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 86 states.
[2024-11-16 07:51:42,084 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 86 to 86.
[2024-11-16 07:51:42,085 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 86 states, 63 states have (on average 1.2857142857142858) internal successors, (81), 71 states have internal predecessors, (81), 15 states have call successors, (15), 8 states have call predecessors, (15), 7 states have return successors, (14), 10 states have call predecessors, (14), 14 states have call successors, (14)
[2024-11-16 07:51:42,087 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 86 states to 86 states and 110 transitions.
[2024-11-16 07:51:42,089 INFO  L78                 Accepts]: Start accepts. Automaton has 86 states and 110 transitions. Word has length 25
[2024-11-16 07:51:42,090 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-16 07:51:42,091 INFO  L471      AbstractCegarLoop]: Abstraction has 86 states and 110 transitions.
[2024-11-16 07:51:42,091 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-16 07:51:42,091 INFO  L276                IsEmpty]: Start isEmpty. Operand 86 states and 110 transitions.
[2024-11-16 07:51:42,094 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 29
[2024-11-16 07:51:42,094 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-16 07:51:42,094 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-16 07:51:42,094 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0
[2024-11-16 07:51:42,095 INFO  L396      AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-16 07:51:42,095 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-16 07:51:42,095 INFO  L85        PathProgramCache]: Analyzing trace with hash -1224699798, now seen corresponding path program 1 times
[2024-11-16 07:51:42,095 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-16 07:51:42,096 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [956081681]
[2024-11-16 07:51:42,096 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-16 07:51:42,096 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-16 07:51:42,120 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-16 07:51:42,200 INFO  L368   atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 18
[2024-11-16 07:51:42,203 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-16 07:51:42,211 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-16 07:51:42,211 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-16 07:51:42,211 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [956081681]
[2024-11-16 07:51:42,212 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [956081681] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-16 07:51:42,212 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-16 07:51:42,212 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2024-11-16 07:51:42,212 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [916457734]
[2024-11-16 07:51:42,212 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-16 07:51:42,213 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2024-11-16 07:51:42,214 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-16 07:51:42,216 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2024-11-16 07:51:42,216 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-16 07:51:42,216 INFO  L87              Difference]: Start difference. First operand 86 states and 110 transitions. Second operand  has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-16 07:51:42,244 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-16 07:51:42,244 INFO  L93              Difference]: Finished difference Result 131 states and 167 transitions.
[2024-11-16 07:51:42,245 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2024-11-16 07:51:42,245 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 28
[2024-11-16 07:51:42,246 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-16 07:51:42,247 INFO  L225             Difference]: With dead ends: 131
[2024-11-16 07:51:42,250 INFO  L226             Difference]: Without dead ends: 75
[2024-11-16 07:51:42,251 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-16 07:51:42,252 INFO  L432           NwaCegarLoop]: 95 mSDtfsCounter, 15 mSDsluCounter, 73 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 19 SdHoareTripleChecker+Valid, 168 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-16 07:51:42,252 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [19 Valid, 168 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-16 07:51:42,256 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 75 states.
[2024-11-16 07:51:42,268 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 75 to 75.
[2024-11-16 07:51:42,271 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 75 states, 55 states have (on average 1.309090909090909) internal successors, (72), 63 states have internal predecessors, (72), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 8 states have call predecessors, (12), 12 states have call successors, (12)
[2024-11-16 07:51:42,272 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 75 states to 75 states and 96 transitions.
[2024-11-16 07:51:42,273 INFO  L78                 Accepts]: Start accepts. Automaton has 75 states and 96 transitions. Word has length 28
[2024-11-16 07:51:42,273 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-16 07:51:42,273 INFO  L471      AbstractCegarLoop]: Abstraction has 75 states and 96 transitions.
[2024-11-16 07:51:42,273 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 8.0) internal successors, (24), 3 states have internal predecessors, (24), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-16 07:51:42,273 INFO  L276                IsEmpty]: Start isEmpty. Operand 75 states and 96 transitions.
[2024-11-16 07:51:42,276 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 31
[2024-11-16 07:51:42,276 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-16 07:51:42,276 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-16 07:51:42,276 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1
[2024-11-16 07:51:42,277 INFO  L396      AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-16 07:51:42,277 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-16 07:51:42,278 INFO  L85        PathProgramCache]: Analyzing trace with hash 789076152, now seen corresponding path program 1 times
[2024-11-16 07:51:42,278 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-16 07:51:42,279 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1509736717]
[2024-11-16 07:51:42,279 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-16 07:51:42,279 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-16 07:51:42,303 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-16 07:51:42,442 INFO  L368   atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20
[2024-11-16 07:51:42,444 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-16 07:51:42,448 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-16 07:51:42,448 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-16 07:51:42,448 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1509736717]
[2024-11-16 07:51:42,448 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1509736717] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-16 07:51:42,448 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-16 07:51:42,448 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6
[2024-11-16 07:51:42,449 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [168346690]
[2024-11-16 07:51:42,449 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-16 07:51:42,449 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 6 states
[2024-11-16 07:51:42,449 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-16 07:51:42,450 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants.
[2024-11-16 07:51:42,450 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30
[2024-11-16 07:51:42,450 INFO  L87              Difference]: Start difference. First operand 75 states and 96 transitions. Second operand  has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-16 07:51:42,693 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-16 07:51:42,693 INFO  L93              Difference]: Finished difference Result 254 states and 331 transitions.
[2024-11-16 07:51:42,694 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. 
[2024-11-16 07:51:42,694 INFO  L78                 Accepts]: Start accepts. Automaton has  has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 30
[2024-11-16 07:51:42,694 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-16 07:51:42,696 INFO  L225             Difference]: With dead ends: 254
[2024-11-16 07:51:42,696 INFO  L226             Difference]: Without dead ends: 186
[2024-11-16 07:51:42,699 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=20, Invalid=36, Unknown=0, NotChecked=0, Total=56
[2024-11-16 07:51:42,701 INFO  L432           NwaCegarLoop]: 108 mSDtfsCounter, 218 mSDsluCounter, 272 mSDsCounter, 0 mSdLazyCounter, 94 mSolverCounterSat, 23 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 218 SdHoareTripleChecker+Valid, 380 SdHoareTripleChecker+Invalid, 117 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 23 IncrementalHoareTripleChecker+Valid, 94 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time
[2024-11-16 07:51:42,701 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [218 Valid, 380 Invalid, 117 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [23 Valid, 94 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time]
[2024-11-16 07:51:42,705 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 186 states.
[2024-11-16 07:51:42,739 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 186 to 178.
[2024-11-16 07:51:42,740 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 178 states, 129 states have (on average 1.3410852713178294) internal successors, (173), 147 states have internal predecessors, (173), 29 states have call successors, (29), 19 states have call predecessors, (29), 19 states have return successors, (30), 19 states have call predecessors, (30), 29 states have call successors, (30)
[2024-11-16 07:51:42,744 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 178 states to 178 states and 232 transitions.
[2024-11-16 07:51:42,744 INFO  L78                 Accepts]: Start accepts. Automaton has 178 states and 232 transitions. Word has length 30
[2024-11-16 07:51:42,745 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-16 07:51:42,745 INFO  L471      AbstractCegarLoop]: Abstraction has 178 states and 232 transitions.
[2024-11-16 07:51:42,745 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 6 states, 6 states have (on average 4.5) internal successors, (27), 6 states have internal predecessors, (27), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-16 07:51:42,745 INFO  L276                IsEmpty]: Start isEmpty. Operand 178 states and 232 transitions.
[2024-11-16 07:51:42,747 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 35
[2024-11-16 07:51:42,747 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-16 07:51:42,747 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-16 07:51:42,747 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2
[2024-11-16 07:51:42,748 INFO  L396      AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-16 07:51:42,748 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-16 07:51:42,748 INFO  L85        PathProgramCache]: Analyzing trace with hash -1748827980, now seen corresponding path program 1 times
[2024-11-16 07:51:42,748 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-16 07:51:42,749 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1461986405]
[2024-11-16 07:51:42,749 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-16 07:51:42,749 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-16 07:51:42,771 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-16 07:51:42,917 INFO  L368   atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24
[2024-11-16 07:51:42,919 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-16 07:51:42,922 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-16 07:51:42,922 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-16 07:51:42,922 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1461986405]
[2024-11-16 07:51:42,922 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1461986405] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-16 07:51:42,922 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-16 07:51:42,922 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5
[2024-11-16 07:51:42,923 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1586955549]
[2024-11-16 07:51:42,923 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-16 07:51:42,923 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2024-11-16 07:51:42,923 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-16 07:51:42,924 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2024-11-16 07:51:42,924 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2024-11-16 07:51:42,924 INFO  L87              Difference]: Start difference. First operand 178 states and 232 transitions. Second operand  has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-16 07:51:42,980 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-16 07:51:42,980 INFO  L93              Difference]: Finished difference Result 302 states and 398 transitions.
[2024-11-16 07:51:42,981 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2024-11-16 07:51:42,981 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 34
[2024-11-16 07:51:42,981 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-16 07:51:42,982 INFO  L225             Difference]: With dead ends: 302
[2024-11-16 07:51:42,982 INFO  L226             Difference]: Without dead ends: 0
[2024-11-16 07:51:42,983 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42
[2024-11-16 07:51:42,989 INFO  L432           NwaCegarLoop]: 54 mSDtfsCounter, 35 mSDsluCounter, 106 mSDsCounter, 0 mSdLazyCounter, 21 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 35 SdHoareTripleChecker+Valid, 160 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 21 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-16 07:51:42,989 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [35 Valid, 160 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 21 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-16 07:51:42,990 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 0 states.
[2024-11-16 07:51:42,990 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0.
[2024-11-16 07:51:42,990 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-16 07:51:42,990 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions.
[2024-11-16 07:51:42,991 INFO  L78                 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 34
[2024-11-16 07:51:42,991 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-16 07:51:42,991 INFO  L471      AbstractCegarLoop]: Abstraction has 0 states and 0 transitions.
[2024-11-16 07:51:42,991 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1)
[2024-11-16 07:51:42,995 INFO  L276                IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions.
[2024-11-16 07:51:42,995 INFO  L282                IsEmpty]: Finished isEmpty. No accepting run.
[2024-11-16 07:51:42,998 INFO  L782   garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining)
[2024-11-16 07:51:42,998 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3
[2024-11-16 07:51:43,001 INFO  L407         BasicCegarLoop]: Path program histogram: [1, 1, 1, 1]
[2024-11-16 07:51:43,004 INFO  L343    DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions.
[2024-11-16 07:51:43,465 INFO  L170   ceAbstractionStarter]: Computing trace abstraction results
[2024-11-16 07:51:43,500 WARN  L156        FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (= |old(~pumpRunning~0)| 0))  Eliminated clause: (= ~pumpRunning~0 0)
[2024-11-16 07:51:43,504 WARN  L156        FloydHoareUtils]: Requires clause for processEnvironment__wrappee__lowWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (= |old(~pumpRunning~0)| 0) (not (= 0 ~systemActive~0)))  Eliminated clause: (and (= ~pumpRunning~0 0) (not (= 0 ~systemActive~0)))
[2024-11-16 07:51:43,506 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 16.11 07:51:43 BoogieIcfgContainer
[2024-11-16 07:51:43,506 INFO  L131        PluginConnector]: ------------------------ END TraceAbstraction----------------------------
[2024-11-16 07:51:43,507 INFO  L112        PluginConnector]: ------------------------Witness Printer----------------------------
[2024-11-16 07:51:43,507 INFO  L270        PluginConnector]: Initializing Witness Printer...
[2024-11-16 07:51:43,507 INFO  L274        PluginConnector]: Witness Printer initialized
[2024-11-16 07:51:43,508 INFO  L184        PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 16.11 07:51:41" (3/4) ...
[2024-11-16 07:51:43,510 INFO  L143         WitnessPrinter]: Generating witness for correct program
[2024-11-16 07:51:43,515 INFO  L393     IcfgBacktranslator]: Ignoring RootEdge to procedure deactivatePump
[2024-11-16 07:51:43,515 INFO  L393     IcfgBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base
[2024-11-16 07:51:43,515 INFO  L393     IcfgBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel
[2024-11-16 07:51:43,515 INFO  L393     IcfgBacktranslator]: Ignoring RootEdge to procedure cleanup
[2024-11-16 07:51:43,515 INFO  L393     IcfgBacktranslator]: Ignoring RootEdge to procedure timeShift
[2024-11-16 07:51:43,515 INFO  L393     IcfgBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical
[2024-11-16 07:51:43,516 INFO  L393     IcfgBacktranslator]: Ignoring RootEdge to procedure waterRise
[2024-11-16 07:51:43,516 INFO  L393     IcfgBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor
[2024-11-16 07:51:43,525 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 36 nodes and edges
[2024-11-16 07:51:43,526 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 10 nodes and edges
[2024-11-16 07:51:43,526 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges
[2024-11-16 07:51:43,526 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2024-11-16 07:51:43,527 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2024-11-16 07:51:43,641 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml
[2024-11-16 07:51:43,641 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml
[2024-11-16 07:51:43,642 INFO  L131        PluginConnector]: ------------------------ END Witness Printer----------------------------
[2024-11-16 07:51:43,642 INFO  L158              Benchmark]: Toolchain (without parser) took 3114.66ms. Allocated memory is still 159.4MB. Free memory was 124.9MB in the beginning and 79.1MB in the end (delta: 45.8MB). Peak memory consumption was 44.9MB. Max. memory is 16.1GB.
[2024-11-16 07:51:43,642 INFO  L158              Benchmark]: CDTParser took 0.17ms. Allocated memory is still 109.1MB. Free memory is still 81.6MB. There was no memory consumed. Max. memory is 16.1GB.
[2024-11-16 07:51:43,643 INFO  L158              Benchmark]: CACSL2BoogieTranslator took 484.11ms. Allocated memory is still 159.4MB. Free memory was 124.9MB in the beginning and 104.1MB in the end (delta: 20.9MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB.
[2024-11-16 07:51:43,643 INFO  L158              Benchmark]: Boogie Procedure Inliner took 58.35ms. Allocated memory is still 159.4MB. Free memory was 104.1MB in the beginning and 102.0MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
[2024-11-16 07:51:43,643 INFO  L158              Benchmark]: Boogie Preprocessor took 59.56ms. Allocated memory is still 159.4MB. Free memory was 102.0MB in the beginning and 99.9MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
[2024-11-16 07:51:43,643 INFO  L158              Benchmark]: IcfgBuilder took 506.54ms. Allocated memory is still 159.4MB. Free memory was 99.9MB in the beginning and 119.2MB in the end (delta: -19.3MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB.
[2024-11-16 07:51:43,644 INFO  L158              Benchmark]: TraceAbstraction took 1863.35ms. Allocated memory is still 159.4MB. Free memory was 119.2MB in the beginning and 86.4MB in the end (delta: 32.7MB). Peak memory consumption was 35.8MB. Max. memory is 16.1GB.
[2024-11-16 07:51:43,644 INFO  L158              Benchmark]: Witness Printer took 134.84ms. Allocated memory is still 159.4MB. Free memory was 86.4MB in the beginning and 79.1MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB.
[2024-11-16 07:51:43,647 INFO  L338   ainManager$Toolchain]: #######################  End [Toolchain 1] #######################
 --- Results ---
 * Results from de.uni_freiburg.informatik.ultimate.core:
  - StatisticsResult: Toolchain Benchmarks
    Benchmark results are:
 * CDTParser took 0.17ms. Allocated memory is still 109.1MB. Free memory is still 81.6MB. There was no memory consumed. Max. memory is 16.1GB.
 * CACSL2BoogieTranslator took 484.11ms. Allocated memory is still 159.4MB. Free memory was 124.9MB in the beginning and 104.1MB in the end (delta: 20.9MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB.
 * Boogie Procedure Inliner took 58.35ms. Allocated memory is still 159.4MB. Free memory was 104.1MB in the beginning and 102.0MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
 * Boogie Preprocessor took 59.56ms. Allocated memory is still 159.4MB. Free memory was 102.0MB in the beginning and 99.9MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
 * IcfgBuilder took 506.54ms. Allocated memory is still 159.4MB. Free memory was 99.9MB in the beginning and 119.2MB in the end (delta: -19.3MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB.
 * TraceAbstraction took 1863.35ms. Allocated memory is still 159.4MB. Free memory was 119.2MB in the beginning and 86.4MB in the end (delta: 32.7MB). Peak memory consumption was 35.8MB. Max. memory is 16.1GB.
 * Witness Printer took 134.84ms. Allocated memory is still 159.4MB. Free memory was 86.4MB in the beginning and 79.1MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB.
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator:
  - GenericResultAtLocation [Line: 49]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49]
  - GenericResultAtLocation [Line: 415]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [415]
  - GenericResultAtLocation [Line: 511]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [511]
  - GenericResultAtLocation [Line: 581]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [581]
  - GenericResultAtLocation [Line: 779]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Specification1_spec.i","") [779]
  - GenericResultAtLocation [Line: 806]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [806]
  - GenericResultAtLocation [Line: 844]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [844]
  - GenericResultAtLocation [Line: 940]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [940]
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction:
  - StatisticsResult: ErrorAutomatonStatistics
    NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0
  - PositiveResult [Line: 945]: a call to reach_error is unreachable
    For all program executions holds that a call to reach_error is unreachable at this location
  - StatisticsResult: Ultimate Automizer benchmark data
    CFG has 9 procedures, 97 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 1.3s, OverallIterations: 4, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 272 SdHoareTripleChecker+Valid, 0.2s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 268 mSDsluCounter, 828 SdHoareTripleChecker+Invalid, 0.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 451 mSDsCounter, 27 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 116 IncrementalHoareTripleChecker+Invalid, 143 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 27 mSolverCounterUnsat, 377 mSDtfsCounter, 116 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 27 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=178occurred in iteration=3, InterpolantAutomatonStates: 16, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 4 MinimizatonAttempts, 8 StatesRemovedByMinimization, 1 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.5s InterpolantComputationTime, 117 NumberOfCodeBlocks, 117 NumberOfCodeBlocksAsserted, 4 NumberOfCheckSat, 113 ConstructedInterpolants, 0 QuantifiedInterpolants, 226 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 4 InterpolantComputations, 4 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available
  - AllSpecificationsHoldResult: All specifications hold
    1 specifications checked. All of them hold
  - InvariantResult [Line: 525]: Location Invariant
    Derived location invariant: null
  - InvariantResult [Line: 856]: Location Invariant
    Derived location invariant: null
  - ProcedureContractResult [Line: 681]: Procedure Contract for deactivatePump
    Derived contract for procedure deactivatePump. Requires: 0 Ensures: (0 && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 614]: Procedure Contract for processEnvironment__wrappee__base
    Derived contract for procedure processEnvironment__wrappee__base. Requires: ((pumpRunning == 0) && (0 != systemActive)) Ensures: (((pumpRunning == 0) && (0 != systemActive)) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 449]: Procedure Contract for changeMethaneLevel
    Derived contract for procedure changeMethaneLevel. Requires: (pumpRunning == 0) Ensures: ((pumpRunning == 0) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 846]: Procedure Contract for cleanup
    Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 590]: Procedure Contract for timeShift
    Derived contract for procedure timeShift. Requires: (pumpRunning == 0) Ensures: (((pumpRunning == 0) && (\old(pumpRunning) == 0)) && ((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 461]: Procedure Contract for isMethaneLevelCritical
    Derived contract for procedure isMethaneLevelCritical. Requires: (pumpRunning == 0) Ensures: ((pumpRunning == 0) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 437]: Procedure Contract for waterRise
    Derived contract for procedure waterRise. Requires: (pumpRunning == 0) Ensures: ((pumpRunning == 0) && (((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 622]: Procedure Contract for processEnvironment__wrappee__lowWaterSensor
    Derived contract for procedure processEnvironment__wrappee__lowWaterSensor. Requires: ((pumpRunning == 0) && (0 != systemActive)) Ensures: ((((pumpRunning == 0) && (\old(pumpRunning) == 0)) && (0 != systemActive)) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
RESULT: Ultimate proved your program to be correct!
[2024-11-16 07:51:43,680 INFO  L540       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0
Received shutdown request...
--- End real Ultimate output ---

Execution finished normally
Writing output log to file Ultimate.log
Result:
TRUE