./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec4_product29.cil.c --full-output --architecture 32bit


--------------------------------------------------------------------------------


Checking for ERROR reachability
Using default analysis
Version 3061b6dc
Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec4_product29.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) )

 --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 8db025334db2e06ebc154a332660702acdbfca34e28313be5c0c817acc07c5f4
--- Real Ultimate output ---
This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-3061b6d-m
[2024-11-18 14:20:44,516 INFO  L188        SettingsManager]: Resetting all preferences to default values...
[2024-11-18 14:20:44,596 INFO  L114        SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf
[2024-11-18 14:20:44,602 WARN  L101        SettingsManager]: Preference file contains the following unknown settings:
[2024-11-18 14:20:44,604 WARN  L103        SettingsManager]:   * de.uni_freiburg.informatik.ultimate.core.Log level for class
[2024-11-18 14:20:44,641 INFO  L130        SettingsManager]: Preferences different from defaults after loading the file:
[2024-11-18 14:20:44,642 INFO  L151        SettingsManager]: Preferences of UltimateCore differ from their defaults:
[2024-11-18 14:20:44,642 INFO  L153        SettingsManager]:  * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR;
[2024-11-18 14:20:44,643 INFO  L151        SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults:
[2024-11-18 14:20:44,645 INFO  L153        SettingsManager]:  * Use memory slicer=true
[2024-11-18 14:20:44,645 INFO  L151        SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults:
[2024-11-18 14:20:44,645 INFO  L153        SettingsManager]:  * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS
[2024-11-18 14:20:44,646 INFO  L151        SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults:
[2024-11-18 14:20:44,646 INFO  L153        SettingsManager]:  * Create parallel compositions if possible=false
[2024-11-18 14:20:44,649 INFO  L153        SettingsManager]:  * Use SBE=true
[2024-11-18 14:20:44,650 INFO  L151        SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults:
[2024-11-18 14:20:44,650 INFO  L153        SettingsManager]:  * Pointer base address is valid at dereference=IGNORE
[2024-11-18 14:20:44,650 INFO  L153        SettingsManager]:  * sizeof long=4
[2024-11-18 14:20:44,650 INFO  L153        SettingsManager]:  * Overapproximate operations on floating types=true
[2024-11-18 14:20:44,651 INFO  L153        SettingsManager]:  * sizeof POINTER=4
[2024-11-18 14:20:44,651 INFO  L153        SettingsManager]:  * Check division by zero=IGNORE
[2024-11-18 14:20:44,651 INFO  L153        SettingsManager]:  * Pointer to allocated memory at dereference=IGNORE
[2024-11-18 14:20:44,651 INFO  L153        SettingsManager]:  * If two pointers are subtracted or compared they have the same base address=IGNORE
[2024-11-18 14:20:44,652 INFO  L153        SettingsManager]:  * Check array bounds for arrays that are off heap=IGNORE
[2024-11-18 14:20:44,652 INFO  L153        SettingsManager]:  * Allow undefined functions=false
[2024-11-18 14:20:44,652 INFO  L153        SettingsManager]:  * sizeof long double=12
[2024-11-18 14:20:44,652 INFO  L153        SettingsManager]:  * Check if freed pointer was valid=false
[2024-11-18 14:20:44,653 INFO  L153        SettingsManager]:  * Use constant arrays=true
[2024-11-18 14:20:44,653 INFO  L151        SettingsManager]: Preferences of RCFGBuilder differ from their defaults:
[2024-11-18 14:20:44,653 INFO  L153        SettingsManager]:  * Size of a code block=SequenceOfStatements
[2024-11-18 14:20:44,653 INFO  L153        SettingsManager]:  * Only consider context switches at boundaries of atomic blocks=true
[2024-11-18 14:20:44,653 INFO  L153        SettingsManager]:  * SMT solver=External_DefaultMode
[2024-11-18 14:20:44,653 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2024-11-18 14:20:44,654 INFO  L151        SettingsManager]: Preferences of TraceAbstraction differ from their defaults:
[2024-11-18 14:20:44,654 INFO  L153        SettingsManager]:  * Compute Interpolants along a Counterexample=FPandBP
[2024-11-18 14:20:44,654 INFO  L153        SettingsManager]:  * Positions where we compute the Hoare Annotation=LoopHeads
[2024-11-18 14:20:44,654 INFO  L153        SettingsManager]:  * Trace refinement strategy=CAMEL
[2024-11-18 14:20:44,654 INFO  L153        SettingsManager]:  * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in
[2024-11-18 14:20:44,655 INFO  L153        SettingsManager]:  * Apply one-shot large block encoding in concurrent analysis=false
[2024-11-18 14:20:44,655 INFO  L153        SettingsManager]:  * Automaton type used in concurrency analysis=PETRI_NET
[2024-11-18 14:20:44,656 INFO  L153        SettingsManager]:  * Order on configurations for Petri net unfoldings=DBO
[2024-11-18 14:20:44,657 INFO  L153        SettingsManager]:  * SMT solver=External_ModelsAndUnsatCoreMode
[2024-11-18 14:20:44,657 INFO  L153        SettingsManager]:  * Looper check in Petri net analysis=SEMANTIC
WARNING: An illegal reflective access operation has occurred
WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int)
WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1
WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations
WARNING: All illegal access operations will be denied in a future release
Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) )


Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit
Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 8db025334db2e06ebc154a332660702acdbfca34e28313be5c0c817acc07c5f4
[2024-11-18 14:20:44,893 INFO  L75    nceAwareModelManager]: Repository-Root is: /tmp
[2024-11-18 14:20:44,920 INFO  L261   ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized
[2024-11-18 14:20:44,923 INFO  L217   ainManager$Toolchain]: [Toolchain 1]: Toolchain selected.
[2024-11-18 14:20:44,924 INFO  L270        PluginConnector]: Initializing CDTParser...
[2024-11-18 14:20:44,927 INFO  L274        PluginConnector]: CDTParser initialized
[2024-11-18 14:20:44,929 INFO  L431   ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec4_product29.cil.c
[2024-11-18 14:20:46,457 INFO  L533              CDTParser]: Created temporary CDT project at NULL
[2024-11-18 14:20:46,686 INFO  L384              CDTParser]: Found 1 translation units.
[2024-11-18 14:20:46,687 INFO  L180              CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product29.cil.c
[2024-11-18 14:20:46,699 INFO  L427              CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/fbf1f88d8/56c1453686c7413b8e721029d23ecebb/FLAG882d1fcc6
[2024-11-18 14:20:47,016 INFO  L435              CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/fbf1f88d8/56c1453686c7413b8e721029d23ecebb
[2024-11-18 14:20:47,018 INFO  L299   ainManager$Toolchain]: ####################### [Toolchain 1] #######################
[2024-11-18 14:20:47,020 INFO  L133        ToolchainWalker]: Walking toolchain with 6 elements.
[2024-11-18 14:20:47,020 INFO  L112        PluginConnector]: ------------------------CACSL2BoogieTranslator----------------------------
[2024-11-18 14:20:47,021 INFO  L270        PluginConnector]: Initializing CACSL2BoogieTranslator...
[2024-11-18 14:20:47,025 INFO  L274        PluginConnector]: CACSL2BoogieTranslator initialized
[2024-11-18 14:20:47,025 INFO  L184        PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,026 INFO  L204        PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@540b7a0c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47, skipping insertion in model container
[2024-11-18 14:20:47,026 INFO  L184        PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,062 INFO  L175         MainTranslator]: Built tables and reachable declarations
[2024-11-18 14:20:47,276 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product29.cil.c[2984,2997]
[2024-11-18 14:20:47,401 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2024-11-18 14:20:47,410 INFO  L200         MainTranslator]: Completed pre-run
[2024-11-18 14:20:47,420 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49]
[2024-11-18 14:20:47,423 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [145]
[2024-11-18 14:20:47,423 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [154]
[2024-11-18 14:20:47,426 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [520]
[2024-11-18 14:20:47,427 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [587]
[2024-11-18 14:20:47,427 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [625]
[2024-11-18 14:20:47,427 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [825]
[2024-11-18 14:20:47,427 WARN  L75    lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [921]
[2024-11-18 14:20:47,440 WARN  L250   ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product29.cil.c[2984,2997]
[2024-11-18 14:20:47,501 INFO  L210          PostProcessor]: Analyzing one entry point: main
[2024-11-18 14:20:47,534 INFO  L204         MainTranslator]: Completed translation
[2024-11-18 14:20:47,535 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47 WrapperNode
[2024-11-18 14:20:47,535 INFO  L131        PluginConnector]: ------------------------ END CACSL2BoogieTranslator----------------------------
[2024-11-18 14:20:47,536 INFO  L112        PluginConnector]: ------------------------Boogie Procedure Inliner----------------------------
[2024-11-18 14:20:47,536 INFO  L270        PluginConnector]: Initializing Boogie Procedure Inliner...
[2024-11-18 14:20:47,536 INFO  L274        PluginConnector]: Boogie Procedure Inliner initialized
[2024-11-18 14:20:47,543 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,559 INFO  L184        PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,596 INFO  L138                Inliner]: procedures = 54, calls = 99, calls flagged for inlining = 21, calls inlined = 17, statements flattened = 190
[2024-11-18 14:20:47,599 INFO  L131        PluginConnector]: ------------------------ END Boogie Procedure Inliner----------------------------
[2024-11-18 14:20:47,600 INFO  L112        PluginConnector]: ------------------------Boogie Preprocessor----------------------------
[2024-11-18 14:20:47,600 INFO  L270        PluginConnector]: Initializing Boogie Preprocessor...
[2024-11-18 14:20:47,601 INFO  L274        PluginConnector]: Boogie Preprocessor initialized
[2024-11-18 14:20:47,611 INFO  L184        PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,612 INFO  L184        PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,613 INFO  L184        PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,641 INFO  L175           MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0].
[2024-11-18 14:20:47,645 INFO  L184        PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,645 INFO  L184        PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,649 INFO  L184        PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,656 INFO  L184        PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,661 INFO  L184        PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,663 INFO  L184        PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,665 INFO  L131        PluginConnector]: ------------------------ END Boogie Preprocessor----------------------------
[2024-11-18 14:20:47,667 INFO  L112        PluginConnector]: ------------------------RCFGBuilder----------------------------
[2024-11-18 14:20:47,668 INFO  L270        PluginConnector]: Initializing RCFGBuilder...
[2024-11-18 14:20:47,668 INFO  L274        PluginConnector]: RCFGBuilder initialized
[2024-11-18 14:20:47,669 INFO  L184        PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (1/1) ...
[2024-11-18 14:20:47,675 INFO  L173          SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000
[2024-11-18 14:20:47,685 INFO  L189       MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3
[2024-11-18 14:20:47,701 INFO  L229       MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null)
[2024-11-18 14:20:47,708 INFO  L327       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process
[2024-11-18 14:20:47,757 INFO  L130     BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit
[2024-11-18 14:20:47,758 INFO  L130     BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base
[2024-11-18 14:20:47,758 INFO  L138     BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base
[2024-11-18 14:20:47,758 INFO  L130     BoogieDeclarations]: Found specification of procedure cleanup
[2024-11-18 14:20:47,758 INFO  L138     BoogieDeclarations]: Found implementation of procedure cleanup
[2024-11-18 14:20:47,758 INFO  L130     BoogieDeclarations]: Found specification of procedure timeShift
[2024-11-18 14:20:47,759 INFO  L138     BoogieDeclarations]: Found implementation of procedure timeShift
[2024-11-18 14:20:47,759 INFO  L130     BoogieDeclarations]: Found specification of procedure waterRise
[2024-11-18 14:20:47,759 INFO  L138     BoogieDeclarations]: Found implementation of procedure waterRise
[2024-11-18 14:20:47,759 INFO  L130     BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery
[2024-11-18 14:20:47,760 INFO  L138     BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery
[2024-11-18 14:20:47,760 INFO  L130     BoogieDeclarations]: Found specification of procedure isMethaneAlarm
[2024-11-18 14:20:47,760 INFO  L138     BoogieDeclarations]: Found implementation of procedure isMethaneAlarm
[2024-11-18 14:20:47,761 INFO  L130     BoogieDeclarations]: Found specification of procedure deactivatePump
[2024-11-18 14:20:47,761 INFO  L138     BoogieDeclarations]: Found implementation of procedure deactivatePump
[2024-11-18 14:20:47,761 INFO  L130     BoogieDeclarations]: Found specification of procedure write~init~int#0
[2024-11-18 14:20:47,761 INFO  L130     BoogieDeclarations]: Found specification of procedure changeMethaneLevel
[2024-11-18 14:20:47,761 INFO  L138     BoogieDeclarations]: Found implementation of procedure changeMethaneLevel
[2024-11-18 14:20:47,762 INFO  L130     BoogieDeclarations]: Found specification of procedure ULTIMATE.start
[2024-11-18 14:20:47,762 INFO  L138     BoogieDeclarations]: Found implementation of procedure ULTIMATE.start
[2024-11-18 14:20:47,850 INFO  L238             CfgBuilder]: Building ICFG
[2024-11-18 14:20:47,853 INFO  L264             CfgBuilder]: Building CFG for each procedure with an implementation
[2024-11-18 14:20:48,115 INFO  L?                        ?]: Removed 41 outVars from TransFormulas that were not future-live.
[2024-11-18 14:20:48,116 INFO  L287             CfgBuilder]: Performing block encoding
[2024-11-18 14:20:48,128 INFO  L311             CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start)
[2024-11-18 14:20:48,128 INFO  L316             CfgBuilder]: Removed 2 assume(true) statements.
[2024-11-18 14:20:48,130 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:20:48 BoogieIcfgContainer
[2024-11-18 14:20:48,130 INFO  L131        PluginConnector]: ------------------------ END RCFGBuilder----------------------------
[2024-11-18 14:20:48,133 INFO  L112        PluginConnector]: ------------------------TraceAbstraction----------------------------
[2024-11-18 14:20:48,133 INFO  L270        PluginConnector]: Initializing TraceAbstraction...
[2024-11-18 14:20:48,136 INFO  L274        PluginConnector]: TraceAbstraction initialized
[2024-11-18 14:20:48,136 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 18.11 02:20:47" (1/3) ...
[2024-11-18 14:20:48,137 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@30bd35ab and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:20:48, skipping insertion in model container
[2024-11-18 14:20:48,137 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:20:47" (2/3) ...
[2024-11-18 14:20:48,137 INFO  L204        PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@30bd35ab and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:20:48, skipping insertion in model container
[2024-11-18 14:20:48,137 INFO  L184        PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:20:48" (3/3) ...
[2024-11-18 14:20:48,138 INFO  L112   eAbstractionObserver]: Analyzing ICFG minepump_spec4_product29.cil.c
[2024-11-18 14:20:48,157 INFO  L214   ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION
[2024-11-18 14:20:48,157 INFO  L154   ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations.
[2024-11-18 14:20:48,215 INFO  L332      AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ========
[2024-11-18 14:20:48,222 INFO  L333      AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@3b2d58ae, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms]
[2024-11-18 14:20:48,223 INFO  L334      AbstractCegarLoop]: Starting to check reachability of 1 error locations.
[2024-11-18 14:20:48,230 INFO  L276                IsEmpty]: Start isEmpty. Operand  has 86 states, 63 states have (on average 1.380952380952381) internal successors, (87), 71 states have internal predecessors, (87), 13 states have call successors, (13), 8 states have call predecessors, (13), 8 states have return successors, (13), 9 states have call predecessors, (13), 13 states have call successors, (13)
[2024-11-18 14:20:48,236 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 20
[2024-11-18 14:20:48,237 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-18 14:20:48,237 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-18 14:20:48,238 INFO  L396      AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-18 14:20:48,243 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-18 14:20:48,243 INFO  L85        PathProgramCache]: Analyzing trace with hash 12201370, now seen corresponding path program 1 times
[2024-11-18 14:20:48,249 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-18 14:20:48,250 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [140425721]
[2024-11-18 14:20:48,250 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-18 14:20:48,250 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-18 14:20:48,347 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-18 14:20:48,407 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-18 14:20:48,408 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-18 14:20:48,408 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [140425721]
[2024-11-18 14:20:48,409 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [140425721] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-18 14:20:48,409 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-18 14:20:48,409 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2
[2024-11-18 14:20:48,410 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1817108076]
[2024-11-18 14:20:48,411 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-18 14:20:48,415 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 2 states
[2024-11-18 14:20:48,415 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-18 14:20:48,435 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants.
[2024-11-18 14:20:48,436 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2
[2024-11-18 14:20:48,438 INFO  L87              Difference]: Start difference. First operand  has 86 states, 63 states have (on average 1.380952380952381) internal successors, (87), 71 states have internal predecessors, (87), 13 states have call successors, (13), 8 states have call predecessors, (13), 8 states have return successors, (13), 9 states have call predecessors, (13), 13 states have call successors, (13) Second operand  has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-18 14:20:48,464 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-18 14:20:48,464 INFO  L93              Difference]: Finished difference Result 164 states and 221 transitions.
[2024-11-18 14:20:48,465 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. 
[2024-11-18 14:20:48,466 INFO  L78                 Accepts]: Start accepts. Automaton has  has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19
[2024-11-18 14:20:48,466 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-18 14:20:48,472 INFO  L225             Difference]: With dead ends: 164
[2024-11-18 14:20:48,472 INFO  L226             Difference]: Without dead ends: 77
[2024-11-18 14:20:48,475 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2
[2024-11-18 14:20:48,478 INFO  L432           NwaCegarLoop]: 107 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 107 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-18 14:20:48,479 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 107 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-18 14:20:48,495 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 77 states.
[2024-11-18 14:20:48,512 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 77 to 77.
[2024-11-18 14:20:48,514 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 77 states, 56 states have (on average 1.3035714285714286) internal successors, (73), 63 states have internal predecessors, (73), 13 states have call successors, (13), 8 states have call predecessors, (13), 7 states have return successors, (12), 8 states have call predecessors, (12), 12 states have call successors, (12)
[2024-11-18 14:20:48,516 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 77 states to 77 states and 98 transitions.
[2024-11-18 14:20:48,517 INFO  L78                 Accepts]: Start accepts. Automaton has 77 states and 98 transitions. Word has length 19
[2024-11-18 14:20:48,518 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-18 14:20:48,518 INFO  L471      AbstractCegarLoop]: Abstraction has 77 states and 98 transitions.
[2024-11-18 14:20:48,518 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-18 14:20:48,518 INFO  L276                IsEmpty]: Start isEmpty. Operand 77 states and 98 transitions.
[2024-11-18 14:20:48,520 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 21
[2024-11-18 14:20:48,520 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-18 14:20:48,520 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-18 14:20:48,521 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0
[2024-11-18 14:20:48,521 INFO  L396      AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-18 14:20:48,522 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-18 14:20:48,522 INFO  L85        PathProgramCache]: Analyzing trace with hash 1737320962, now seen corresponding path program 1 times
[2024-11-18 14:20:48,522 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-18 14:20:48,522 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [991331313]
[2024-11-18 14:20:48,523 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-18 14:20:48,523 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-18 14:20:48,582 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-18 14:20:48,695 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-18 14:20:48,696 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-18 14:20:48,696 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [991331313]
[2024-11-18 14:20:48,696 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [991331313] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-18 14:20:48,697 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-18 14:20:48,697 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2024-11-18 14:20:48,697 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1562802763]
[2024-11-18 14:20:48,697 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-18 14:20:48,698 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2024-11-18 14:20:48,698 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-18 14:20:48,700 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2024-11-18 14:20:48,701 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-18 14:20:48,701 INFO  L87              Difference]: Start difference. First operand 77 states and 98 transitions. Second operand  has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-18 14:20:48,717 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-18 14:20:48,717 INFO  L93              Difference]: Finished difference Result 120 states and 152 transitions.
[2024-11-18 14:20:48,718 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2024-11-18 14:20:48,718 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 20
[2024-11-18 14:20:48,718 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-18 14:20:48,719 INFO  L225             Difference]: With dead ends: 120
[2024-11-18 14:20:48,719 INFO  L226             Difference]: Without dead ends: 68
[2024-11-18 14:20:48,720 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-18 14:20:48,722 INFO  L432           NwaCegarLoop]: 85 mSDtfsCounter, 12 mSDsluCounter, 69 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 154 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-18 14:20:48,722 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 154 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-18 14:20:48,723 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 68 states.
[2024-11-18 14:20:48,730 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 68 to 68.
[2024-11-18 14:20:48,730 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 68 states, 50 states have (on average 1.32) internal successors, (66), 57 states have internal predecessors, (66), 10 states have call successors, (10), 7 states have call predecessors, (10), 7 states have return successors, (10), 6 states have call predecessors, (10), 10 states have call successors, (10)
[2024-11-18 14:20:48,732 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 68 states to 68 states and 86 transitions.
[2024-11-18 14:20:48,732 INFO  L78                 Accepts]: Start accepts. Automaton has 68 states and 86 transitions. Word has length 20
[2024-11-18 14:20:48,732 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-18 14:20:48,732 INFO  L471      AbstractCegarLoop]: Abstraction has 68 states and 86 transitions.
[2024-11-18 14:20:48,733 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-18 14:20:48,733 INFO  L276                IsEmpty]: Start isEmpty. Operand 68 states and 86 transitions.
[2024-11-18 14:20:48,734 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 25
[2024-11-18 14:20:48,734 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-18 14:20:48,734 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-18 14:20:48,734 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1
[2024-11-18 14:20:48,735 INFO  L396      AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-18 14:20:48,735 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-18 14:20:48,737 INFO  L85        PathProgramCache]: Analyzing trace with hash -688756728, now seen corresponding path program 1 times
[2024-11-18 14:20:48,737 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-18 14:20:48,738 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1756649730]
[2024-11-18 14:20:48,738 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-18 14:20:48,738 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-18 14:20:48,777 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-18 14:20:48,877 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-18 14:20:48,878 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-18 14:20:48,878 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1756649730]
[2024-11-18 14:20:48,878 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1756649730] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-18 14:20:48,879 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-18 14:20:48,879 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2
[2024-11-18 14:20:48,879 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [547118380]
[2024-11-18 14:20:48,879 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-18 14:20:48,880 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2024-11-18 14:20:48,881 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-18 14:20:48,881 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2024-11-18 14:20:48,881 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-18 14:20:48,884 INFO  L87              Difference]: Start difference. First operand 68 states and 86 transitions. Second operand  has 3 states, 3 states have (on average 7.666666666666667) internal successors, (23), 2 states have internal predecessors, (23), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-18 14:20:48,903 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-18 14:20:48,903 INFO  L93              Difference]: Finished difference Result 129 states and 166 transitions.
[2024-11-18 14:20:48,904 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2024-11-18 14:20:48,904 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 7.666666666666667) internal successors, (23), 2 states have internal predecessors, (23), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 24
[2024-11-18 14:20:48,904 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-18 14:20:48,905 INFO  L225             Difference]: With dead ends: 129
[2024-11-18 14:20:48,905 INFO  L226             Difference]: Without dead ends: 68
[2024-11-18 14:20:48,906 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-18 14:20:48,907 INFO  L432           NwaCegarLoop]: 84 mSDtfsCounter, 68 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 68 SdHoareTripleChecker+Valid, 84 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-18 14:20:48,908 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [68 Valid, 84 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-18 14:20:48,909 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 68 states.
[2024-11-18 14:20:48,917 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 68 to 68.
[2024-11-18 14:20:48,917 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 68 states, 50 states have (on average 1.3) internal successors, (65), 57 states have internal predecessors, (65), 10 states have call successors, (10), 7 states have call predecessors, (10), 7 states have return successors, (10), 6 states have call predecessors, (10), 10 states have call successors, (10)
[2024-11-18 14:20:48,918 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 68 states to 68 states and 85 transitions.
[2024-11-18 14:20:48,919 INFO  L78                 Accepts]: Start accepts. Automaton has 68 states and 85 transitions. Word has length 24
[2024-11-18 14:20:48,919 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-18 14:20:48,919 INFO  L471      AbstractCegarLoop]: Abstraction has 68 states and 85 transitions.
[2024-11-18 14:20:48,919 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 7.666666666666667) internal successors, (23), 2 states have internal predecessors, (23), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-18 14:20:48,919 INFO  L276                IsEmpty]: Start isEmpty. Operand 68 states and 85 transitions.
[2024-11-18 14:20:48,920 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 35
[2024-11-18 14:20:48,921 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-18 14:20:48,921 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-18 14:20:48,921 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2
[2024-11-18 14:20:48,921 INFO  L396      AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-18 14:20:48,922 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-18 14:20:48,922 INFO  L85        PathProgramCache]: Analyzing trace with hash -184867227, now seen corresponding path program 1 times
[2024-11-18 14:20:48,922 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-18 14:20:48,922 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1648756028]
[2024-11-18 14:20:48,923 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-18 14:20:48,923 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-18 14:20:48,939 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-18 14:20:49,099 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-18 14:20:49,100 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-18 14:20:49,100 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1648756028]
[2024-11-18 14:20:49,100 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1648756028] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-18 14:20:49,100 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-18 14:20:49,100 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5
[2024-11-18 14:20:49,101 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [311158135]
[2024-11-18 14:20:49,101 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-18 14:20:49,101 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 5 states
[2024-11-18 14:20:49,101 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-18 14:20:49,104 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants.
[2024-11-18 14:20:49,104 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20
[2024-11-18 14:20:49,105 INFO  L87              Difference]: Start difference. First operand 68 states and 85 transitions. Second operand  has 5 states, 5 states have (on average 5.8) internal successors, (29), 5 states have internal predecessors, (29), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2)
[2024-11-18 14:20:49,209 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-18 14:20:49,209 INFO  L93              Difference]: Finished difference Result 183 states and 238 transitions.
[2024-11-18 14:20:49,210 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. 
[2024-11-18 14:20:49,210 INFO  L78                 Accepts]: Start accepts. Automaton has  has 5 states, 5 states have (on average 5.8) internal successors, (29), 5 states have internal predecessors, (29), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 34
[2024-11-18 14:20:49,210 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-18 14:20:49,212 INFO  L225             Difference]: With dead ends: 183
[2024-11-18 14:20:49,213 INFO  L226             Difference]: Without dead ends: 122
[2024-11-18 14:20:49,213 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42
[2024-11-18 14:20:49,214 INFO  L432           NwaCegarLoop]: 79 mSDtfsCounter, 52 mSDsluCounter, 228 mSDsCounter, 0 mSdLazyCounter, 26 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 52 SdHoareTripleChecker+Valid, 307 SdHoareTripleChecker+Invalid, 28 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 26 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-18 14:20:49,215 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [52 Valid, 307 Invalid, 28 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 26 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-18 14:20:49,216 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 122 states.
[2024-11-18 14:20:49,231 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 122 to 122.
[2024-11-18 14:20:49,232 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 122 states, 88 states have (on average 1.2954545454545454) internal successors, (114), 100 states have internal predecessors, (114), 20 states have call successors, (20), 14 states have call predecessors, (20), 13 states have return successors, (21), 11 states have call predecessors, (21), 20 states have call successors, (21)
[2024-11-18 14:20:49,233 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 122 states to 122 states and 155 transitions.
[2024-11-18 14:20:49,233 INFO  L78                 Accepts]: Start accepts. Automaton has 122 states and 155 transitions. Word has length 34
[2024-11-18 14:20:49,234 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-18 14:20:49,234 INFO  L471      AbstractCegarLoop]: Abstraction has 122 states and 155 transitions.
[2024-11-18 14:20:49,234 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 5 states, 5 states have (on average 5.8) internal successors, (29), 5 states have internal predecessors, (29), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2)
[2024-11-18 14:20:49,234 INFO  L276                IsEmpty]: Start isEmpty. Operand 122 states and 155 transitions.
[2024-11-18 14:20:49,236 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 37
[2024-11-18 14:20:49,236 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-18 14:20:49,236 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-18 14:20:49,236 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3
[2024-11-18 14:20:49,236 INFO  L396      AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-18 14:20:49,237 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-18 14:20:49,237 INFO  L85        PathProgramCache]: Analyzing trace with hash 1666532842, now seen corresponding path program 1 times
[2024-11-18 14:20:49,237 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-18 14:20:49,237 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [570456542]
[2024-11-18 14:20:49,238 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-18 14:20:49,238 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-18 14:20:49,255 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-18 14:20:49,324 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-18 14:20:49,324 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-18 14:20:49,324 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [570456542]
[2024-11-18 14:20:49,324 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [570456542] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-18 14:20:49,324 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-18 14:20:49,325 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3
[2024-11-18 14:20:49,325 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1242176198]
[2024-11-18 14:20:49,325 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-18 14:20:49,325 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 3 states
[2024-11-18 14:20:49,325 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-18 14:20:49,326 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants.
[2024-11-18 14:20:49,326 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-18 14:20:49,326 INFO  L87              Difference]: Start difference. First operand 122 states and 155 transitions. Second operand  has 3 states, 3 states have (on average 10.333333333333334) internal successors, (31), 3 states have internal predecessors, (31), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2)
[2024-11-18 14:20:49,349 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-18 14:20:49,350 INFO  L93              Difference]: Finished difference Result 196 states and 253 transitions.
[2024-11-18 14:20:49,350 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. 
[2024-11-18 14:20:49,350 INFO  L78                 Accepts]: Start accepts. Automaton has  has 3 states, 3 states have (on average 10.333333333333334) internal successors, (31), 3 states have internal predecessors, (31), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 36
[2024-11-18 14:20:49,351 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-18 14:20:49,352 INFO  L225             Difference]: With dead ends: 196
[2024-11-18 14:20:49,352 INFO  L226             Difference]: Without dead ends: 81
[2024-11-18 14:20:49,353 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6
[2024-11-18 14:20:49,354 INFO  L432           NwaCegarLoop]: 50 mSDtfsCounter, 38 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 38 SdHoareTripleChecker+Valid, 50 SdHoareTripleChecker+Invalid, 6 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time
[2024-11-18 14:20:49,354 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [38 Valid, 50 Invalid, 6 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time]
[2024-11-18 14:20:49,355 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 81 states.
[2024-11-18 14:20:49,370 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 81 to 81.
[2024-11-18 14:20:49,371 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 81 states, 61 states have (on average 1.2131147540983607) internal successors, (74), 65 states have internal predecessors, (74), 10 states have call successors, (10), 10 states have call predecessors, (10), 9 states have return successors, (10), 9 states have call predecessors, (10), 10 states have call successors, (10)
[2024-11-18 14:20:49,372 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 81 states to 81 states and 94 transitions.
[2024-11-18 14:20:49,372 INFO  L78                 Accepts]: Start accepts. Automaton has 81 states and 94 transitions. Word has length 36
[2024-11-18 14:20:49,373 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-18 14:20:49,373 INFO  L471      AbstractCegarLoop]: Abstraction has 81 states and 94 transitions.
[2024-11-18 14:20:49,373 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 3 states, 3 states have (on average 10.333333333333334) internal successors, (31), 3 states have internal predecessors, (31), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2)
[2024-11-18 14:20:49,374 INFO  L276                IsEmpty]: Start isEmpty. Operand 81 states and 94 transitions.
[2024-11-18 14:20:49,375 INFO  L282                IsEmpty]: Finished isEmpty. Found accepting run of length 39
[2024-11-18 14:20:49,375 INFO  L207           NwaCegarLoop]: Found error trace
[2024-11-18 14:20:49,375 INFO  L215           NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[2024-11-18 14:20:49,375 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4
[2024-11-18 14:20:49,376 INFO  L396      AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] ===
[2024-11-18 14:20:49,376 INFO  L157       PredicateUnifier]: Initialized classic predicate unifier
[2024-11-18 14:20:49,376 INFO  L85        PathProgramCache]: Analyzing trace with hash 821655115, now seen corresponding path program 1 times
[2024-11-18 14:20:49,376 INFO  L118   FreeRefinementEngine]: Executing refinement strategy CAMEL
[2024-11-18 14:20:49,377 INFO  L334   FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1472074008]
[2024-11-18 14:20:49,377 INFO  L95    rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY
[2024-11-18 14:20:49,377 INFO  L127          SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms
[2024-11-18 14:20:49,390 INFO  L136    AnnotateAndAsserter]: Conjunction of SSA is unsat
[2024-11-18 14:20:49,473 INFO  L134       CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked.
[2024-11-18 14:20:49,474 INFO  L136   FreeRefinementEngine]: Strategy CAMEL found an infeasible trace
[2024-11-18 14:20:49,475 INFO  L334   FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1472074008]
[2024-11-18 14:20:49,475 INFO  L158   FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1472074008] provided 1 perfect and 0 imperfect interpolant sequences
[2024-11-18 14:20:49,475 INFO  L185   FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences.
[2024-11-18 14:20:49,475 INFO  L198   FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6
[2024-11-18 14:20:49,475 INFO  L121   tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [691760960]
[2024-11-18 14:20:49,475 INFO  L85    oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton
[2024-11-18 14:20:49,476 INFO  L548      AbstractCegarLoop]: INTERPOLANT automaton has 6 states
[2024-11-18 14:20:49,476 INFO  L100   FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL
[2024-11-18 14:20:49,476 INFO  L143   InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants.
[2024-11-18 14:20:49,476 INFO  L145   InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30
[2024-11-18 14:20:49,477 INFO  L87              Difference]: Start difference. First operand 81 states and 94 transitions. Second operand  has 6 states, 6 states have (on average 5.166666666666667) internal successors, (31), 6 states have internal predecessors, (31), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3)
[2024-11-18 14:20:49,610 INFO  L144             Difference]: Subtrahend was deterministic. Have not used determinization.
[2024-11-18 14:20:49,610 INFO  L93              Difference]: Finished difference Result 81 states and 94 transitions.
[2024-11-18 14:20:49,614 INFO  L141   InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. 
[2024-11-18 14:20:49,615 INFO  L78                 Accepts]: Start accepts. Automaton has  has 6 states, 6 states have (on average 5.166666666666667) internal successors, (31), 6 states have internal predecessors, (31), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 38
[2024-11-18 14:20:49,615 INFO  L84                 Accepts]: Finished accepts. some prefix is accepted.
[2024-11-18 14:20:49,616 INFO  L225             Difference]: With dead ends: 81
[2024-11-18 14:20:49,616 INFO  L226             Difference]: Without dead ends: 0
[2024-11-18 14:20:49,616 INFO  L431           NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=25, Invalid=47, Unknown=0, NotChecked=0, Total=72
[2024-11-18 14:20:49,617 INFO  L432           NwaCegarLoop]: 34 mSDtfsCounter, 42 mSDsluCounter, 85 mSDsCounter, 0 mSdLazyCounter, 58 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 43 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 67 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 58 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time
[2024-11-18 14:20:49,618 INFO  L433           NwaCegarLoop]: SdHoareTripleChecker [43 Valid, 119 Invalid, 67 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 58 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time]
[2024-11-18 14:20:49,622 INFO  L82        GeneralOperation]: Start minimizeSevpa. Operand 0 states.
[2024-11-18 14:20:49,623 INFO  L88        GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0.
[2024-11-18 14:20:49,623 INFO  L82        GeneralOperation]: Start removeUnreachable. Operand  has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0)
[2024-11-18 14:20:49,623 INFO  L88        GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions.
[2024-11-18 14:20:49,623 INFO  L78                 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 38
[2024-11-18 14:20:49,623 INFO  L84                 Accepts]: Finished accepts. word is rejected.
[2024-11-18 14:20:49,623 INFO  L471      AbstractCegarLoop]: Abstraction has 0 states and 0 transitions.
[2024-11-18 14:20:49,624 INFO  L472      AbstractCegarLoop]: INTERPOLANT automaton has  has 6 states, 6 states have (on average 5.166666666666667) internal successors, (31), 6 states have internal predecessors, (31), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3)
[2024-11-18 14:20:49,624 INFO  L276                IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions.
[2024-11-18 14:20:49,624 INFO  L282                IsEmpty]: Finished isEmpty. No accepting run.
[2024-11-18 14:20:49,630 INFO  L782   garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining)
[2024-11-18 14:20:49,632 WARN  L453      AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5
[2024-11-18 14:20:49,638 INFO  L407         BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1]
[2024-11-18 14:20:49,640 INFO  L343    DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions.
[2024-11-18 14:20:50,188 INFO  L170   ceAbstractionStarter]: Computing trace abstraction results
[2024-11-18 14:20:50,254 WARN  L156        FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (or (not (= |old(~waterLevel~0)| 1)) (= ~waterLevel~0 1)) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0))  Eliminated clause: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0))
[2024-11-18 14:20:50,263 WARN  L156        FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (or (not (= |old(~waterLevel~0)| 1)) (= ~waterLevel~0 1)) (= 1 ~systemActive~0))  Eliminated clause: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0))
[2024-11-18 14:20:50,268 WARN  L156        FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0))  Eliminated clause: (and (= ~pumpRunning~0 0) (= 1 ~systemActive~0))
[2024-11-18 14:20:50,275 INFO  L201        PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 18.11 02:20:50 BoogieIcfgContainer
[2024-11-18 14:20:50,275 INFO  L131        PluginConnector]: ------------------------ END TraceAbstraction----------------------------
[2024-11-18 14:20:50,275 INFO  L112        PluginConnector]: ------------------------Witness Printer----------------------------
[2024-11-18 14:20:50,275 INFO  L270        PluginConnector]: Initializing Witness Printer...
[2024-11-18 14:20:50,276 INFO  L274        PluginConnector]: Witness Printer initialized
[2024-11-18 14:20:50,276 INFO  L184        PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:20:48" (3/4) ...
[2024-11-18 14:20:50,281 INFO  L142         WitnessPrinter]: Generating witness for correct program
[2024-11-18 14:20:50,285 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump
[2024-11-18 14:20:50,286 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base
[2024-11-18 14:20:50,286 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel
[2024-11-18 14:20:50,286 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup
[2024-11-18 14:20:50,286 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift
[2024-11-18 14:20:50,287 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise
[2024-11-18 14:20:50,287 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery
[2024-11-18 14:20:50,287 INFO  L361     RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm
[2024-11-18 14:20:50,295 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 20 nodes and edges
[2024-11-18 14:20:50,295 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges
[2024-11-18 14:20:50,296 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges
[2024-11-18 14:20:50,296 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2024-11-18 14:20:50,296 INFO  L925   BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges
[2024-11-18 14:20:50,404 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml
[2024-11-18 14:20:50,404 INFO  L149         WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml
[2024-11-18 14:20:50,404 INFO  L131        PluginConnector]: ------------------------ END Witness Printer----------------------------
[2024-11-18 14:20:50,405 INFO  L158              Benchmark]: Toolchain (without parser) took 3385.36ms. Allocated memory was 174.1MB in the beginning and 228.6MB in the end (delta: 54.5MB). Free memory was 118.4MB in the beginning and 159.1MB in the end (delta: -40.7MB). Peak memory consumption was 15.6MB. Max. memory is 16.1GB.
[2024-11-18 14:20:50,405 INFO  L158              Benchmark]: CDTParser took 0.21ms. Allocated memory is still 174.1MB. Free memory is still 139.4MB. There was no memory consumed. Max. memory is 16.1GB.
[2024-11-18 14:20:50,405 INFO  L158              Benchmark]: CACSL2BoogieTranslator took 515.03ms. Allocated memory is still 174.1MB. Free memory was 118.4MB in the beginning and 96.8MB in the end (delta: 21.6MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB.
[2024-11-18 14:20:50,406 INFO  L158              Benchmark]: Boogie Procedure Inliner took 63.47ms. Allocated memory is still 174.1MB. Free memory was 96.8MB in the beginning and 94.7MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
[2024-11-18 14:20:50,406 INFO  L158              Benchmark]: Boogie Preprocessor took 66.01ms. Allocated memory is still 174.1MB. Free memory was 94.7MB in the beginning and 92.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
[2024-11-18 14:20:50,406 INFO  L158              Benchmark]: RCFGBuilder took 463.26ms. Allocated memory is still 174.1MB. Free memory was 92.6MB in the beginning and 74.4MB in the end (delta: 18.2MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB.
[2024-11-18 14:20:50,406 INFO  L158              Benchmark]: TraceAbstraction took 2141.68ms. Allocated memory was 174.1MB in the beginning and 228.6MB in the end (delta: 54.5MB). Free memory was 73.7MB in the beginning and 166.4MB in the end (delta: -92.7MB). Peak memory consumption was 26.1MB. Max. memory is 16.1GB.
[2024-11-18 14:20:50,407 INFO  L158              Benchmark]: Witness Printer took 128.90ms. Allocated memory is still 228.6MB. Free memory was 166.4MB in the beginning and 159.1MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
[2024-11-18 14:20:50,410 INFO  L338   ainManager$Toolchain]: #######################  End [Toolchain 1] #######################
 --- Results ---
 * Results from de.uni_freiburg.informatik.ultimate.core:
  - StatisticsResult: Toolchain Benchmarks
    Benchmark results are:
 * CDTParser took 0.21ms. Allocated memory is still 174.1MB. Free memory is still 139.4MB. There was no memory consumed. Max. memory is 16.1GB.
 * CACSL2BoogieTranslator took 515.03ms. Allocated memory is still 174.1MB. Free memory was 118.4MB in the beginning and 96.8MB in the end (delta: 21.6MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB.
 * Boogie Procedure Inliner took 63.47ms. Allocated memory is still 174.1MB. Free memory was 96.8MB in the beginning and 94.7MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
 * Boogie Preprocessor took 66.01ms. Allocated memory is still 174.1MB. Free memory was 94.7MB in the beginning and 92.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB.
 * RCFGBuilder took 463.26ms. Allocated memory is still 174.1MB. Free memory was 92.6MB in the beginning and 74.4MB in the end (delta: 18.2MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB.
 * TraceAbstraction took 2141.68ms. Allocated memory was 174.1MB in the beginning and 228.6MB in the end (delta: 54.5MB). Free memory was 73.7MB in the beginning and 166.4MB in the end (delta: -92.7MB). Peak memory consumption was 26.1MB. Max. memory is 16.1GB.
 * Witness Printer took 128.90ms. Allocated memory is still 228.6MB. Free memory was 166.4MB in the beginning and 159.1MB in the end (delta: 7.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB.
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator:
  - GenericResultAtLocation [Line: 49]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49]
  - GenericResultAtLocation [Line: 145]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [145]
  - GenericResultAtLocation [Line: 154]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [154]
  - GenericResultAtLocation [Line: 520]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [520]
  - GenericResultAtLocation [Line: 587]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [587]
  - GenericResultAtLocation [Line: 625]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [625]
  - GenericResultAtLocation [Line: 825]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [825]
  - GenericResultAtLocation [Line: 921]: Unsoundness Warning
    Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [921]
 * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction:
  - StatisticsResult: ErrorAutomatonStatistics
    NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0
  - PositiveResult [Line: 150]: a call to reach_error is unreachable
    For all program executions holds that a call to reach_error is unreachable at this location
  - StatisticsResult: Ultimate Automizer benchmark data
    CFG has 9 procedures, 86 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 1.4s, OverallIterations: 6, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 216 SdHoareTripleChecker+Valid, 0.2s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 212 mSDsluCounter, 821 SdHoareTripleChecker+Invalid, 0.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 382 mSDsCounter, 13 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 90 IncrementalHoareTripleChecker+Invalid, 103 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 13 mSolverCounterUnsat, 439 mSDtfsCounter, 90 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 31 GetRequests, 16 SyntacticMatches, 0 SemanticMatches, 15 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=122occurred in iteration=4, InterpolantAutomatonStates: 22, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 6 MinimizatonAttempts, 0 StatesRemovedByMinimization, 0 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.6s InterpolantComputationTime, 171 NumberOfCodeBlocks, 171 NumberOfCodeBlocksAsserted, 6 NumberOfCheckSat, 165 ConstructedInterpolants, 0 QuantifiedInterpolants, 343 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 6 InterpolantComputations, 6 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available
  - AllSpecificationsHoldResult: All specifications hold
    1 specifications checked. All of them hold
  - InvariantResult [Line: 533]: Loop Invariant
    Derived loop invariant: (((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0))
  - InvariantResult [Line: 837]: Loop Invariant
    Derived loop invariant: 0
  - InvariantResult [Line: 532]: Location Invariant
    Derived location invariant: 0
  - ProcedureContractResult [Line: 742]: Procedure Contract for deactivatePump
    Derived contract for procedure deactivatePump. Requires: 0 Ensures: (0 && (((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 658]: Procedure Contract for processEnvironment__wrappee__base
    Derived contract for procedure processEnvironment__wrappee__base. Requires: ((pumpRunning == 0) && (1 == systemActive)) Ensures: (((pumpRunning == 0) && (1 == systemActive)) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 83]: Procedure Contract for changeMethaneLevel
    Derived contract for procedure changeMethaneLevel. Requires: ((pumpRunning == 0) && (1 == systemActive)) Ensures: (((pumpRunning == 0) && (1 == systemActive)) && (((((waterLevel == \old(waterLevel)) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 827]: Procedure Contract for cleanup
    Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (head == \old(head))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 634]: Procedure Contract for timeShift
    Derived contract for procedure timeShift. Requires: ((pumpRunning == 0) && (1 == systemActive)) Ensures: (((((pumpRunning == 0) && ((\old(waterLevel) != 1) || (waterLevel == 1))) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (head == \old(head))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 71]: Procedure Contract for waterRise
    Derived contract for procedure waterRise. Requires: ((pumpRunning == 0) && (1 == systemActive)) Ensures: (((pumpRunning == 0) && (1 == systemActive)) && (((((methaneLevelCritical == \old(methaneLevelCritical)) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 666]: Procedure Contract for processEnvironment__wrappee__methaneQuery
    Derived contract for procedure processEnvironment__wrappee__methaneQuery. Requires: ((pumpRunning == 0) && (1 == systemActive)) Ensures: ((((pumpRunning == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
  - ProcedureContractResult [Line: 750]: Procedure Contract for isMethaneAlarm
    Derived contract for procedure isMethaneAlarm. Requires: 0 Ensures: (0 && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts))))
RESULT: Ultimate proved your program to be correct!
[2024-11-18 14:20:50,453 INFO  L552       MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Ended with exit code 0
Received shutdown request...
--- End real Ultimate output ---

Execution finished normally
Writing output log to file Ultimate.log
Result:
TRUE