java -ea -Xmx8000000000 -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.3.100.v20150511-1540.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc ../../../trunk/examples/toolchains/AutomizerC.xml -s ../../../trunk/examples/settings/default/automizer/svcomp-Reach-32bit-Automizer_Default.epf -i ../../../trunk/examples/svcomp/ssh/s3_srvr.blast.04_false-unreach-call.i.cil.c -------------------------------------------------------------------------------- This is Ultimate 0.1.23-370d6ab [2018-11-14 17:18:20,064 INFO L170 SettingsManager]: Resetting all preferences to default values... [2018-11-14 17:18:20,068 INFO L174 SettingsManager]: Resetting UltimateCore preferences to default values [2018-11-14 17:18:20,083 INFO L177 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2018-11-14 17:18:20,084 INFO L174 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2018-11-14 17:18:20,086 INFO L174 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2018-11-14 17:18:20,087 INFO L174 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2018-11-14 17:18:20,089 INFO L174 SettingsManager]: Resetting LassoRanker preferences to default values [2018-11-14 17:18:20,091 INFO L174 SettingsManager]: Resetting Reaching Definitions preferences to default values [2018-11-14 17:18:20,095 INFO L174 SettingsManager]: Resetting SyntaxChecker preferences to default values [2018-11-14 17:18:20,096 INFO L177 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2018-11-14 17:18:20,096 INFO L174 SettingsManager]: Resetting LTL2Aut preferences to default values [2018-11-14 17:18:20,097 INFO L174 SettingsManager]: Resetting PEA to Boogie preferences to default values [2018-11-14 17:18:20,105 INFO L174 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2018-11-14 17:18:20,106 INFO L174 SettingsManager]: Resetting ChcToBoogie preferences to default values [2018-11-14 17:18:20,110 INFO L174 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2018-11-14 17:18:20,111 INFO L174 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2018-11-14 17:18:20,113 INFO L174 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2018-11-14 17:18:20,117 INFO L174 SettingsManager]: Resetting CodeCheck preferences to default values [2018-11-14 17:18:20,121 INFO L174 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2018-11-14 17:18:20,123 INFO L174 SettingsManager]: Resetting RCFGBuilder preferences to default values [2018-11-14 17:18:20,125 INFO L174 SettingsManager]: Resetting TraceAbstraction preferences to default values [2018-11-14 17:18:20,127 INFO L177 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2018-11-14 17:18:20,127 INFO L177 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2018-11-14 17:18:20,128 INFO L174 SettingsManager]: Resetting TreeAutomizer preferences to default values [2018-11-14 17:18:20,129 INFO L174 SettingsManager]: Resetting IcfgTransformer preferences to default values [2018-11-14 17:18:20,129 INFO L174 SettingsManager]: Resetting Boogie Printer preferences to default values [2018-11-14 17:18:20,130 INFO L174 SettingsManager]: Resetting ReqPrinter preferences to default values [2018-11-14 17:18:20,132 INFO L174 SettingsManager]: Resetting Witness Printer preferences to default values [2018-11-14 17:18:20,133 INFO L177 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2018-11-14 17:18:20,133 INFO L174 SettingsManager]: Resetting CDTParser preferences to default values [2018-11-14 17:18:20,136 INFO L177 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2018-11-14 17:18:20,136 INFO L177 SettingsManager]: ReqParser provides no preferences, ignoring... [2018-11-14 17:18:20,136 INFO L174 SettingsManager]: Resetting SmtParser preferences to default values [2018-11-14 17:18:20,139 INFO L174 SettingsManager]: Resetting Witness Parser preferences to default values [2018-11-14 17:18:20,140 INFO L181 SettingsManager]: Finished resetting all preferences to default values... [2018-11-14 17:18:20,140 INFO L98 SettingsManager]: Beginning loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../../../trunk/examples/settings/default/automizer/svcomp-Reach-32bit-Automizer_Default.epf [2018-11-14 17:18:20,171 INFO L110 SettingsManager]: Loading preferences was successful [2018-11-14 17:18:20,171 INFO L112 SettingsManager]: Preferences different from defaults after loading the file: [2018-11-14 17:18:20,175 INFO L131 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2018-11-14 17:18:20,175 INFO L133 SettingsManager]: * to procedures, called more than once=true [2018-11-14 17:18:20,176 INFO L131 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2018-11-14 17:18:20,176 INFO L133 SettingsManager]: * Create parallel compositions if possible=false [2018-11-14 17:18:20,176 INFO L133 SettingsManager]: * Use SBE=true [2018-11-14 17:18:20,178 INFO L131 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2018-11-14 17:18:20,178 INFO L133 SettingsManager]: * sizeof long=4 [2018-11-14 17:18:20,178 INFO L133 SettingsManager]: * Overapproximate operations on floating types=true [2018-11-14 17:18:20,178 INFO L133 SettingsManager]: * sizeof POINTER=4 [2018-11-14 17:18:20,178 INFO L133 SettingsManager]: * Check division by zero=IGNORE [2018-11-14 17:18:20,179 INFO L133 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2018-11-14 17:18:20,179 INFO L133 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2018-11-14 17:18:20,179 INFO L133 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2018-11-14 17:18:20,179 INFO L133 SettingsManager]: * sizeof long double=12 [2018-11-14 17:18:20,179 INFO L133 SettingsManager]: * Check if freed pointer was valid=false [2018-11-14 17:18:20,180 INFO L133 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2018-11-14 17:18:20,180 INFO L131 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2018-11-14 17:18:20,180 INFO L133 SettingsManager]: * Size of a code block=SequenceOfStatements [2018-11-14 17:18:20,180 INFO L133 SettingsManager]: * To the following directory=./dump/ [2018-11-14 17:18:20,180 INFO L133 SettingsManager]: * SMT solver=External_DefaultMode [2018-11-14 17:18:20,182 INFO L133 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2018-11-14 17:18:20,182 INFO L131 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2018-11-14 17:18:20,183 INFO L133 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2018-11-14 17:18:20,183 INFO L133 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2018-11-14 17:18:20,183 INFO L133 SettingsManager]: * Trace refinement strategy=CAMEL [2018-11-14 17:18:20,183 INFO L133 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2018-11-14 17:18:20,183 INFO L133 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2018-11-14 17:18:20,184 INFO L133 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2018-11-14 17:18:20,256 INFO L81 nceAwareModelManager]: Repository-Root is: /tmp [2018-11-14 17:18:20,276 INFO L258 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2018-11-14 17:18:20,280 INFO L214 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2018-11-14 17:18:20,281 INFO L271 PluginConnector]: Initializing CDTParser... [2018-11-14 17:18:20,282 INFO L276 PluginConnector]: CDTParser initialized [2018-11-14 17:18:20,283 INFO L418 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../../../trunk/examples/svcomp/ssh/s3_srvr.blast.04_false-unreach-call.i.cil.c [2018-11-14 17:18:20,340 INFO L218 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/89555fb24/7cd6f57bbe244bb2ab8bdd457534a806/FLAG56b56fe03 [2018-11-14 17:18:20,960 INFO L298 CDTParser]: Found 1 translation units. [2018-11-14 17:18:20,962 INFO L158 CDTParser]: Scanning /storage/repos/ultimate/trunk/examples/svcomp/ssh/s3_srvr.blast.04_false-unreach-call.i.cil.c [2018-11-14 17:18:20,997 INFO L346 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/89555fb24/7cd6f57bbe244bb2ab8bdd457534a806/FLAG56b56fe03 [2018-11-14 17:18:21,020 INFO L354 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/89555fb24/7cd6f57bbe244bb2ab8bdd457534a806 [2018-11-14 17:18:21,033 INFO L296 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2018-11-14 17:18:21,034 INFO L131 ToolchainWalker]: Walking toolchain with 4 elements. [2018-11-14 17:18:21,035 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2018-11-14 17:18:21,035 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2018-11-14 17:18:21,039 INFO L276 PluginConnector]: CACSL2BoogieTranslator initialized [2018-11-14 17:18:21,040 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 05:18:21" (1/1) ... [2018-11-14 17:18:21,043 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@6a3a8ad1 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:21, skipping insertion in model container [2018-11-14 17:18:21,044 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 05:18:21" (1/1) ... [2018-11-14 17:18:21,054 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2018-11-14 17:18:21,146 INFO L176 MainTranslator]: Built tables and reachable declarations [2018-11-14 17:18:22,042 INFO L201 PostProcessor]: Analyzing one entry point: main [2018-11-14 17:18:22,147 INFO L191 MainTranslator]: Completed pre-run [2018-11-14 17:18:22,466 INFO L201 PostProcessor]: Analyzing one entry point: main [2018-11-14 17:18:22,492 INFO L195 MainTranslator]: Completed translation [2018-11-14 17:18:22,493 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22 WrapperNode [2018-11-14 17:18:22,493 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2018-11-14 17:18:22,493 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2018-11-14 17:18:22,494 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2018-11-14 17:18:22,494 INFO L276 PluginConnector]: Boogie Preprocessor initialized [2018-11-14 17:18:22,510 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (1/1) ... [2018-11-14 17:18:22,510 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (1/1) ... [2018-11-14 17:18:22,540 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (1/1) ... [2018-11-14 17:18:22,540 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (1/1) ... [2018-11-14 17:18:22,633 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (1/1) ... [2018-11-14 17:18:22,642 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (1/1) ... [2018-11-14 17:18:22,646 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (1/1) ... [2018-11-14 17:18:22,653 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2018-11-14 17:18:22,653 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2018-11-14 17:18:22,653 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2018-11-14 17:18:22,654 INFO L276 PluginConnector]: RCFGBuilder initialized [2018-11-14 17:18:22,654 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (1/1) ... No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 Starting monitored process 1 with z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 1 with z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2018-11-14 17:18:22,736 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2018-11-14 17:18:22,736 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2018-11-14 17:18:22,736 INFO L138 BoogieDeclarations]: Found implementation of procedure ssl3_get_server_method [2018-11-14 17:18:22,737 INFO L138 BoogieDeclarations]: Found implementation of procedure SSLv3_server_method [2018-11-14 17:18:22,737 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2018-11-14 17:18:22,737 INFO L138 BoogieDeclarations]: Found implementation of procedure ssl3_accept [2018-11-14 17:18:22,737 INFO L138 BoogieDeclarations]: Found implementation of procedure sslv3_base_method [2018-11-14 17:18:22,737 INFO L138 BoogieDeclarations]: Found implementation of procedure #Ultimate.meminit [2018-11-14 17:18:22,738 INFO L138 BoogieDeclarations]: Found implementation of procedure #Ultimate.C_memcpy [2018-11-14 17:18:22,738 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_error [2018-11-14 17:18:22,738 INFO L130 BoogieDeclarations]: Found specification of procedure malloc [2018-11-14 17:18:22,738 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_char [2018-11-14 17:18:22,738 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_int [2018-11-14 17:18:22,741 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_long [2018-11-14 17:18:22,741 INFO L130 BoogieDeclarations]: Found specification of procedure __VERIFIER_nondet_pointer [2018-11-14 17:18:22,741 INFO L130 BoogieDeclarations]: Found specification of procedure memcpy [2018-11-14 17:18:22,741 INFO L130 BoogieDeclarations]: Found specification of procedure SSLv3_server_method [2018-11-14 17:18:22,742 INFO L130 BoogieDeclarations]: Found specification of procedure sslv3_base_method [2018-11-14 17:18:22,742 INFO L130 BoogieDeclarations]: Found specification of procedure ssl3_accept [2018-11-14 17:18:22,742 INFO L130 BoogieDeclarations]: Found specification of procedure ssl3_get_server_method [2018-11-14 17:18:22,743 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.C_memcpy [2018-11-14 17:18:22,743 INFO L130 BoogieDeclarations]: Found specification of procedure write~$Pointer$ [2018-11-14 17:18:22,744 INFO L130 BoogieDeclarations]: Found specification of procedure main [2018-11-14 17:18:22,744 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.alloc [2018-11-14 17:18:22,744 INFO L130 BoogieDeclarations]: Found specification of procedure write~int [2018-11-14 17:18:22,744 INFO L130 BoogieDeclarations]: Found specification of procedure read~$Pointer$ [2018-11-14 17:18:22,744 INFO L130 BoogieDeclarations]: Found specification of procedure read~int [2018-11-14 17:18:22,745 INFO L130 BoogieDeclarations]: Found specification of procedure calloc [2018-11-14 17:18:22,745 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.meminit [2018-11-14 17:18:22,745 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2018-11-14 17:18:22,745 INFO L130 BoogieDeclarations]: Found specification of procedure write~unchecked~int [2018-11-14 17:18:22,746 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2018-11-14 17:18:22,746 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2018-11-14 17:18:23,459 WARN L684 $ProcedureCfgBuilder]: Two Gotos in a row! There was dead code [2018-11-14 17:18:23,459 WARN L649 $ProcedureCfgBuilder]: Label in the middle of a codeblock. [2018-11-14 17:18:26,088 INFO L278 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2018-11-14 17:18:26,090 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 05:18:26 BoogieIcfgContainer [2018-11-14 17:18:26,090 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2018-11-14 17:18:26,092 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2018-11-14 17:18:26,092 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2018-11-14 17:18:26,095 INFO L276 PluginConnector]: TraceAbstraction initialized [2018-11-14 17:18:26,095 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 14.11 05:18:21" (1/3) ... [2018-11-14 17:18:26,096 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@47f6a3c9 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 05:18:26, skipping insertion in model container [2018-11-14 17:18:26,097 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 05:18:22" (2/3) ... [2018-11-14 17:18:26,097 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@47f6a3c9 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 05:18:26, skipping insertion in model container [2018-11-14 17:18:26,097 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 05:18:26" (3/3) ... [2018-11-14 17:18:26,100 INFO L112 eAbstractionObserver]: Analyzing ICFG s3_srvr.blast.04_false-unreach-call.i.cil.c [2018-11-14 17:18:26,111 INFO L136 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2018-11-14 17:18:26,120 INFO L148 ceAbstractionStarter]: Appying trace abstraction to program that has 1 error locations. [2018-11-14 17:18:26,137 INFO L257 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2018-11-14 17:18:26,171 INFO L133 ementStrategyFactory]: Using default assertion order modulation [2018-11-14 17:18:26,172 INFO L382 AbstractCegarLoop]: Interprodecural is true [2018-11-14 17:18:26,173 INFO L383 AbstractCegarLoop]: Hoare is true [2018-11-14 17:18:26,173 INFO L384 AbstractCegarLoop]: Compute interpolants for FPandBP [2018-11-14 17:18:26,173 INFO L385 AbstractCegarLoop]: Backedges is STRAIGHT_LINE [2018-11-14 17:18:26,173 INFO L386 AbstractCegarLoop]: Determinization is PREDICATE_ABSTRACTION [2018-11-14 17:18:26,173 INFO L387 AbstractCegarLoop]: Difference is false [2018-11-14 17:18:26,174 INFO L388 AbstractCegarLoop]: Minimize is MINIMIZE_SEVPA [2018-11-14 17:18:26,174 INFO L393 AbstractCegarLoop]: ======== Iteration 0==of CEGAR loop == AllErrorsAtOnce======== [2018-11-14 17:18:26,197 INFO L276 IsEmpty]: Start isEmpty. Operand 153 states. [2018-11-14 17:18:26,208 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2018-11-14 17:18:26,209 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:26,210 INFO L375 BasicCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:26,213 INFO L423 AbstractCegarLoop]: === Iteration 1 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:26,218 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:26,219 INFO L82 PathProgramCache]: Analyzing trace with hash 1359081543, now seen corresponding path program 1 times [2018-11-14 17:18:26,221 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:26,221 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:26,277 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:26,277 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:26,278 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:26,445 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:26,822 INFO L256 TraceCheckUtils]: 0: Hoare triple {156#true} call ULTIMATE.init(); {156#true} is VALID [2018-11-14 17:18:26,826 INFO L273 TraceCheckUtils]: 1: Hoare triple {156#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {156#true} is VALID [2018-11-14 17:18:26,826 INFO L273 TraceCheckUtils]: 2: Hoare triple {156#true} assume true; {156#true} is VALID [2018-11-14 17:18:26,827 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {156#true} {156#true} #654#return; {156#true} is VALID [2018-11-14 17:18:26,827 INFO L256 TraceCheckUtils]: 4: Hoare triple {156#true} call #t~ret138 := main(); {156#true} is VALID [2018-11-14 17:18:26,828 INFO L273 TraceCheckUtils]: 5: Hoare triple {156#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {156#true} is VALID [2018-11-14 17:18:26,828 INFO L256 TraceCheckUtils]: 6: Hoare triple {156#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {156#true} is VALID [2018-11-14 17:18:26,845 INFO L273 TraceCheckUtils]: 7: Hoare triple {156#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,860 INFO L273 TraceCheckUtils]: 8: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,874 INFO L273 TraceCheckUtils]: 9: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,889 INFO L273 TraceCheckUtils]: 10: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,903 INFO L273 TraceCheckUtils]: 11: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,917 INFO L273 TraceCheckUtils]: 12: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,926 INFO L273 TraceCheckUtils]: 13: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume true; {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,942 INFO L273 TraceCheckUtils]: 14: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !false; {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,953 INFO L273 TraceCheckUtils]: 15: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,967 INFO L273 TraceCheckUtils]: 16: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,983 INFO L273 TraceCheckUtils]: 17: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:26,992 INFO L273 TraceCheckUtils]: 18: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:27,005 INFO L273 TraceCheckUtils]: 19: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:27,018 INFO L273 TraceCheckUtils]: 20: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:27,032 INFO L273 TraceCheckUtils]: 21: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:27,041 INFO L273 TraceCheckUtils]: 22: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:27,054 INFO L273 TraceCheckUtils]: 23: Hoare triple {158#(= 8464 (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {159#(= 8464 |ssl3_accept_#t~mem32|)} is VALID [2018-11-14 17:18:27,067 INFO L273 TraceCheckUtils]: 24: Hoare triple {159#(= 8464 |ssl3_accept_#t~mem32|)} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,067 INFO L273 TraceCheckUtils]: 25: Hoare triple {157#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,068 INFO L273 TraceCheckUtils]: 26: Hoare triple {157#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,068 INFO L273 TraceCheckUtils]: 27: Hoare triple {157#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,069 INFO L273 TraceCheckUtils]: 28: Hoare triple {157#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,069 INFO L273 TraceCheckUtils]: 29: Hoare triple {157#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,069 INFO L273 TraceCheckUtils]: 30: Hoare triple {157#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,071 INFO L273 TraceCheckUtils]: 31: Hoare triple {157#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,071 INFO L273 TraceCheckUtils]: 32: Hoare triple {157#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,071 INFO L273 TraceCheckUtils]: 33: Hoare triple {157#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,072 INFO L273 TraceCheckUtils]: 34: Hoare triple {157#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,072 INFO L273 TraceCheckUtils]: 35: Hoare triple {157#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,072 INFO L273 TraceCheckUtils]: 36: Hoare triple {157#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,073 INFO L273 TraceCheckUtils]: 37: Hoare triple {157#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,074 INFO L273 TraceCheckUtils]: 38: Hoare triple {157#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,074 INFO L273 TraceCheckUtils]: 39: Hoare triple {157#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,075 INFO L273 TraceCheckUtils]: 40: Hoare triple {157#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,075 INFO L273 TraceCheckUtils]: 41: Hoare triple {157#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,075 INFO L273 TraceCheckUtils]: 42: Hoare triple {157#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,076 INFO L273 TraceCheckUtils]: 43: Hoare triple {157#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,076 INFO L273 TraceCheckUtils]: 44: Hoare triple {157#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,077 INFO L273 TraceCheckUtils]: 45: Hoare triple {157#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,077 INFO L273 TraceCheckUtils]: 46: Hoare triple {157#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,077 INFO L273 TraceCheckUtils]: 47: Hoare triple {157#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {157#false} is VALID [2018-11-14 17:18:27,078 INFO L273 TraceCheckUtils]: 48: Hoare triple {157#false} assume #t~mem56 == 8672;havoc #t~mem56; {157#false} is VALID [2018-11-14 17:18:27,078 INFO L273 TraceCheckUtils]: 49: Hoare triple {157#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {157#false} is VALID [2018-11-14 17:18:27,079 INFO L273 TraceCheckUtils]: 50: Hoare triple {157#false} assume ~blastFlag~0 == 4; {157#false} is VALID [2018-11-14 17:18:27,079 INFO L273 TraceCheckUtils]: 51: Hoare triple {157#false} assume !false; {157#false} is VALID [2018-11-14 17:18:27,106 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:27,109 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:27,109 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:27,115 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 52 [2018-11-14 17:18:27,120 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:27,124 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:27,317 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 52 edges. 52 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:27,318 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:27,326 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:27,326 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:27,328 INFO L87 Difference]: Start difference. First operand 153 states. Second operand 4 states. [2018-11-14 17:18:29,165 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:29,166 INFO L93 Difference]: Finished difference Result 326 states and 541 transitions. [2018-11-14 17:18:29,166 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:29,166 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 52 [2018-11-14 17:18:29,167 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:29,168 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:29,192 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 541 transitions. [2018-11-14 17:18:29,192 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:29,204 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 541 transitions. [2018-11-14 17:18:29,204 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 541 transitions. [2018-11-14 17:18:30,293 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 541 edges. 541 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:30,318 INFO L225 Difference]: With dead ends: 326 [2018-11-14 17:18:30,318 INFO L226 Difference]: Without dead ends: 166 [2018-11-14 17:18:30,323 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 2 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:30,343 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 166 states. [2018-11-14 17:18:30,430 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 166 to 149. [2018-11-14 17:18:30,431 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:30,431 INFO L82 GeneralOperation]: Start isEquivalent. First operand 166 states. Second operand 149 states. [2018-11-14 17:18:30,432 INFO L74 IsIncluded]: Start isIncluded. First operand 166 states. Second operand 149 states. [2018-11-14 17:18:30,432 INFO L87 Difference]: Start difference. First operand 166 states. Second operand 149 states. [2018-11-14 17:18:30,443 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:30,443 INFO L93 Difference]: Finished difference Result 166 states and 245 transitions. [2018-11-14 17:18:30,444 INFO L276 IsEmpty]: Start isEmpty. Operand 166 states and 245 transitions. [2018-11-14 17:18:30,446 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:30,446 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:30,446 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 166 states. [2018-11-14 17:18:30,447 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 166 states. [2018-11-14 17:18:30,457 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:30,457 INFO L93 Difference]: Finished difference Result 166 states and 245 transitions. [2018-11-14 17:18:30,457 INFO L276 IsEmpty]: Start isEmpty. Operand 166 states and 245 transitions. [2018-11-14 17:18:30,459 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:30,459 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:30,460 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:30,460 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:30,460 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:30,468 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 224 transitions. [2018-11-14 17:18:30,470 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 224 transitions. Word has length 52 [2018-11-14 17:18:30,470 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:30,471 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 224 transitions. [2018-11-14 17:18:30,471 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:30,471 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 224 transitions. [2018-11-14 17:18:30,473 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2018-11-14 17:18:30,474 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:30,474 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:30,474 INFO L423 AbstractCegarLoop]: === Iteration 2 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:30,475 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:30,475 INFO L82 PathProgramCache]: Analyzing trace with hash 1302332565, now seen corresponding path program 1 times [2018-11-14 17:18:30,475 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:30,475 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:30,477 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:30,477 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:30,477 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:30,516 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:30,682 INFO L256 TraceCheckUtils]: 0: Hoare triple {1066#true} call ULTIMATE.init(); {1066#true} is VALID [2018-11-14 17:18:30,682 INFO L273 TraceCheckUtils]: 1: Hoare triple {1066#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {1066#true} is VALID [2018-11-14 17:18:30,683 INFO L273 TraceCheckUtils]: 2: Hoare triple {1066#true} assume true; {1066#true} is VALID [2018-11-14 17:18:30,683 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {1066#true} {1066#true} #654#return; {1066#true} is VALID [2018-11-14 17:18:30,684 INFO L256 TraceCheckUtils]: 4: Hoare triple {1066#true} call #t~ret138 := main(); {1066#true} is VALID [2018-11-14 17:18:30,684 INFO L273 TraceCheckUtils]: 5: Hoare triple {1066#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {1066#true} is VALID [2018-11-14 17:18:30,685 INFO L256 TraceCheckUtils]: 6: Hoare triple {1066#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {1066#true} is VALID [2018-11-14 17:18:30,687 INFO L273 TraceCheckUtils]: 7: Hoare triple {1066#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,688 INFO L273 TraceCheckUtils]: 8: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,689 INFO L273 TraceCheckUtils]: 9: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,694 INFO L273 TraceCheckUtils]: 10: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,694 INFO L273 TraceCheckUtils]: 11: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,695 INFO L273 TraceCheckUtils]: 12: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,697 INFO L273 TraceCheckUtils]: 13: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume true; {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,698 INFO L273 TraceCheckUtils]: 14: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !false; {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,699 INFO L273 TraceCheckUtils]: 15: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,700 INFO L273 TraceCheckUtils]: 16: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,701 INFO L273 TraceCheckUtils]: 17: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,702 INFO L273 TraceCheckUtils]: 18: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,703 INFO L273 TraceCheckUtils]: 19: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:30,704 INFO L273 TraceCheckUtils]: 20: Hoare triple {1068#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {1069#(= |ssl3_accept_#t~mem29| 8464)} is VALID [2018-11-14 17:18:30,706 INFO L273 TraceCheckUtils]: 21: Hoare triple {1069#(= |ssl3_accept_#t~mem29| 8464)} assume #t~mem29 == 8480;havoc #t~mem29; {1067#false} is VALID [2018-11-14 17:18:30,706 INFO L273 TraceCheckUtils]: 22: Hoare triple {1067#false} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet67 && #t~nondet67 <= 2147483647;~ret~0 := #t~nondet67;havoc #t~nondet67; {1067#false} is VALID [2018-11-14 17:18:30,707 INFO L273 TraceCheckUtils]: 23: Hoare triple {1067#false} assume !(~ret~0 <= 0);call #t~mem68.base, #t~mem68.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call write~int(8482, #t~mem68.base, #t~mem68.offset + 604 + 240, 4);havoc #t~mem68.base, #t~mem68.offset;call write~int(8448, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {1067#false} is VALID [2018-11-14 17:18:30,708 INFO L273 TraceCheckUtils]: 24: Hoare triple {1067#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {1067#false} is VALID [2018-11-14 17:18:30,708 INFO L273 TraceCheckUtils]: 25: Hoare triple {1067#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {1067#false} is VALID [2018-11-14 17:18:30,708 INFO L273 TraceCheckUtils]: 26: Hoare triple {1067#false} ~skip~0 := 0; {1067#false} is VALID [2018-11-14 17:18:30,709 INFO L273 TraceCheckUtils]: 27: Hoare triple {1067#false} assume true; {1067#false} is VALID [2018-11-14 17:18:30,709 INFO L273 TraceCheckUtils]: 28: Hoare triple {1067#false} assume !false; {1067#false} is VALID [2018-11-14 17:18:30,709 INFO L273 TraceCheckUtils]: 29: Hoare triple {1067#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,710 INFO L273 TraceCheckUtils]: 30: Hoare triple {1067#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,710 INFO L273 TraceCheckUtils]: 31: Hoare triple {1067#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,710 INFO L273 TraceCheckUtils]: 32: Hoare triple {1067#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,711 INFO L273 TraceCheckUtils]: 33: Hoare triple {1067#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,711 INFO L273 TraceCheckUtils]: 34: Hoare triple {1067#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,711 INFO L273 TraceCheckUtils]: 35: Hoare triple {1067#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,711 INFO L273 TraceCheckUtils]: 36: Hoare triple {1067#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,712 INFO L273 TraceCheckUtils]: 37: Hoare triple {1067#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,712 INFO L273 TraceCheckUtils]: 38: Hoare triple {1067#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,712 INFO L273 TraceCheckUtils]: 39: Hoare triple {1067#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,713 INFO L273 TraceCheckUtils]: 40: Hoare triple {1067#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,713 INFO L273 TraceCheckUtils]: 41: Hoare triple {1067#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,713 INFO L273 TraceCheckUtils]: 42: Hoare triple {1067#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,713 INFO L273 TraceCheckUtils]: 43: Hoare triple {1067#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,714 INFO L273 TraceCheckUtils]: 44: Hoare triple {1067#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,714 INFO L273 TraceCheckUtils]: 45: Hoare triple {1067#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,714 INFO L273 TraceCheckUtils]: 46: Hoare triple {1067#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,715 INFO L273 TraceCheckUtils]: 47: Hoare triple {1067#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,715 INFO L273 TraceCheckUtils]: 48: Hoare triple {1067#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,715 INFO L273 TraceCheckUtils]: 49: Hoare triple {1067#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,715 INFO L273 TraceCheckUtils]: 50: Hoare triple {1067#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,716 INFO L273 TraceCheckUtils]: 51: Hoare triple {1067#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,716 INFO L273 TraceCheckUtils]: 52: Hoare triple {1067#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,716 INFO L273 TraceCheckUtils]: 53: Hoare triple {1067#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,716 INFO L273 TraceCheckUtils]: 54: Hoare triple {1067#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,717 INFO L273 TraceCheckUtils]: 55: Hoare triple {1067#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,717 INFO L273 TraceCheckUtils]: 56: Hoare triple {1067#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,717 INFO L273 TraceCheckUtils]: 57: Hoare triple {1067#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,718 INFO L273 TraceCheckUtils]: 58: Hoare triple {1067#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,718 INFO L273 TraceCheckUtils]: 59: Hoare triple {1067#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,718 INFO L273 TraceCheckUtils]: 60: Hoare triple {1067#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,718 INFO L273 TraceCheckUtils]: 61: Hoare triple {1067#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {1067#false} is VALID [2018-11-14 17:18:30,719 INFO L273 TraceCheckUtils]: 62: Hoare triple {1067#false} assume #t~mem56 == 8672;havoc #t~mem56; {1067#false} is VALID [2018-11-14 17:18:30,719 INFO L273 TraceCheckUtils]: 63: Hoare triple {1067#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {1067#false} is VALID [2018-11-14 17:18:30,719 INFO L273 TraceCheckUtils]: 64: Hoare triple {1067#false} assume ~blastFlag~0 == 4; {1067#false} is VALID [2018-11-14 17:18:30,720 INFO L273 TraceCheckUtils]: 65: Hoare triple {1067#false} assume !false; {1067#false} is VALID [2018-11-14 17:18:30,731 INFO L134 CoverageAnalysis]: Checked inductivity of 9 backedges. 9 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:30,731 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:30,731 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:30,733 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 66 [2018-11-14 17:18:30,734 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:30,734 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:30,867 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 66 edges. 66 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:30,868 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:30,868 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:30,868 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:30,869 INFO L87 Difference]: Start difference. First operand 149 states and 224 transitions. Second operand 4 states. [2018-11-14 17:18:32,312 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:32,313 INFO L93 Difference]: Finished difference Result 289 states and 432 transitions. [2018-11-14 17:18:32,313 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:32,313 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 66 [2018-11-14 17:18:32,314 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:32,314 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:32,319 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 432 transitions. [2018-11-14 17:18:32,319 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:32,325 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 432 transitions. [2018-11-14 17:18:32,325 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 432 transitions. [2018-11-14 17:18:32,904 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 432 edges. 432 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:32,915 INFO L225 Difference]: With dead ends: 289 [2018-11-14 17:18:32,915 INFO L226 Difference]: Without dead ends: 166 [2018-11-14 17:18:32,917 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 2 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:32,921 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 166 states. [2018-11-14 17:18:32,956 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 166 to 149. [2018-11-14 17:18:32,956 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:32,956 INFO L82 GeneralOperation]: Start isEquivalent. First operand 166 states. Second operand 149 states. [2018-11-14 17:18:32,958 INFO L74 IsIncluded]: Start isIncluded. First operand 166 states. Second operand 149 states. [2018-11-14 17:18:32,958 INFO L87 Difference]: Start difference. First operand 166 states. Second operand 149 states. [2018-11-14 17:18:32,965 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:32,965 INFO L93 Difference]: Finished difference Result 166 states and 244 transitions. [2018-11-14 17:18:32,965 INFO L276 IsEmpty]: Start isEmpty. Operand 166 states and 244 transitions. [2018-11-14 17:18:32,968 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:32,968 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:32,969 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 166 states. [2018-11-14 17:18:32,972 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 166 states. [2018-11-14 17:18:32,982 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:32,982 INFO L93 Difference]: Finished difference Result 166 states and 244 transitions. [2018-11-14 17:18:32,983 INFO L276 IsEmpty]: Start isEmpty. Operand 166 states and 244 transitions. [2018-11-14 17:18:32,983 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:32,984 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:32,984 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:32,984 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:32,984 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:32,992 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 223 transitions. [2018-11-14 17:18:32,992 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 223 transitions. Word has length 66 [2018-11-14 17:18:32,993 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:32,993 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 223 transitions. [2018-11-14 17:18:32,993 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:32,993 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 223 transitions. [2018-11-14 17:18:32,995 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 68 [2018-11-14 17:18:32,995 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:32,995 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:32,995 INFO L423 AbstractCegarLoop]: === Iteration 3 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:32,996 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:32,996 INFO L82 PathProgramCache]: Analyzing trace with hash 2085655191, now seen corresponding path program 1 times [2018-11-14 17:18:32,996 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:32,996 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:33,002 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:33,003 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:33,003 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:33,052 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:33,252 INFO L256 TraceCheckUtils]: 0: Hoare triple {1932#true} call ULTIMATE.init(); {1932#true} is VALID [2018-11-14 17:18:33,253 INFO L273 TraceCheckUtils]: 1: Hoare triple {1932#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {1932#true} is VALID [2018-11-14 17:18:33,253 INFO L273 TraceCheckUtils]: 2: Hoare triple {1932#true} assume true; {1932#true} is VALID [2018-11-14 17:18:33,253 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {1932#true} {1932#true} #654#return; {1932#true} is VALID [2018-11-14 17:18:33,254 INFO L256 TraceCheckUtils]: 4: Hoare triple {1932#true} call #t~ret138 := main(); {1932#true} is VALID [2018-11-14 17:18:33,254 INFO L273 TraceCheckUtils]: 5: Hoare triple {1932#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {1932#true} is VALID [2018-11-14 17:18:33,254 INFO L256 TraceCheckUtils]: 6: Hoare triple {1932#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {1932#true} is VALID [2018-11-14 17:18:33,268 INFO L273 TraceCheckUtils]: 7: Hoare triple {1932#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:33,270 INFO L273 TraceCheckUtils]: 8: Hoare triple {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:33,272 INFO L273 TraceCheckUtils]: 9: Hoare triple {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:33,275 INFO L273 TraceCheckUtils]: 10: Hoare triple {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:33,276 INFO L273 TraceCheckUtils]: 11: Hoare triple {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:33,281 INFO L273 TraceCheckUtils]: 12: Hoare triple {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:33,281 INFO L273 TraceCheckUtils]: 13: Hoare triple {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume true; {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:33,282 INFO L273 TraceCheckUtils]: 14: Hoare triple {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !false; {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:33,282 INFO L273 TraceCheckUtils]: 15: Hoare triple {1934#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {1935#(= |ssl3_accept_#t~mem24| 8464)} is VALID [2018-11-14 17:18:33,283 INFO L273 TraceCheckUtils]: 16: Hoare triple {1935#(= |ssl3_accept_#t~mem24| 8464)} assume #t~mem24 == 12292;havoc #t~mem24; {1933#false} is VALID [2018-11-14 17:18:33,283 INFO L273 TraceCheckUtils]: 17: Hoare triple {1933#false} call write~int(1, ~s.base, ~s.offset + 40, 4); {1933#false} is VALID [2018-11-14 17:18:33,283 INFO L273 TraceCheckUtils]: 18: Hoare triple {1933#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {1933#false} is VALID [2018-11-14 17:18:33,283 INFO L273 TraceCheckUtils]: 19: Hoare triple {1933#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {1933#false} is VALID [2018-11-14 17:18:33,283 INFO L273 TraceCheckUtils]: 20: Hoare triple {1933#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {1933#false} is VALID [2018-11-14 17:18:33,284 INFO L273 TraceCheckUtils]: 21: Hoare triple {1933#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {1933#false} is VALID [2018-11-14 17:18:33,284 INFO L273 TraceCheckUtils]: 22: Hoare triple {1933#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {1933#false} is VALID [2018-11-14 17:18:33,284 INFO L273 TraceCheckUtils]: 23: Hoare triple {1933#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,284 INFO L273 TraceCheckUtils]: 24: Hoare triple {1933#false} assume !(#t~mem62 != 12292);havoc #t~mem62;call #t~mem65.base, #t~mem65.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem66 := read~int(#t~mem65.base, #t~mem65.offset + 60 + 16, 4);call write~int(#t~mem66 + 1, #t~mem65.base, #t~mem65.offset + 60 + 16, 4);havoc #t~mem65.base, #t~mem65.offset;havoc #t~mem66;call write~int(8480, ~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,285 INFO L273 TraceCheckUtils]: 25: Hoare triple {1933#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {1933#false} is VALID [2018-11-14 17:18:33,285 INFO L273 TraceCheckUtils]: 26: Hoare triple {1933#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {1933#false} is VALID [2018-11-14 17:18:33,286 INFO L273 TraceCheckUtils]: 27: Hoare triple {1933#false} ~skip~0 := 0; {1933#false} is VALID [2018-11-14 17:18:33,286 INFO L273 TraceCheckUtils]: 28: Hoare triple {1933#false} assume true; {1933#false} is VALID [2018-11-14 17:18:33,287 INFO L273 TraceCheckUtils]: 29: Hoare triple {1933#false} assume !false; {1933#false} is VALID [2018-11-14 17:18:33,287 INFO L273 TraceCheckUtils]: 30: Hoare triple {1933#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,287 INFO L273 TraceCheckUtils]: 31: Hoare triple {1933#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,287 INFO L273 TraceCheckUtils]: 32: Hoare triple {1933#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,287 INFO L273 TraceCheckUtils]: 33: Hoare triple {1933#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,288 INFO L273 TraceCheckUtils]: 34: Hoare triple {1933#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,288 INFO L273 TraceCheckUtils]: 35: Hoare triple {1933#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,288 INFO L273 TraceCheckUtils]: 36: Hoare triple {1933#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,288 INFO L273 TraceCheckUtils]: 37: Hoare triple {1933#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,289 INFO L273 TraceCheckUtils]: 38: Hoare triple {1933#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,289 INFO L273 TraceCheckUtils]: 39: Hoare triple {1933#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,289 INFO L273 TraceCheckUtils]: 40: Hoare triple {1933#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,289 INFO L273 TraceCheckUtils]: 41: Hoare triple {1933#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,290 INFO L273 TraceCheckUtils]: 42: Hoare triple {1933#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,290 INFO L273 TraceCheckUtils]: 43: Hoare triple {1933#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,290 INFO L273 TraceCheckUtils]: 44: Hoare triple {1933#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,290 INFO L273 TraceCheckUtils]: 45: Hoare triple {1933#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,290 INFO L273 TraceCheckUtils]: 46: Hoare triple {1933#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,290 INFO L273 TraceCheckUtils]: 47: Hoare triple {1933#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,291 INFO L273 TraceCheckUtils]: 48: Hoare triple {1933#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,291 INFO L273 TraceCheckUtils]: 49: Hoare triple {1933#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,291 INFO L273 TraceCheckUtils]: 50: Hoare triple {1933#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,291 INFO L273 TraceCheckUtils]: 51: Hoare triple {1933#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,291 INFO L273 TraceCheckUtils]: 52: Hoare triple {1933#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,291 INFO L273 TraceCheckUtils]: 53: Hoare triple {1933#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,292 INFO L273 TraceCheckUtils]: 54: Hoare triple {1933#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,292 INFO L273 TraceCheckUtils]: 55: Hoare triple {1933#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,292 INFO L273 TraceCheckUtils]: 56: Hoare triple {1933#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,292 INFO L273 TraceCheckUtils]: 57: Hoare triple {1933#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,292 INFO L273 TraceCheckUtils]: 58: Hoare triple {1933#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,292 INFO L273 TraceCheckUtils]: 59: Hoare triple {1933#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,293 INFO L273 TraceCheckUtils]: 60: Hoare triple {1933#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,293 INFO L273 TraceCheckUtils]: 61: Hoare triple {1933#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,293 INFO L273 TraceCheckUtils]: 62: Hoare triple {1933#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {1933#false} is VALID [2018-11-14 17:18:33,293 INFO L273 TraceCheckUtils]: 63: Hoare triple {1933#false} assume #t~mem56 == 8672;havoc #t~mem56; {1933#false} is VALID [2018-11-14 17:18:33,294 INFO L273 TraceCheckUtils]: 64: Hoare triple {1933#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {1933#false} is VALID [2018-11-14 17:18:33,294 INFO L273 TraceCheckUtils]: 65: Hoare triple {1933#false} assume ~blastFlag~0 == 4; {1933#false} is VALID [2018-11-14 17:18:33,294 INFO L273 TraceCheckUtils]: 66: Hoare triple {1933#false} assume !false; {1933#false} is VALID [2018-11-14 17:18:33,298 INFO L134 CoverageAnalysis]: Checked inductivity of 4 backedges. 4 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:33,298 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:33,298 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:33,298 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 67 [2018-11-14 17:18:33,299 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:33,299 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:33,376 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 67 edges. 67 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:33,376 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:33,376 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:33,377 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:33,377 INFO L87 Difference]: Start difference. First operand 149 states and 223 transitions. Second operand 4 states. [2018-11-14 17:18:34,244 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:34,244 INFO L93 Difference]: Finished difference Result 288 states and 430 transitions. [2018-11-14 17:18:34,245 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:34,245 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 67 [2018-11-14 17:18:34,245 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:34,245 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:34,250 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 430 transitions. [2018-11-14 17:18:34,250 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:34,255 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 430 transitions. [2018-11-14 17:18:34,256 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 430 transitions. [2018-11-14 17:18:34,819 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 430 edges. 430 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:34,824 INFO L225 Difference]: With dead ends: 288 [2018-11-14 17:18:34,825 INFO L226 Difference]: Without dead ends: 165 [2018-11-14 17:18:34,826 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 2 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:34,826 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 165 states. [2018-11-14 17:18:34,880 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 165 to 149. [2018-11-14 17:18:34,881 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:34,881 INFO L82 GeneralOperation]: Start isEquivalent. First operand 165 states. Second operand 149 states. [2018-11-14 17:18:34,881 INFO L74 IsIncluded]: Start isIncluded. First operand 165 states. Second operand 149 states. [2018-11-14 17:18:34,881 INFO L87 Difference]: Start difference. First operand 165 states. Second operand 149 states. [2018-11-14 17:18:34,887 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:34,887 INFO L93 Difference]: Finished difference Result 165 states and 242 transitions. [2018-11-14 17:18:34,887 INFO L276 IsEmpty]: Start isEmpty. Operand 165 states and 242 transitions. [2018-11-14 17:18:34,888 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:34,888 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:34,888 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 165 states. [2018-11-14 17:18:34,888 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 165 states. [2018-11-14 17:18:34,894 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:34,894 INFO L93 Difference]: Finished difference Result 165 states and 242 transitions. [2018-11-14 17:18:34,895 INFO L276 IsEmpty]: Start isEmpty. Operand 165 states and 242 transitions. [2018-11-14 17:18:34,895 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:34,895 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:34,896 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:34,896 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:34,896 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:34,900 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 222 transitions. [2018-11-14 17:18:34,901 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 222 transitions. Word has length 67 [2018-11-14 17:18:34,901 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:34,901 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 222 transitions. [2018-11-14 17:18:34,901 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:34,901 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 222 transitions. [2018-11-14 17:18:34,902 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 68 [2018-11-14 17:18:34,902 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:34,903 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:34,903 INFO L423 AbstractCegarLoop]: === Iteration 4 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:34,903 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:34,903 INFO L82 PathProgramCache]: Analyzing trace with hash -2000781949, now seen corresponding path program 1 times [2018-11-14 17:18:34,904 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:34,904 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:34,905 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:34,905 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:34,905 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:34,925 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:35,029 INFO L256 TraceCheckUtils]: 0: Hoare triple {2794#true} call ULTIMATE.init(); {2794#true} is VALID [2018-11-14 17:18:35,029 INFO L273 TraceCheckUtils]: 1: Hoare triple {2794#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {2794#true} is VALID [2018-11-14 17:18:35,029 INFO L273 TraceCheckUtils]: 2: Hoare triple {2794#true} assume true; {2794#true} is VALID [2018-11-14 17:18:35,030 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {2794#true} {2794#true} #654#return; {2794#true} is VALID [2018-11-14 17:18:35,030 INFO L256 TraceCheckUtils]: 4: Hoare triple {2794#true} call #t~ret138 := main(); {2794#true} is VALID [2018-11-14 17:18:35,030 INFO L273 TraceCheckUtils]: 5: Hoare triple {2794#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {2794#true} is VALID [2018-11-14 17:18:35,030 INFO L256 TraceCheckUtils]: 6: Hoare triple {2794#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {2794#true} is VALID [2018-11-14 17:18:35,034 INFO L273 TraceCheckUtils]: 7: Hoare triple {2794#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,035 INFO L273 TraceCheckUtils]: 8: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,036 INFO L273 TraceCheckUtils]: 9: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,036 INFO L273 TraceCheckUtils]: 10: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,039 INFO L273 TraceCheckUtils]: 11: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,039 INFO L273 TraceCheckUtils]: 12: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,041 INFO L273 TraceCheckUtils]: 13: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume true; {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,044 INFO L273 TraceCheckUtils]: 14: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !false; {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,046 INFO L273 TraceCheckUtils]: 15: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:35,047 INFO L273 TraceCheckUtils]: 16: Hoare triple {2796#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {2797#(= |ssl3_accept_#t~mem25| 8464)} is VALID [2018-11-14 17:18:35,048 INFO L273 TraceCheckUtils]: 17: Hoare triple {2797#(= |ssl3_accept_#t~mem25| 8464)} assume #t~mem25 == 16384;havoc #t~mem25; {2795#false} is VALID [2018-11-14 17:18:35,048 INFO L273 TraceCheckUtils]: 18: Hoare triple {2795#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {2795#false} is VALID [2018-11-14 17:18:35,048 INFO L273 TraceCheckUtils]: 19: Hoare triple {2795#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {2795#false} is VALID [2018-11-14 17:18:35,048 INFO L273 TraceCheckUtils]: 20: Hoare triple {2795#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {2795#false} is VALID [2018-11-14 17:18:35,049 INFO L273 TraceCheckUtils]: 21: Hoare triple {2795#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {2795#false} is VALID [2018-11-14 17:18:35,049 INFO L273 TraceCheckUtils]: 22: Hoare triple {2795#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {2795#false} is VALID [2018-11-14 17:18:35,049 INFO L273 TraceCheckUtils]: 23: Hoare triple {2795#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,049 INFO L273 TraceCheckUtils]: 24: Hoare triple {2795#false} assume !(#t~mem62 != 12292);havoc #t~mem62;call #t~mem65.base, #t~mem65.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem66 := read~int(#t~mem65.base, #t~mem65.offset + 60 + 16, 4);call write~int(#t~mem66 + 1, #t~mem65.base, #t~mem65.offset + 60 + 16, 4);havoc #t~mem65.base, #t~mem65.offset;havoc #t~mem66;call write~int(8480, ~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,050 INFO L273 TraceCheckUtils]: 25: Hoare triple {2795#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {2795#false} is VALID [2018-11-14 17:18:35,050 INFO L273 TraceCheckUtils]: 26: Hoare triple {2795#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {2795#false} is VALID [2018-11-14 17:18:35,050 INFO L273 TraceCheckUtils]: 27: Hoare triple {2795#false} ~skip~0 := 0; {2795#false} is VALID [2018-11-14 17:18:35,050 INFO L273 TraceCheckUtils]: 28: Hoare triple {2795#false} assume true; {2795#false} is VALID [2018-11-14 17:18:35,051 INFO L273 TraceCheckUtils]: 29: Hoare triple {2795#false} assume !false; {2795#false} is VALID [2018-11-14 17:18:35,051 INFO L273 TraceCheckUtils]: 30: Hoare triple {2795#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,051 INFO L273 TraceCheckUtils]: 31: Hoare triple {2795#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,051 INFO L273 TraceCheckUtils]: 32: Hoare triple {2795#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,052 INFO L273 TraceCheckUtils]: 33: Hoare triple {2795#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,052 INFO L273 TraceCheckUtils]: 34: Hoare triple {2795#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,052 INFO L273 TraceCheckUtils]: 35: Hoare triple {2795#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,052 INFO L273 TraceCheckUtils]: 36: Hoare triple {2795#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,052 INFO L273 TraceCheckUtils]: 37: Hoare triple {2795#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,053 INFO L273 TraceCheckUtils]: 38: Hoare triple {2795#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,053 INFO L273 TraceCheckUtils]: 39: Hoare triple {2795#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,053 INFO L273 TraceCheckUtils]: 40: Hoare triple {2795#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,054 INFO L273 TraceCheckUtils]: 41: Hoare triple {2795#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,054 INFO L273 TraceCheckUtils]: 42: Hoare triple {2795#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,054 INFO L273 TraceCheckUtils]: 43: Hoare triple {2795#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,054 INFO L273 TraceCheckUtils]: 44: Hoare triple {2795#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,054 INFO L273 TraceCheckUtils]: 45: Hoare triple {2795#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,055 INFO L273 TraceCheckUtils]: 46: Hoare triple {2795#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,055 INFO L273 TraceCheckUtils]: 47: Hoare triple {2795#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,055 INFO L273 TraceCheckUtils]: 48: Hoare triple {2795#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,055 INFO L273 TraceCheckUtils]: 49: Hoare triple {2795#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,056 INFO L273 TraceCheckUtils]: 50: Hoare triple {2795#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,056 INFO L273 TraceCheckUtils]: 51: Hoare triple {2795#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,056 INFO L273 TraceCheckUtils]: 52: Hoare triple {2795#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,056 INFO L273 TraceCheckUtils]: 53: Hoare triple {2795#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,057 INFO L273 TraceCheckUtils]: 54: Hoare triple {2795#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,057 INFO L273 TraceCheckUtils]: 55: Hoare triple {2795#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,057 INFO L273 TraceCheckUtils]: 56: Hoare triple {2795#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,057 INFO L273 TraceCheckUtils]: 57: Hoare triple {2795#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,058 INFO L273 TraceCheckUtils]: 58: Hoare triple {2795#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,058 INFO L273 TraceCheckUtils]: 59: Hoare triple {2795#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,058 INFO L273 TraceCheckUtils]: 60: Hoare triple {2795#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,058 INFO L273 TraceCheckUtils]: 61: Hoare triple {2795#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,058 INFO L273 TraceCheckUtils]: 62: Hoare triple {2795#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {2795#false} is VALID [2018-11-14 17:18:35,059 INFO L273 TraceCheckUtils]: 63: Hoare triple {2795#false} assume #t~mem56 == 8672;havoc #t~mem56; {2795#false} is VALID [2018-11-14 17:18:35,059 INFO L273 TraceCheckUtils]: 64: Hoare triple {2795#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {2795#false} is VALID [2018-11-14 17:18:35,059 INFO L273 TraceCheckUtils]: 65: Hoare triple {2795#false} assume ~blastFlag~0 == 4; {2795#false} is VALID [2018-11-14 17:18:35,059 INFO L273 TraceCheckUtils]: 66: Hoare triple {2795#false} assume !false; {2795#false} is VALID [2018-11-14 17:18:35,063 INFO L134 CoverageAnalysis]: Checked inductivity of 5 backedges. 5 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:35,064 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:35,064 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:35,064 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 67 [2018-11-14 17:18:35,064 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:35,064 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:35,159 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 67 edges. 67 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:35,159 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:35,159 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:35,160 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:35,160 INFO L87 Difference]: Start difference. First operand 149 states and 222 transitions. Second operand 4 states. [2018-11-14 17:18:36,400 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:36,401 INFO L93 Difference]: Finished difference Result 288 states and 429 transitions. [2018-11-14 17:18:36,401 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:36,401 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 67 [2018-11-14 17:18:36,402 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:36,402 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:36,407 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 429 transitions. [2018-11-14 17:18:36,407 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:36,412 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 429 transitions. [2018-11-14 17:18:36,412 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 429 transitions. [2018-11-14 17:18:37,104 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 429 edges. 429 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:37,108 INFO L225 Difference]: With dead ends: 288 [2018-11-14 17:18:37,108 INFO L226 Difference]: Without dead ends: 165 [2018-11-14 17:18:37,109 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 2 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:37,110 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 165 states. [2018-11-14 17:18:37,401 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 165 to 149. [2018-11-14 17:18:37,402 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:37,402 INFO L82 GeneralOperation]: Start isEquivalent. First operand 165 states. Second operand 149 states. [2018-11-14 17:18:37,402 INFO L74 IsIncluded]: Start isIncluded. First operand 165 states. Second operand 149 states. [2018-11-14 17:18:37,402 INFO L87 Difference]: Start difference. First operand 165 states. Second operand 149 states. [2018-11-14 17:18:37,412 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:37,412 INFO L93 Difference]: Finished difference Result 165 states and 241 transitions. [2018-11-14 17:18:37,412 INFO L276 IsEmpty]: Start isEmpty. Operand 165 states and 241 transitions. [2018-11-14 17:18:37,413 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:37,413 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:37,413 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 165 states. [2018-11-14 17:18:37,413 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 165 states. [2018-11-14 17:18:37,419 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:37,420 INFO L93 Difference]: Finished difference Result 165 states and 241 transitions. [2018-11-14 17:18:37,420 INFO L276 IsEmpty]: Start isEmpty. Operand 165 states and 241 transitions. [2018-11-14 17:18:37,420 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:37,420 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:37,421 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:37,421 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:37,421 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:37,427 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 221 transitions. [2018-11-14 17:18:37,427 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 221 transitions. Word has length 67 [2018-11-14 17:18:37,427 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:37,427 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 221 transitions. [2018-11-14 17:18:37,428 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:37,428 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 221 transitions. [2018-11-14 17:18:37,429 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 68 [2018-11-14 17:18:37,429 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:37,429 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:37,429 INFO L423 AbstractCegarLoop]: === Iteration 5 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:37,430 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:37,430 INFO L82 PathProgramCache]: Analyzing trace with hash -2109108564, now seen corresponding path program 1 times [2018-11-14 17:18:37,430 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:37,430 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:37,431 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:37,432 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:37,432 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:37,450 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:37,569 INFO L256 TraceCheckUtils]: 0: Hoare triple {3656#true} call ULTIMATE.init(); {3656#true} is VALID [2018-11-14 17:18:37,569 INFO L273 TraceCheckUtils]: 1: Hoare triple {3656#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {3656#true} is VALID [2018-11-14 17:18:37,570 INFO L273 TraceCheckUtils]: 2: Hoare triple {3656#true} assume true; {3656#true} is VALID [2018-11-14 17:18:37,570 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {3656#true} {3656#true} #654#return; {3656#true} is VALID [2018-11-14 17:18:37,571 INFO L256 TraceCheckUtils]: 4: Hoare triple {3656#true} call #t~ret138 := main(); {3656#true} is VALID [2018-11-14 17:18:37,571 INFO L273 TraceCheckUtils]: 5: Hoare triple {3656#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {3656#true} is VALID [2018-11-14 17:18:37,571 INFO L256 TraceCheckUtils]: 6: Hoare triple {3656#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {3656#true} is VALID [2018-11-14 17:18:37,577 INFO L273 TraceCheckUtils]: 7: Hoare triple {3656#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,577 INFO L273 TraceCheckUtils]: 8: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,578 INFO L273 TraceCheckUtils]: 9: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,579 INFO L273 TraceCheckUtils]: 10: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,579 INFO L273 TraceCheckUtils]: 11: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,580 INFO L273 TraceCheckUtils]: 12: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,580 INFO L273 TraceCheckUtils]: 13: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume true; {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,580 INFO L273 TraceCheckUtils]: 14: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !false; {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,581 INFO L273 TraceCheckUtils]: 15: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,582 INFO L273 TraceCheckUtils]: 16: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,582 INFO L273 TraceCheckUtils]: 17: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,583 INFO L273 TraceCheckUtils]: 18: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,584 INFO L273 TraceCheckUtils]: 19: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,585 INFO L273 TraceCheckUtils]: 20: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:37,586 INFO L273 TraceCheckUtils]: 21: Hoare triple {3658#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {3659#(= |ssl3_accept_#t~mem30| 8464)} is VALID [2018-11-14 17:18:37,586 INFO L273 TraceCheckUtils]: 22: Hoare triple {3659#(= |ssl3_accept_#t~mem30| 8464)} assume #t~mem30 == 8481;havoc #t~mem30; {3657#false} is VALID [2018-11-14 17:18:37,587 INFO L273 TraceCheckUtils]: 23: Hoare triple {3657#false} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet67 && #t~nondet67 <= 2147483647;~ret~0 := #t~nondet67;havoc #t~nondet67; {3657#false} is VALID [2018-11-14 17:18:37,587 INFO L273 TraceCheckUtils]: 24: Hoare triple {3657#false} assume !(~ret~0 <= 0);call #t~mem68.base, #t~mem68.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call write~int(8482, #t~mem68.base, #t~mem68.offset + 604 + 240, 4);havoc #t~mem68.base, #t~mem68.offset;call write~int(8448, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {3657#false} is VALID [2018-11-14 17:18:37,587 INFO L273 TraceCheckUtils]: 25: Hoare triple {3657#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {3657#false} is VALID [2018-11-14 17:18:37,588 INFO L273 TraceCheckUtils]: 26: Hoare triple {3657#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {3657#false} is VALID [2018-11-14 17:18:37,588 INFO L273 TraceCheckUtils]: 27: Hoare triple {3657#false} ~skip~0 := 0; {3657#false} is VALID [2018-11-14 17:18:37,589 INFO L273 TraceCheckUtils]: 28: Hoare triple {3657#false} assume true; {3657#false} is VALID [2018-11-14 17:18:37,589 INFO L273 TraceCheckUtils]: 29: Hoare triple {3657#false} assume !false; {3657#false} is VALID [2018-11-14 17:18:37,589 INFO L273 TraceCheckUtils]: 30: Hoare triple {3657#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,590 INFO L273 TraceCheckUtils]: 31: Hoare triple {3657#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,590 INFO L273 TraceCheckUtils]: 32: Hoare triple {3657#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,590 INFO L273 TraceCheckUtils]: 33: Hoare triple {3657#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,591 INFO L273 TraceCheckUtils]: 34: Hoare triple {3657#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,591 INFO L273 TraceCheckUtils]: 35: Hoare triple {3657#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,591 INFO L273 TraceCheckUtils]: 36: Hoare triple {3657#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,592 INFO L273 TraceCheckUtils]: 37: Hoare triple {3657#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,592 INFO L273 TraceCheckUtils]: 38: Hoare triple {3657#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,592 INFO L273 TraceCheckUtils]: 39: Hoare triple {3657#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,592 INFO L273 TraceCheckUtils]: 40: Hoare triple {3657#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,592 INFO L273 TraceCheckUtils]: 41: Hoare triple {3657#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,593 INFO L273 TraceCheckUtils]: 42: Hoare triple {3657#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,593 INFO L273 TraceCheckUtils]: 43: Hoare triple {3657#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,593 INFO L273 TraceCheckUtils]: 44: Hoare triple {3657#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,593 INFO L273 TraceCheckUtils]: 45: Hoare triple {3657#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,593 INFO L273 TraceCheckUtils]: 46: Hoare triple {3657#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,593 INFO L273 TraceCheckUtils]: 47: Hoare triple {3657#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,594 INFO L273 TraceCheckUtils]: 48: Hoare triple {3657#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,594 INFO L273 TraceCheckUtils]: 49: Hoare triple {3657#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,594 INFO L273 TraceCheckUtils]: 50: Hoare triple {3657#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,594 INFO L273 TraceCheckUtils]: 51: Hoare triple {3657#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,594 INFO L273 TraceCheckUtils]: 52: Hoare triple {3657#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,595 INFO L273 TraceCheckUtils]: 53: Hoare triple {3657#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,595 INFO L273 TraceCheckUtils]: 54: Hoare triple {3657#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,595 INFO L273 TraceCheckUtils]: 55: Hoare triple {3657#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,595 INFO L273 TraceCheckUtils]: 56: Hoare triple {3657#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,595 INFO L273 TraceCheckUtils]: 57: Hoare triple {3657#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,596 INFO L273 TraceCheckUtils]: 58: Hoare triple {3657#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,596 INFO L273 TraceCheckUtils]: 59: Hoare triple {3657#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,596 INFO L273 TraceCheckUtils]: 60: Hoare triple {3657#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,596 INFO L273 TraceCheckUtils]: 61: Hoare triple {3657#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,597 INFO L273 TraceCheckUtils]: 62: Hoare triple {3657#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {3657#false} is VALID [2018-11-14 17:18:37,597 INFO L273 TraceCheckUtils]: 63: Hoare triple {3657#false} assume #t~mem56 == 8672;havoc #t~mem56; {3657#false} is VALID [2018-11-14 17:18:37,597 INFO L273 TraceCheckUtils]: 64: Hoare triple {3657#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {3657#false} is VALID [2018-11-14 17:18:37,597 INFO L273 TraceCheckUtils]: 65: Hoare triple {3657#false} assume ~blastFlag~0 == 4; {3657#false} is VALID [2018-11-14 17:18:37,597 INFO L273 TraceCheckUtils]: 66: Hoare triple {3657#false} assume !false; {3657#false} is VALID [2018-11-14 17:18:37,605 INFO L134 CoverageAnalysis]: Checked inductivity of 10 backedges. 10 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:37,605 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:37,606 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:37,606 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 67 [2018-11-14 17:18:37,606 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:37,607 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:37,689 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 67 edges. 67 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:37,689 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:37,689 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:37,689 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:37,690 INFO L87 Difference]: Start difference. First operand 149 states and 221 transitions. Second operand 4 states. [2018-11-14 17:18:38,647 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:38,648 INFO L93 Difference]: Finished difference Result 286 states and 426 transitions. [2018-11-14 17:18:38,648 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:38,648 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 67 [2018-11-14 17:18:38,648 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:38,648 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:38,651 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 426 transitions. [2018-11-14 17:18:38,652 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:38,655 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 426 transitions. [2018-11-14 17:18:38,655 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 426 transitions. [2018-11-14 17:18:39,101 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 426 edges. 426 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:39,104 INFO L225 Difference]: With dead ends: 286 [2018-11-14 17:18:39,104 INFO L226 Difference]: Without dead ends: 163 [2018-11-14 17:18:39,105 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 2 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:39,105 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 163 states. [2018-11-14 17:18:39,140 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 163 to 149. [2018-11-14 17:18:39,140 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:39,140 INFO L82 GeneralOperation]: Start isEquivalent. First operand 163 states. Second operand 149 states. [2018-11-14 17:18:39,140 INFO L74 IsIncluded]: Start isIncluded. First operand 163 states. Second operand 149 states. [2018-11-14 17:18:39,140 INFO L87 Difference]: Start difference. First operand 163 states. Second operand 149 states. [2018-11-14 17:18:39,143 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:39,144 INFO L93 Difference]: Finished difference Result 163 states and 238 transitions. [2018-11-14 17:18:39,144 INFO L276 IsEmpty]: Start isEmpty. Operand 163 states and 238 transitions. [2018-11-14 17:18:39,144 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:39,144 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:39,144 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 163 states. [2018-11-14 17:18:39,144 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 163 states. [2018-11-14 17:18:39,148 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:39,148 INFO L93 Difference]: Finished difference Result 163 states and 238 transitions. [2018-11-14 17:18:39,148 INFO L276 IsEmpty]: Start isEmpty. Operand 163 states and 238 transitions. [2018-11-14 17:18:39,149 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:39,149 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:39,149 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:39,150 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:39,150 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:39,153 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 220 transitions. [2018-11-14 17:18:39,153 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 220 transitions. Word has length 67 [2018-11-14 17:18:39,154 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:39,154 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 220 transitions. [2018-11-14 17:18:39,154 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:39,154 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 220 transitions. [2018-11-14 17:18:39,155 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 68 [2018-11-14 17:18:39,155 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:39,155 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:39,155 INFO L423 AbstractCegarLoop]: === Iteration 6 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:39,156 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:39,156 INFO L82 PathProgramCache]: Analyzing trace with hash 526186699, now seen corresponding path program 1 times [2018-11-14 17:18:39,156 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:39,156 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:39,157 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:39,157 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:39,157 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:39,174 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:39,330 INFO L256 TraceCheckUtils]: 0: Hoare triple {4511#true} call ULTIMATE.init(); {4511#true} is VALID [2018-11-14 17:18:39,330 INFO L273 TraceCheckUtils]: 1: Hoare triple {4511#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {4511#true} is VALID [2018-11-14 17:18:39,331 INFO L273 TraceCheckUtils]: 2: Hoare triple {4511#true} assume true; {4511#true} is VALID [2018-11-14 17:18:39,331 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {4511#true} {4511#true} #654#return; {4511#true} is VALID [2018-11-14 17:18:39,331 INFO L256 TraceCheckUtils]: 4: Hoare triple {4511#true} call #t~ret138 := main(); {4511#true} is VALID [2018-11-14 17:18:39,331 INFO L273 TraceCheckUtils]: 5: Hoare triple {4511#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {4511#true} is VALID [2018-11-14 17:18:39,332 INFO L256 TraceCheckUtils]: 6: Hoare triple {4511#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {4511#true} is VALID [2018-11-14 17:18:39,334 INFO L273 TraceCheckUtils]: 7: Hoare triple {4511#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,335 INFO L273 TraceCheckUtils]: 8: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,336 INFO L273 TraceCheckUtils]: 9: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,336 INFO L273 TraceCheckUtils]: 10: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,337 INFO L273 TraceCheckUtils]: 11: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,337 INFO L273 TraceCheckUtils]: 12: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,337 INFO L273 TraceCheckUtils]: 13: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume true; {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,338 INFO L273 TraceCheckUtils]: 14: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !false; {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,338 INFO L273 TraceCheckUtils]: 15: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,339 INFO L273 TraceCheckUtils]: 16: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,341 INFO L273 TraceCheckUtils]: 17: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,342 INFO L273 TraceCheckUtils]: 18: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,343 INFO L273 TraceCheckUtils]: 19: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,343 INFO L273 TraceCheckUtils]: 20: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,344 INFO L273 TraceCheckUtils]: 21: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:39,345 INFO L273 TraceCheckUtils]: 22: Hoare triple {4513#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {4514#(= |ssl3_accept_#t~mem31| 8464)} is VALID [2018-11-14 17:18:39,345 INFO L273 TraceCheckUtils]: 23: Hoare triple {4514#(= |ssl3_accept_#t~mem31| 8464)} assume #t~mem31 == 8482;havoc #t~mem31; {4512#false} is VALID [2018-11-14 17:18:39,346 INFO L273 TraceCheckUtils]: 24: Hoare triple {4512#false} call write~int(3, ~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,346 INFO L273 TraceCheckUtils]: 25: Hoare triple {4512#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {4512#false} is VALID [2018-11-14 17:18:39,346 INFO L273 TraceCheckUtils]: 26: Hoare triple {4512#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {4512#false} is VALID [2018-11-14 17:18:39,347 INFO L273 TraceCheckUtils]: 27: Hoare triple {4512#false} ~skip~0 := 0; {4512#false} is VALID [2018-11-14 17:18:39,347 INFO L273 TraceCheckUtils]: 28: Hoare triple {4512#false} assume true; {4512#false} is VALID [2018-11-14 17:18:39,347 INFO L273 TraceCheckUtils]: 29: Hoare triple {4512#false} assume !false; {4512#false} is VALID [2018-11-14 17:18:39,347 INFO L273 TraceCheckUtils]: 30: Hoare triple {4512#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,347 INFO L273 TraceCheckUtils]: 31: Hoare triple {4512#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,347 INFO L273 TraceCheckUtils]: 32: Hoare triple {4512#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,348 INFO L273 TraceCheckUtils]: 33: Hoare triple {4512#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,348 INFO L273 TraceCheckUtils]: 34: Hoare triple {4512#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,348 INFO L273 TraceCheckUtils]: 35: Hoare triple {4512#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,348 INFO L273 TraceCheckUtils]: 36: Hoare triple {4512#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,348 INFO L273 TraceCheckUtils]: 37: Hoare triple {4512#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,348 INFO L273 TraceCheckUtils]: 38: Hoare triple {4512#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,349 INFO L273 TraceCheckUtils]: 39: Hoare triple {4512#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,349 INFO L273 TraceCheckUtils]: 40: Hoare triple {4512#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,349 INFO L273 TraceCheckUtils]: 41: Hoare triple {4512#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,349 INFO L273 TraceCheckUtils]: 42: Hoare triple {4512#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,349 INFO L273 TraceCheckUtils]: 43: Hoare triple {4512#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,349 INFO L273 TraceCheckUtils]: 44: Hoare triple {4512#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,349 INFO L273 TraceCheckUtils]: 45: Hoare triple {4512#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,350 INFO L273 TraceCheckUtils]: 46: Hoare triple {4512#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,350 INFO L273 TraceCheckUtils]: 47: Hoare triple {4512#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,350 INFO L273 TraceCheckUtils]: 48: Hoare triple {4512#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,350 INFO L273 TraceCheckUtils]: 49: Hoare triple {4512#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,351 INFO L273 TraceCheckUtils]: 50: Hoare triple {4512#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,351 INFO L273 TraceCheckUtils]: 51: Hoare triple {4512#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,351 INFO L273 TraceCheckUtils]: 52: Hoare triple {4512#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,351 INFO L273 TraceCheckUtils]: 53: Hoare triple {4512#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,351 INFO L273 TraceCheckUtils]: 54: Hoare triple {4512#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,352 INFO L273 TraceCheckUtils]: 55: Hoare triple {4512#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,352 INFO L273 TraceCheckUtils]: 56: Hoare triple {4512#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,352 INFO L273 TraceCheckUtils]: 57: Hoare triple {4512#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,352 INFO L273 TraceCheckUtils]: 58: Hoare triple {4512#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,352 INFO L273 TraceCheckUtils]: 59: Hoare triple {4512#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,353 INFO L273 TraceCheckUtils]: 60: Hoare triple {4512#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,353 INFO L273 TraceCheckUtils]: 61: Hoare triple {4512#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,353 INFO L273 TraceCheckUtils]: 62: Hoare triple {4512#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {4512#false} is VALID [2018-11-14 17:18:39,353 INFO L273 TraceCheckUtils]: 63: Hoare triple {4512#false} assume #t~mem56 == 8672;havoc #t~mem56; {4512#false} is VALID [2018-11-14 17:18:39,354 INFO L273 TraceCheckUtils]: 64: Hoare triple {4512#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {4512#false} is VALID [2018-11-14 17:18:39,354 INFO L273 TraceCheckUtils]: 65: Hoare triple {4512#false} assume ~blastFlag~0 == 4; {4512#false} is VALID [2018-11-14 17:18:39,354 INFO L273 TraceCheckUtils]: 66: Hoare triple {4512#false} assume !false; {4512#false} is VALID [2018-11-14 17:18:39,360 INFO L134 CoverageAnalysis]: Checked inductivity of 11 backedges. 11 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:39,360 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:39,360 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:39,361 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 67 [2018-11-14 17:18:39,361 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:39,361 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:39,431 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 67 edges. 67 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:39,431 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:39,431 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:39,432 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:39,432 INFO L87 Difference]: Start difference. First operand 149 states and 220 transitions. Second operand 4 states. [2018-11-14 17:18:40,395 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:40,396 INFO L93 Difference]: Finished difference Result 285 states and 424 transitions. [2018-11-14 17:18:40,396 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:40,396 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 67 [2018-11-14 17:18:40,396 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:40,397 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:40,400 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 424 transitions. [2018-11-14 17:18:40,401 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:40,404 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 424 transitions. [2018-11-14 17:18:40,405 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 424 transitions. [2018-11-14 17:18:41,141 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 424 edges. 424 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:41,145 INFO L225 Difference]: With dead ends: 285 [2018-11-14 17:18:41,145 INFO L226 Difference]: Without dead ends: 162 [2018-11-14 17:18:41,145 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:41,146 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 162 states. [2018-11-14 17:18:41,163 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 162 to 149. [2018-11-14 17:18:41,163 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:41,163 INFO L82 GeneralOperation]: Start isEquivalent. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:41,163 INFO L74 IsIncluded]: Start isIncluded. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:41,164 INFO L87 Difference]: Start difference. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:41,168 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:41,169 INFO L93 Difference]: Finished difference Result 162 states and 236 transitions. [2018-11-14 17:18:41,169 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 236 transitions. [2018-11-14 17:18:41,169 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:41,170 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:41,170 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 162 states. [2018-11-14 17:18:41,170 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 162 states. [2018-11-14 17:18:41,174 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:41,174 INFO L93 Difference]: Finished difference Result 162 states and 236 transitions. [2018-11-14 17:18:41,174 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 236 transitions. [2018-11-14 17:18:41,175 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:41,175 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:41,175 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:41,176 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:41,176 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:41,179 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 219 transitions. [2018-11-14 17:18:41,180 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 219 transitions. Word has length 67 [2018-11-14 17:18:41,180 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:41,180 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 219 transitions. [2018-11-14 17:18:41,180 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:41,180 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 219 transitions. [2018-11-14 17:18:41,181 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2018-11-14 17:18:41,181 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:41,182 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:41,182 INFO L423 AbstractCegarLoop]: === Iteration 7 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:41,182 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:41,182 INFO L82 PathProgramCache]: Analyzing trace with hash -538409076, now seen corresponding path program 1 times [2018-11-14 17:18:41,182 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:41,183 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:41,184 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:41,184 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:41,184 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:41,201 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:41,777 INFO L256 TraceCheckUtils]: 0: Hoare triple {5362#true} call ULTIMATE.init(); {5362#true} is VALID [2018-11-14 17:18:41,778 INFO L273 TraceCheckUtils]: 1: Hoare triple {5362#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {5362#true} is VALID [2018-11-14 17:18:41,778 INFO L273 TraceCheckUtils]: 2: Hoare triple {5362#true} assume true; {5362#true} is VALID [2018-11-14 17:18:41,778 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {5362#true} {5362#true} #654#return; {5362#true} is VALID [2018-11-14 17:18:41,778 INFO L256 TraceCheckUtils]: 4: Hoare triple {5362#true} call #t~ret138 := main(); {5362#true} is VALID [2018-11-14 17:18:41,778 INFO L273 TraceCheckUtils]: 5: Hoare triple {5362#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {5362#true} is VALID [2018-11-14 17:18:41,778 INFO L256 TraceCheckUtils]: 6: Hoare triple {5362#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {5362#true} is VALID [2018-11-14 17:18:41,780 INFO L273 TraceCheckUtils]: 7: Hoare triple {5362#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,780 INFO L273 TraceCheckUtils]: 8: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,781 INFO L273 TraceCheckUtils]: 9: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,782 INFO L273 TraceCheckUtils]: 10: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,783 INFO L273 TraceCheckUtils]: 11: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,783 INFO L273 TraceCheckUtils]: 12: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,783 INFO L273 TraceCheckUtils]: 13: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume true; {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,784 INFO L273 TraceCheckUtils]: 14: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !false; {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,801 INFO L273 TraceCheckUtils]: 15: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,801 INFO L273 TraceCheckUtils]: 16: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:41,802 INFO L273 TraceCheckUtils]: 17: Hoare triple {5364#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {5365#(= |ssl3_accept_#t~mem26| 8464)} is VALID [2018-11-14 17:18:41,802 INFO L273 TraceCheckUtils]: 18: Hoare triple {5365#(= |ssl3_accept_#t~mem26| 8464)} assume #t~mem26 == 8192;havoc #t~mem26; {5363#false} is VALID [2018-11-14 17:18:41,803 INFO L273 TraceCheckUtils]: 19: Hoare triple {5363#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {5363#false} is VALID [2018-11-14 17:18:41,803 INFO L273 TraceCheckUtils]: 20: Hoare triple {5363#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {5363#false} is VALID [2018-11-14 17:18:41,803 INFO L273 TraceCheckUtils]: 21: Hoare triple {5363#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {5363#false} is VALID [2018-11-14 17:18:41,803 INFO L273 TraceCheckUtils]: 22: Hoare triple {5363#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {5363#false} is VALID [2018-11-14 17:18:41,803 INFO L273 TraceCheckUtils]: 23: Hoare triple {5363#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {5363#false} is VALID [2018-11-14 17:18:41,803 INFO L273 TraceCheckUtils]: 24: Hoare triple {5363#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,803 INFO L273 TraceCheckUtils]: 25: Hoare triple {5363#false} assume !(#t~mem62 != 12292);havoc #t~mem62;call #t~mem65.base, #t~mem65.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem66 := read~int(#t~mem65.base, #t~mem65.offset + 60 + 16, 4);call write~int(#t~mem66 + 1, #t~mem65.base, #t~mem65.offset + 60 + 16, 4);havoc #t~mem65.base, #t~mem65.offset;havoc #t~mem66;call write~int(8480, ~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,804 INFO L273 TraceCheckUtils]: 26: Hoare triple {5363#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {5363#false} is VALID [2018-11-14 17:18:41,804 INFO L273 TraceCheckUtils]: 27: Hoare triple {5363#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {5363#false} is VALID [2018-11-14 17:18:41,804 INFO L273 TraceCheckUtils]: 28: Hoare triple {5363#false} ~skip~0 := 0; {5363#false} is VALID [2018-11-14 17:18:41,804 INFO L273 TraceCheckUtils]: 29: Hoare triple {5363#false} assume true; {5363#false} is VALID [2018-11-14 17:18:41,804 INFO L273 TraceCheckUtils]: 30: Hoare triple {5363#false} assume !false; {5363#false} is VALID [2018-11-14 17:18:41,804 INFO L273 TraceCheckUtils]: 31: Hoare triple {5363#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,804 INFO L273 TraceCheckUtils]: 32: Hoare triple {5363#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,805 INFO L273 TraceCheckUtils]: 33: Hoare triple {5363#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,805 INFO L273 TraceCheckUtils]: 34: Hoare triple {5363#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,805 INFO L273 TraceCheckUtils]: 35: Hoare triple {5363#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,805 INFO L273 TraceCheckUtils]: 36: Hoare triple {5363#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,805 INFO L273 TraceCheckUtils]: 37: Hoare triple {5363#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,805 INFO L273 TraceCheckUtils]: 38: Hoare triple {5363#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,805 INFO L273 TraceCheckUtils]: 39: Hoare triple {5363#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,806 INFO L273 TraceCheckUtils]: 40: Hoare triple {5363#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,806 INFO L273 TraceCheckUtils]: 41: Hoare triple {5363#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,806 INFO L273 TraceCheckUtils]: 42: Hoare triple {5363#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,806 INFO L273 TraceCheckUtils]: 43: Hoare triple {5363#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,806 INFO L273 TraceCheckUtils]: 44: Hoare triple {5363#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,806 INFO L273 TraceCheckUtils]: 45: Hoare triple {5363#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,806 INFO L273 TraceCheckUtils]: 46: Hoare triple {5363#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,807 INFO L273 TraceCheckUtils]: 47: Hoare triple {5363#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,807 INFO L273 TraceCheckUtils]: 48: Hoare triple {5363#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,807 INFO L273 TraceCheckUtils]: 49: Hoare triple {5363#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,807 INFO L273 TraceCheckUtils]: 50: Hoare triple {5363#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,807 INFO L273 TraceCheckUtils]: 51: Hoare triple {5363#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,808 INFO L273 TraceCheckUtils]: 52: Hoare triple {5363#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,808 INFO L273 TraceCheckUtils]: 53: Hoare triple {5363#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,808 INFO L273 TraceCheckUtils]: 54: Hoare triple {5363#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,808 INFO L273 TraceCheckUtils]: 55: Hoare triple {5363#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,808 INFO L273 TraceCheckUtils]: 56: Hoare triple {5363#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,809 INFO L273 TraceCheckUtils]: 57: Hoare triple {5363#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,809 INFO L273 TraceCheckUtils]: 58: Hoare triple {5363#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,809 INFO L273 TraceCheckUtils]: 59: Hoare triple {5363#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,809 INFO L273 TraceCheckUtils]: 60: Hoare triple {5363#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,809 INFO L273 TraceCheckUtils]: 61: Hoare triple {5363#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,809 INFO L273 TraceCheckUtils]: 62: Hoare triple {5363#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,810 INFO L273 TraceCheckUtils]: 63: Hoare triple {5363#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {5363#false} is VALID [2018-11-14 17:18:41,810 INFO L273 TraceCheckUtils]: 64: Hoare triple {5363#false} assume #t~mem56 == 8672;havoc #t~mem56; {5363#false} is VALID [2018-11-14 17:18:41,810 INFO L273 TraceCheckUtils]: 65: Hoare triple {5363#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {5363#false} is VALID [2018-11-14 17:18:41,810 INFO L273 TraceCheckUtils]: 66: Hoare triple {5363#false} assume ~blastFlag~0 == 4; {5363#false} is VALID [2018-11-14 17:18:41,810 INFO L273 TraceCheckUtils]: 67: Hoare triple {5363#false} assume !false; {5363#false} is VALID [2018-11-14 17:18:41,814 INFO L134 CoverageAnalysis]: Checked inductivity of 6 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:41,814 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:41,814 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:41,815 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 68 [2018-11-14 17:18:41,815 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:41,815 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:41,884 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 68 edges. 68 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:41,884 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:41,884 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:41,884 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:41,885 INFO L87 Difference]: Start difference. First operand 149 states and 219 transitions. Second operand 4 states. [2018-11-14 17:18:43,007 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:43,008 INFO L93 Difference]: Finished difference Result 285 states and 423 transitions. [2018-11-14 17:18:43,008 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:43,008 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 68 [2018-11-14 17:18:43,008 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:43,009 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:43,012 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 423 transitions. [2018-11-14 17:18:43,012 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:43,016 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 423 transitions. [2018-11-14 17:18:43,017 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 423 transitions. [2018-11-14 17:18:43,989 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 423 edges. 423 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:43,993 INFO L225 Difference]: With dead ends: 285 [2018-11-14 17:18:43,993 INFO L226 Difference]: Without dead ends: 162 [2018-11-14 17:18:43,994 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 2 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:43,994 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 162 states. [2018-11-14 17:18:44,019 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 162 to 149. [2018-11-14 17:18:44,020 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:44,020 INFO L82 GeneralOperation]: Start isEquivalent. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:44,020 INFO L74 IsIncluded]: Start isIncluded. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:44,020 INFO L87 Difference]: Start difference. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:44,024 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:44,024 INFO L93 Difference]: Finished difference Result 162 states and 235 transitions. [2018-11-14 17:18:44,024 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 235 transitions. [2018-11-14 17:18:44,025 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:44,025 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:44,025 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 162 states. [2018-11-14 17:18:44,025 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 162 states. [2018-11-14 17:18:44,030 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:44,030 INFO L93 Difference]: Finished difference Result 162 states and 235 transitions. [2018-11-14 17:18:44,030 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 235 transitions. [2018-11-14 17:18:44,031 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:44,031 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:44,032 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:44,032 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:44,032 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:44,035 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 218 transitions. [2018-11-14 17:18:44,036 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 218 transitions. Word has length 68 [2018-11-14 17:18:44,036 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:44,036 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 218 transitions. [2018-11-14 17:18:44,036 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:44,036 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 218 transitions. [2018-11-14 17:18:44,037 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 70 [2018-11-14 17:18:44,037 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:44,038 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:44,038 INFO L423 AbstractCegarLoop]: === Iteration 8 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:44,038 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:44,038 INFO L82 PathProgramCache]: Analyzing trace with hash 642776382, now seen corresponding path program 1 times [2018-11-14 17:18:44,039 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:44,039 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:44,040 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:44,040 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:44,040 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:44,055 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:44,323 WARN L179 SmtUtils]: Spent 100.00 ms on a formula simplification. DAG size of input: 18 DAG size of output: 15 [2018-11-14 17:18:44,548 INFO L256 TraceCheckUtils]: 0: Hoare triple {6213#true} call ULTIMATE.init(); {6213#true} is VALID [2018-11-14 17:18:44,549 INFO L273 TraceCheckUtils]: 1: Hoare triple {6213#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {6213#true} is VALID [2018-11-14 17:18:44,549 INFO L273 TraceCheckUtils]: 2: Hoare triple {6213#true} assume true; {6213#true} is VALID [2018-11-14 17:18:44,549 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {6213#true} {6213#true} #654#return; {6213#true} is VALID [2018-11-14 17:18:44,549 INFO L256 TraceCheckUtils]: 4: Hoare triple {6213#true} call #t~ret138 := main(); {6213#true} is VALID [2018-11-14 17:18:44,550 INFO L273 TraceCheckUtils]: 5: Hoare triple {6213#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {6213#true} is VALID [2018-11-14 17:18:44,550 INFO L256 TraceCheckUtils]: 6: Hoare triple {6213#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {6213#true} is VALID [2018-11-14 17:18:44,558 INFO L273 TraceCheckUtils]: 7: Hoare triple {6213#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,559 INFO L273 TraceCheckUtils]: 8: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,560 INFO L273 TraceCheckUtils]: 9: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,563 INFO L273 TraceCheckUtils]: 10: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,563 INFO L273 TraceCheckUtils]: 11: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,564 INFO L273 TraceCheckUtils]: 12: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,564 INFO L273 TraceCheckUtils]: 13: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume true; {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,565 INFO L273 TraceCheckUtils]: 14: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !false; {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,565 INFO L273 TraceCheckUtils]: 15: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,565 INFO L273 TraceCheckUtils]: 16: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,566 INFO L273 TraceCheckUtils]: 17: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:44,566 INFO L273 TraceCheckUtils]: 18: Hoare triple {6215#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {6216#(= |ssl3_accept_#t~mem27| 8464)} is VALID [2018-11-14 17:18:44,567 INFO L273 TraceCheckUtils]: 19: Hoare triple {6216#(= |ssl3_accept_#t~mem27| 8464)} assume #t~mem27 == 24576;havoc #t~mem27; {6214#false} is VALID [2018-11-14 17:18:44,567 INFO L273 TraceCheckUtils]: 20: Hoare triple {6214#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {6214#false} is VALID [2018-11-14 17:18:44,568 INFO L273 TraceCheckUtils]: 21: Hoare triple {6214#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {6214#false} is VALID [2018-11-14 17:18:44,568 INFO L273 TraceCheckUtils]: 22: Hoare triple {6214#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {6214#false} is VALID [2018-11-14 17:18:44,568 INFO L273 TraceCheckUtils]: 23: Hoare triple {6214#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {6214#false} is VALID [2018-11-14 17:18:44,568 INFO L273 TraceCheckUtils]: 24: Hoare triple {6214#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {6214#false} is VALID [2018-11-14 17:18:44,569 INFO L273 TraceCheckUtils]: 25: Hoare triple {6214#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,569 INFO L273 TraceCheckUtils]: 26: Hoare triple {6214#false} assume !(#t~mem62 != 12292);havoc #t~mem62;call #t~mem65.base, #t~mem65.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem66 := read~int(#t~mem65.base, #t~mem65.offset + 60 + 16, 4);call write~int(#t~mem66 + 1, #t~mem65.base, #t~mem65.offset + 60 + 16, 4);havoc #t~mem65.base, #t~mem65.offset;havoc #t~mem66;call write~int(8480, ~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,569 INFO L273 TraceCheckUtils]: 27: Hoare triple {6214#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {6214#false} is VALID [2018-11-14 17:18:44,569 INFO L273 TraceCheckUtils]: 28: Hoare triple {6214#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {6214#false} is VALID [2018-11-14 17:18:44,570 INFO L273 TraceCheckUtils]: 29: Hoare triple {6214#false} ~skip~0 := 0; {6214#false} is VALID [2018-11-14 17:18:44,570 INFO L273 TraceCheckUtils]: 30: Hoare triple {6214#false} assume true; {6214#false} is VALID [2018-11-14 17:18:44,570 INFO L273 TraceCheckUtils]: 31: Hoare triple {6214#false} assume !false; {6214#false} is VALID [2018-11-14 17:18:44,570 INFO L273 TraceCheckUtils]: 32: Hoare triple {6214#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,572 INFO L273 TraceCheckUtils]: 33: Hoare triple {6214#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,572 INFO L273 TraceCheckUtils]: 34: Hoare triple {6214#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,572 INFO L273 TraceCheckUtils]: 35: Hoare triple {6214#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,573 INFO L273 TraceCheckUtils]: 36: Hoare triple {6214#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,573 INFO L273 TraceCheckUtils]: 37: Hoare triple {6214#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,573 INFO L273 TraceCheckUtils]: 38: Hoare triple {6214#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,573 INFO L273 TraceCheckUtils]: 39: Hoare triple {6214#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,574 INFO L273 TraceCheckUtils]: 40: Hoare triple {6214#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,574 INFO L273 TraceCheckUtils]: 41: Hoare triple {6214#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,574 INFO L273 TraceCheckUtils]: 42: Hoare triple {6214#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,574 INFO L273 TraceCheckUtils]: 43: Hoare triple {6214#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,576 INFO L273 TraceCheckUtils]: 44: Hoare triple {6214#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,577 INFO L273 TraceCheckUtils]: 45: Hoare triple {6214#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,577 INFO L273 TraceCheckUtils]: 46: Hoare triple {6214#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,577 INFO L273 TraceCheckUtils]: 47: Hoare triple {6214#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,577 INFO L273 TraceCheckUtils]: 48: Hoare triple {6214#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,577 INFO L273 TraceCheckUtils]: 49: Hoare triple {6214#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,578 INFO L273 TraceCheckUtils]: 50: Hoare triple {6214#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,578 INFO L273 TraceCheckUtils]: 51: Hoare triple {6214#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,578 INFO L273 TraceCheckUtils]: 52: Hoare triple {6214#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,578 INFO L273 TraceCheckUtils]: 53: Hoare triple {6214#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,578 INFO L273 TraceCheckUtils]: 54: Hoare triple {6214#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,579 INFO L273 TraceCheckUtils]: 55: Hoare triple {6214#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,579 INFO L273 TraceCheckUtils]: 56: Hoare triple {6214#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,579 INFO L273 TraceCheckUtils]: 57: Hoare triple {6214#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,579 INFO L273 TraceCheckUtils]: 58: Hoare triple {6214#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,587 INFO L273 TraceCheckUtils]: 59: Hoare triple {6214#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,587 INFO L273 TraceCheckUtils]: 60: Hoare triple {6214#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,587 INFO L273 TraceCheckUtils]: 61: Hoare triple {6214#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,588 INFO L273 TraceCheckUtils]: 62: Hoare triple {6214#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,588 INFO L273 TraceCheckUtils]: 63: Hoare triple {6214#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,588 INFO L273 TraceCheckUtils]: 64: Hoare triple {6214#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {6214#false} is VALID [2018-11-14 17:18:44,588 INFO L273 TraceCheckUtils]: 65: Hoare triple {6214#false} assume #t~mem56 == 8672;havoc #t~mem56; {6214#false} is VALID [2018-11-14 17:18:44,588 INFO L273 TraceCheckUtils]: 66: Hoare triple {6214#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {6214#false} is VALID [2018-11-14 17:18:44,590 INFO L273 TraceCheckUtils]: 67: Hoare triple {6214#false} assume ~blastFlag~0 == 4; {6214#false} is VALID [2018-11-14 17:18:44,590 INFO L273 TraceCheckUtils]: 68: Hoare triple {6214#false} assume !false; {6214#false} is VALID [2018-11-14 17:18:44,599 INFO L134 CoverageAnalysis]: Checked inductivity of 7 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:44,599 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:44,599 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:44,600 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 69 [2018-11-14 17:18:44,600 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:44,600 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:44,688 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 69 edges. 69 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:44,688 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:44,689 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:44,689 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:44,689 INFO L87 Difference]: Start difference. First operand 149 states and 218 transitions. Second operand 4 states. [2018-11-14 17:18:45,822 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:45,822 INFO L93 Difference]: Finished difference Result 285 states and 422 transitions. [2018-11-14 17:18:45,822 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:45,822 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 69 [2018-11-14 17:18:45,823 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:45,823 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:45,826 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 422 transitions. [2018-11-14 17:18:45,826 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:45,829 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 422 transitions. [2018-11-14 17:18:45,829 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 422 transitions. [2018-11-14 17:18:46,745 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 422 edges. 422 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:46,750 INFO L225 Difference]: With dead ends: 285 [2018-11-14 17:18:46,750 INFO L226 Difference]: Without dead ends: 162 [2018-11-14 17:18:46,751 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 2 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:46,751 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 162 states. [2018-11-14 17:18:46,780 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 162 to 149. [2018-11-14 17:18:46,780 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:46,780 INFO L82 GeneralOperation]: Start isEquivalent. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:46,780 INFO L74 IsIncluded]: Start isIncluded. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:46,781 INFO L87 Difference]: Start difference. First operand 162 states. Second operand 149 states. [2018-11-14 17:18:46,785 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:46,785 INFO L93 Difference]: Finished difference Result 162 states and 234 transitions. [2018-11-14 17:18:46,786 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 234 transitions. [2018-11-14 17:18:46,786 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:46,786 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:46,786 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 162 states. [2018-11-14 17:18:46,787 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 162 states. [2018-11-14 17:18:46,791 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:46,791 INFO L93 Difference]: Finished difference Result 162 states and 234 transitions. [2018-11-14 17:18:46,791 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 234 transitions. [2018-11-14 17:18:46,792 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:46,792 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:46,792 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:46,793 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:46,793 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:46,797 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 217 transitions. [2018-11-14 17:18:46,797 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 217 transitions. Word has length 69 [2018-11-14 17:18:46,797 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:46,797 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 217 transitions. [2018-11-14 17:18:46,798 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:46,798 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 217 transitions. [2018-11-14 17:18:46,799 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 71 [2018-11-14 17:18:46,799 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:46,799 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:46,800 INFO L423 AbstractCegarLoop]: === Iteration 9 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:46,800 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:46,800 INFO L82 PathProgramCache]: Analyzing trace with hash 1697086567, now seen corresponding path program 1 times [2018-11-14 17:18:46,800 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:46,800 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:46,802 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:46,802 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:46,802 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:46,818 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:47,088 WARN L179 SmtUtils]: Spent 101.00 ms on a formula simplification. DAG size of input: 18 DAG size of output: 15 [2018-11-14 17:18:47,562 INFO L256 TraceCheckUtils]: 0: Hoare triple {7064#true} call ULTIMATE.init(); {7064#true} is VALID [2018-11-14 17:18:47,563 INFO L273 TraceCheckUtils]: 1: Hoare triple {7064#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {7064#true} is VALID [2018-11-14 17:18:47,563 INFO L273 TraceCheckUtils]: 2: Hoare triple {7064#true} assume true; {7064#true} is VALID [2018-11-14 17:18:47,563 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {7064#true} {7064#true} #654#return; {7064#true} is VALID [2018-11-14 17:18:47,563 INFO L256 TraceCheckUtils]: 4: Hoare triple {7064#true} call #t~ret138 := main(); {7064#true} is VALID [2018-11-14 17:18:47,563 INFO L273 TraceCheckUtils]: 5: Hoare triple {7064#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {7064#true} is VALID [2018-11-14 17:18:47,564 INFO L256 TraceCheckUtils]: 6: Hoare triple {7064#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {7064#true} is VALID [2018-11-14 17:18:47,566 INFO L273 TraceCheckUtils]: 7: Hoare triple {7064#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,566 INFO L273 TraceCheckUtils]: 8: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,568 INFO L273 TraceCheckUtils]: 9: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,570 INFO L273 TraceCheckUtils]: 10: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,571 INFO L273 TraceCheckUtils]: 11: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,571 INFO L273 TraceCheckUtils]: 12: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,571 INFO L273 TraceCheckUtils]: 13: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume true; {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,572 INFO L273 TraceCheckUtils]: 14: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !false; {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,572 INFO L273 TraceCheckUtils]: 15: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,573 INFO L273 TraceCheckUtils]: 16: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,573 INFO L273 TraceCheckUtils]: 17: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,573 INFO L273 TraceCheckUtils]: 18: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} is VALID [2018-11-14 17:18:47,574 INFO L273 TraceCheckUtils]: 19: Hoare triple {7066#(= (select (store (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28) (+ (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 28)) 1)) (+ ssl3_accept_~s.offset 52)) 8464)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {7067#(= |ssl3_accept_#t~mem28| 8464)} is VALID [2018-11-14 17:18:47,575 INFO L273 TraceCheckUtils]: 20: Hoare triple {7067#(= |ssl3_accept_#t~mem28| 8464)} assume #t~mem28 == 8195;havoc #t~mem28; {7065#false} is VALID [2018-11-14 17:18:47,575 INFO L273 TraceCheckUtils]: 21: Hoare triple {7065#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {7065#false} is VALID [2018-11-14 17:18:47,576 INFO L273 TraceCheckUtils]: 22: Hoare triple {7065#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {7065#false} is VALID [2018-11-14 17:18:47,576 INFO L273 TraceCheckUtils]: 23: Hoare triple {7065#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {7065#false} is VALID [2018-11-14 17:18:47,576 INFO L273 TraceCheckUtils]: 24: Hoare triple {7065#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {7065#false} is VALID [2018-11-14 17:18:47,577 INFO L273 TraceCheckUtils]: 25: Hoare triple {7065#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {7065#false} is VALID [2018-11-14 17:18:47,577 INFO L273 TraceCheckUtils]: 26: Hoare triple {7065#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,577 INFO L273 TraceCheckUtils]: 27: Hoare triple {7065#false} assume !(#t~mem62 != 12292);havoc #t~mem62;call #t~mem65.base, #t~mem65.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem66 := read~int(#t~mem65.base, #t~mem65.offset + 60 + 16, 4);call write~int(#t~mem66 + 1, #t~mem65.base, #t~mem65.offset + 60 + 16, 4);havoc #t~mem65.base, #t~mem65.offset;havoc #t~mem66;call write~int(8480, ~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,577 INFO L273 TraceCheckUtils]: 28: Hoare triple {7065#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {7065#false} is VALID [2018-11-14 17:18:47,578 INFO L273 TraceCheckUtils]: 29: Hoare triple {7065#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {7065#false} is VALID [2018-11-14 17:18:47,578 INFO L273 TraceCheckUtils]: 30: Hoare triple {7065#false} ~skip~0 := 0; {7065#false} is VALID [2018-11-14 17:18:47,578 INFO L273 TraceCheckUtils]: 31: Hoare triple {7065#false} assume true; {7065#false} is VALID [2018-11-14 17:18:47,579 INFO L273 TraceCheckUtils]: 32: Hoare triple {7065#false} assume !false; {7065#false} is VALID [2018-11-14 17:18:47,579 INFO L273 TraceCheckUtils]: 33: Hoare triple {7065#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,579 INFO L273 TraceCheckUtils]: 34: Hoare triple {7065#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,579 INFO L273 TraceCheckUtils]: 35: Hoare triple {7065#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,579 INFO L273 TraceCheckUtils]: 36: Hoare triple {7065#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,579 INFO L273 TraceCheckUtils]: 37: Hoare triple {7065#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,580 INFO L273 TraceCheckUtils]: 38: Hoare triple {7065#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,580 INFO L273 TraceCheckUtils]: 39: Hoare triple {7065#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,580 INFO L273 TraceCheckUtils]: 40: Hoare triple {7065#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,580 INFO L273 TraceCheckUtils]: 41: Hoare triple {7065#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,580 INFO L273 TraceCheckUtils]: 42: Hoare triple {7065#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,580 INFO L273 TraceCheckUtils]: 43: Hoare triple {7065#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,581 INFO L273 TraceCheckUtils]: 44: Hoare triple {7065#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,581 INFO L273 TraceCheckUtils]: 45: Hoare triple {7065#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,581 INFO L273 TraceCheckUtils]: 46: Hoare triple {7065#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,581 INFO L273 TraceCheckUtils]: 47: Hoare triple {7065#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,581 INFO L273 TraceCheckUtils]: 48: Hoare triple {7065#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,581 INFO L273 TraceCheckUtils]: 49: Hoare triple {7065#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,582 INFO L273 TraceCheckUtils]: 50: Hoare triple {7065#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,582 INFO L273 TraceCheckUtils]: 51: Hoare triple {7065#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,582 INFO L273 TraceCheckUtils]: 52: Hoare triple {7065#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,582 INFO L273 TraceCheckUtils]: 53: Hoare triple {7065#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,582 INFO L273 TraceCheckUtils]: 54: Hoare triple {7065#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,582 INFO L273 TraceCheckUtils]: 55: Hoare triple {7065#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,583 INFO L273 TraceCheckUtils]: 56: Hoare triple {7065#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,583 INFO L273 TraceCheckUtils]: 57: Hoare triple {7065#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,583 INFO L273 TraceCheckUtils]: 58: Hoare triple {7065#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,583 INFO L273 TraceCheckUtils]: 59: Hoare triple {7065#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,583 INFO L273 TraceCheckUtils]: 60: Hoare triple {7065#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,583 INFO L273 TraceCheckUtils]: 61: Hoare triple {7065#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,584 INFO L273 TraceCheckUtils]: 62: Hoare triple {7065#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,584 INFO L273 TraceCheckUtils]: 63: Hoare triple {7065#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,584 INFO L273 TraceCheckUtils]: 64: Hoare triple {7065#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,584 INFO L273 TraceCheckUtils]: 65: Hoare triple {7065#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {7065#false} is VALID [2018-11-14 17:18:47,584 INFO L273 TraceCheckUtils]: 66: Hoare triple {7065#false} assume #t~mem56 == 8672;havoc #t~mem56; {7065#false} is VALID [2018-11-14 17:18:47,584 INFO L273 TraceCheckUtils]: 67: Hoare triple {7065#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {7065#false} is VALID [2018-11-14 17:18:47,585 INFO L273 TraceCheckUtils]: 68: Hoare triple {7065#false} assume ~blastFlag~0 == 4; {7065#false} is VALID [2018-11-14 17:18:47,585 INFO L273 TraceCheckUtils]: 69: Hoare triple {7065#false} assume !false; {7065#false} is VALID [2018-11-14 17:18:47,594 INFO L134 CoverageAnalysis]: Checked inductivity of 8 backedges. 8 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:47,595 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:47,595 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:47,596 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 70 [2018-11-14 17:18:47,596 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:47,596 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:47,754 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 70 edges. 70 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:47,754 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:47,754 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:47,755 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:47,755 INFO L87 Difference]: Start difference. First operand 149 states and 217 transitions. Second operand 4 states. [2018-11-14 17:18:48,980 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:48,981 INFO L93 Difference]: Finished difference Result 275 states and 408 transitions. [2018-11-14 17:18:48,981 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:48,981 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 70 [2018-11-14 17:18:48,981 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:48,981 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:48,985 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 408 transitions. [2018-11-14 17:18:48,985 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:48,988 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 408 transitions. [2018-11-14 17:18:48,988 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 408 transitions. [2018-11-14 17:18:50,234 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 408 edges. 408 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:50,238 INFO L225 Difference]: With dead ends: 275 [2018-11-14 17:18:50,238 INFO L226 Difference]: Without dead ends: 152 [2018-11-14 17:18:50,239 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 2 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:50,239 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 152 states. [2018-11-14 17:18:50,283 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 152 to 149. [2018-11-14 17:18:50,283 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:50,283 INFO L82 GeneralOperation]: Start isEquivalent. First operand 152 states. Second operand 149 states. [2018-11-14 17:18:50,283 INFO L74 IsIncluded]: Start isIncluded. First operand 152 states. Second operand 149 states. [2018-11-14 17:18:50,284 INFO L87 Difference]: Start difference. First operand 152 states. Second operand 149 states. [2018-11-14 17:18:50,289 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:50,289 INFO L93 Difference]: Finished difference Result 152 states and 220 transitions. [2018-11-14 17:18:50,289 INFO L276 IsEmpty]: Start isEmpty. Operand 152 states and 220 transitions. [2018-11-14 17:18:50,290 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:50,290 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:50,290 INFO L74 IsIncluded]: Start isIncluded. First operand 149 states. Second operand 152 states. [2018-11-14 17:18:50,290 INFO L87 Difference]: Start difference. First operand 149 states. Second operand 152 states. [2018-11-14 17:18:50,293 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:50,293 INFO L93 Difference]: Finished difference Result 152 states and 220 transitions. [2018-11-14 17:18:50,293 INFO L276 IsEmpty]: Start isEmpty. Operand 152 states and 220 transitions. [2018-11-14 17:18:50,294 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:50,294 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:50,294 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:50,294 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:50,294 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 149 states. [2018-11-14 17:18:50,297 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 216 transitions. [2018-11-14 17:18:50,298 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 216 transitions. Word has length 70 [2018-11-14 17:18:50,298 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:50,298 INFO L480 AbstractCegarLoop]: Abstraction has 149 states and 216 transitions. [2018-11-14 17:18:50,298 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:50,298 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 216 transitions. [2018-11-14 17:18:50,299 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 71 [2018-11-14 17:18:50,299 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:50,299 INFO L375 BasicCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:50,299 INFO L423 AbstractCegarLoop]: === Iteration 10 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:50,300 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:50,300 INFO L82 PathProgramCache]: Analyzing trace with hash 33530782, now seen corresponding path program 1 times [2018-11-14 17:18:50,300 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:50,300 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:50,301 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:50,301 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:50,301 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:50,316 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:50,421 INFO L256 TraceCheckUtils]: 0: Hoare triple {7884#true} call ULTIMATE.init(); {7884#true} is VALID [2018-11-14 17:18:50,421 INFO L273 TraceCheckUtils]: 1: Hoare triple {7884#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {7884#true} is VALID [2018-11-14 17:18:50,421 INFO L273 TraceCheckUtils]: 2: Hoare triple {7884#true} assume true; {7884#true} is VALID [2018-11-14 17:18:50,422 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {7884#true} {7884#true} #654#return; {7884#true} is VALID [2018-11-14 17:18:50,422 INFO L256 TraceCheckUtils]: 4: Hoare triple {7884#true} call #t~ret138 := main(); {7884#true} is VALID [2018-11-14 17:18:50,422 INFO L273 TraceCheckUtils]: 5: Hoare triple {7884#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,422 INFO L256 TraceCheckUtils]: 6: Hoare triple {7884#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {7884#true} is VALID [2018-11-14 17:18:50,422 INFO L273 TraceCheckUtils]: 7: Hoare triple {7884#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {7884#true} is VALID [2018-11-14 17:18:50,422 INFO L273 TraceCheckUtils]: 8: Hoare triple {7884#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {7884#true} is VALID [2018-11-14 17:18:50,422 INFO L273 TraceCheckUtils]: 9: Hoare triple {7884#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {7884#true} is VALID [2018-11-14 17:18:50,423 INFO L273 TraceCheckUtils]: 10: Hoare triple {7884#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {7884#true} is VALID [2018-11-14 17:18:50,423 INFO L273 TraceCheckUtils]: 11: Hoare triple {7884#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {7884#true} is VALID [2018-11-14 17:18:50,423 INFO L273 TraceCheckUtils]: 12: Hoare triple {7884#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {7884#true} is VALID [2018-11-14 17:18:50,423 INFO L273 TraceCheckUtils]: 13: Hoare triple {7884#true} assume true; {7884#true} is VALID [2018-11-14 17:18:50,423 INFO L273 TraceCheckUtils]: 14: Hoare triple {7884#true} assume !false; {7884#true} is VALID [2018-11-14 17:18:50,423 INFO L273 TraceCheckUtils]: 15: Hoare triple {7884#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,423 INFO L273 TraceCheckUtils]: 16: Hoare triple {7884#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,424 INFO L273 TraceCheckUtils]: 17: Hoare triple {7884#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,424 INFO L273 TraceCheckUtils]: 18: Hoare triple {7884#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,424 INFO L273 TraceCheckUtils]: 19: Hoare triple {7884#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,424 INFO L273 TraceCheckUtils]: 20: Hoare triple {7884#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,424 INFO L273 TraceCheckUtils]: 21: Hoare triple {7884#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,424 INFO L273 TraceCheckUtils]: 22: Hoare triple {7884#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,424 INFO L273 TraceCheckUtils]: 23: Hoare triple {7884#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {7884#true} is VALID [2018-11-14 17:18:50,424 INFO L273 TraceCheckUtils]: 24: Hoare triple {7884#true} assume #t~mem32 == 8464;havoc #t~mem32; {7884#true} is VALID [2018-11-14 17:18:50,425 INFO L273 TraceCheckUtils]: 25: Hoare triple {7884#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {7884#true} is VALID [2018-11-14 17:18:50,425 INFO L273 TraceCheckUtils]: 26: Hoare triple {7884#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {7884#true} is VALID [2018-11-14 17:18:50,426 INFO L273 TraceCheckUtils]: 27: Hoare triple {7884#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,426 INFO L273 TraceCheckUtils]: 28: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,428 INFO L273 TraceCheckUtils]: 29: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,428 INFO L273 TraceCheckUtils]: 30: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} ~skip~0 := 0; {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,428 INFO L273 TraceCheckUtils]: 31: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume true; {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,429 INFO L273 TraceCheckUtils]: 32: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !false; {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,430 INFO L273 TraceCheckUtils]: 33: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,430 INFO L273 TraceCheckUtils]: 34: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,430 INFO L273 TraceCheckUtils]: 35: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,431 INFO L273 TraceCheckUtils]: 36: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,431 INFO L273 TraceCheckUtils]: 37: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,432 INFO L273 TraceCheckUtils]: 38: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,432 INFO L273 TraceCheckUtils]: 39: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,433 INFO L273 TraceCheckUtils]: 40: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,433 INFO L273 TraceCheckUtils]: 41: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,434 INFO L273 TraceCheckUtils]: 42: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,454 INFO L273 TraceCheckUtils]: 43: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:50,467 INFO L273 TraceCheckUtils]: 44: Hoare triple {7886#(= 8496 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {7887#(= 8496 |ssl3_accept_#t~mem35|)} is VALID [2018-11-14 17:18:50,476 INFO L273 TraceCheckUtils]: 45: Hoare triple {7887#(= 8496 |ssl3_accept_#t~mem35|)} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,477 INFO L273 TraceCheckUtils]: 46: Hoare triple {7885#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,477 INFO L273 TraceCheckUtils]: 47: Hoare triple {7885#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,478 INFO L273 TraceCheckUtils]: 48: Hoare triple {7885#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,478 INFO L273 TraceCheckUtils]: 49: Hoare triple {7885#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,478 INFO L273 TraceCheckUtils]: 50: Hoare triple {7885#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,478 INFO L273 TraceCheckUtils]: 51: Hoare triple {7885#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,478 INFO L273 TraceCheckUtils]: 52: Hoare triple {7885#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,479 INFO L273 TraceCheckUtils]: 53: Hoare triple {7885#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,479 INFO L273 TraceCheckUtils]: 54: Hoare triple {7885#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,479 INFO L273 TraceCheckUtils]: 55: Hoare triple {7885#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,479 INFO L273 TraceCheckUtils]: 56: Hoare triple {7885#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,479 INFO L273 TraceCheckUtils]: 57: Hoare triple {7885#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,480 INFO L273 TraceCheckUtils]: 58: Hoare triple {7885#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,480 INFO L273 TraceCheckUtils]: 59: Hoare triple {7885#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,480 INFO L273 TraceCheckUtils]: 60: Hoare triple {7885#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,480 INFO L273 TraceCheckUtils]: 61: Hoare triple {7885#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,480 INFO L273 TraceCheckUtils]: 62: Hoare triple {7885#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,481 INFO L273 TraceCheckUtils]: 63: Hoare triple {7885#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,481 INFO L273 TraceCheckUtils]: 64: Hoare triple {7885#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,481 INFO L273 TraceCheckUtils]: 65: Hoare triple {7885#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {7885#false} is VALID [2018-11-14 17:18:50,481 INFO L273 TraceCheckUtils]: 66: Hoare triple {7885#false} assume #t~mem56 == 8672;havoc #t~mem56; {7885#false} is VALID [2018-11-14 17:18:50,481 INFO L273 TraceCheckUtils]: 67: Hoare triple {7885#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {7885#false} is VALID [2018-11-14 17:18:50,482 INFO L273 TraceCheckUtils]: 68: Hoare triple {7885#false} assume ~blastFlag~0 == 4; {7885#false} is VALID [2018-11-14 17:18:50,482 INFO L273 TraceCheckUtils]: 69: Hoare triple {7885#false} assume !false; {7885#false} is VALID [2018-11-14 17:18:50,487 INFO L134 CoverageAnalysis]: Checked inductivity of 12 backedges. 12 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:50,487 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:50,487 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:50,488 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 70 [2018-11-14 17:18:50,488 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:50,488 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:50,597 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 70 edges. 70 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:50,597 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:50,597 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:50,598 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:50,598 INFO L87 Difference]: Start difference. First operand 149 states and 216 transitions. Second operand 4 states. [2018-11-14 17:18:51,548 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:51,548 INFO L93 Difference]: Finished difference Result 316 states and 470 transitions. [2018-11-14 17:18:51,548 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:51,548 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 70 [2018-11-14 17:18:51,548 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:51,549 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:51,553 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 458 transitions. [2018-11-14 17:18:51,553 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:51,555 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 458 transitions. [2018-11-14 17:18:51,556 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 458 transitions. [2018-11-14 17:18:52,027 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 458 edges. 458 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:52,031 INFO L225 Difference]: With dead ends: 316 [2018-11-14 17:18:52,031 INFO L226 Difference]: Without dead ends: 193 [2018-11-14 17:18:52,032 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:52,032 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 193 states. [2018-11-14 17:18:52,081 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 193 to 172. [2018-11-14 17:18:52,081 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:52,081 INFO L82 GeneralOperation]: Start isEquivalent. First operand 193 states. Second operand 172 states. [2018-11-14 17:18:52,082 INFO L74 IsIncluded]: Start isIncluded. First operand 193 states. Second operand 172 states. [2018-11-14 17:18:52,082 INFO L87 Difference]: Start difference. First operand 193 states. Second operand 172 states. [2018-11-14 17:18:52,086 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:52,086 INFO L93 Difference]: Finished difference Result 193 states and 282 transitions. [2018-11-14 17:18:52,086 INFO L276 IsEmpty]: Start isEmpty. Operand 193 states and 282 transitions. [2018-11-14 17:18:52,087 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:52,087 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:52,087 INFO L74 IsIncluded]: Start isIncluded. First operand 172 states. Second operand 193 states. [2018-11-14 17:18:52,087 INFO L87 Difference]: Start difference. First operand 172 states. Second operand 193 states. [2018-11-14 17:18:52,091 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:52,091 INFO L93 Difference]: Finished difference Result 193 states and 282 transitions. [2018-11-14 17:18:52,092 INFO L276 IsEmpty]: Start isEmpty. Operand 193 states and 282 transitions. [2018-11-14 17:18:52,092 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:52,092 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:52,092 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:52,092 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:52,093 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 172 states. [2018-11-14 17:18:52,096 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 172 states to 172 states and 255 transitions. [2018-11-14 17:18:52,096 INFO L78 Accepts]: Start accepts. Automaton has 172 states and 255 transitions. Word has length 70 [2018-11-14 17:18:52,096 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:52,096 INFO L480 AbstractCegarLoop]: Abstraction has 172 states and 255 transitions. [2018-11-14 17:18:52,096 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:52,097 INFO L276 IsEmpty]: Start isEmpty. Operand 172 states and 255 transitions. [2018-11-14 17:18:52,097 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 85 [2018-11-14 17:18:52,097 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:52,098 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:52,098 INFO L423 AbstractCegarLoop]: === Iteration 11 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:52,098 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:52,098 INFO L82 PathProgramCache]: Analyzing trace with hash -189164628, now seen corresponding path program 1 times [2018-11-14 17:18:52,098 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:52,098 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:52,099 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:52,100 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:52,100 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:52,115 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:52,313 INFO L256 TraceCheckUtils]: 0: Hoare triple {8859#true} call ULTIMATE.init(); {8859#true} is VALID [2018-11-14 17:18:52,313 INFO L273 TraceCheckUtils]: 1: Hoare triple {8859#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {8859#true} is VALID [2018-11-14 17:18:52,314 INFO L273 TraceCheckUtils]: 2: Hoare triple {8859#true} assume true; {8859#true} is VALID [2018-11-14 17:18:52,314 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {8859#true} {8859#true} #654#return; {8859#true} is VALID [2018-11-14 17:18:52,314 INFO L256 TraceCheckUtils]: 4: Hoare triple {8859#true} call #t~ret138 := main(); {8859#true} is VALID [2018-11-14 17:18:52,314 INFO L273 TraceCheckUtils]: 5: Hoare triple {8859#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,315 INFO L256 TraceCheckUtils]: 6: Hoare triple {8859#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {8859#true} is VALID [2018-11-14 17:18:52,315 INFO L273 TraceCheckUtils]: 7: Hoare triple {8859#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {8859#true} is VALID [2018-11-14 17:18:52,315 INFO L273 TraceCheckUtils]: 8: Hoare triple {8859#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {8859#true} is VALID [2018-11-14 17:18:52,315 INFO L273 TraceCheckUtils]: 9: Hoare triple {8859#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {8859#true} is VALID [2018-11-14 17:18:52,316 INFO L273 TraceCheckUtils]: 10: Hoare triple {8859#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {8859#true} is VALID [2018-11-14 17:18:52,316 INFO L273 TraceCheckUtils]: 11: Hoare triple {8859#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {8859#true} is VALID [2018-11-14 17:18:52,316 INFO L273 TraceCheckUtils]: 12: Hoare triple {8859#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {8859#true} is VALID [2018-11-14 17:18:52,316 INFO L273 TraceCheckUtils]: 13: Hoare triple {8859#true} assume true; {8859#true} is VALID [2018-11-14 17:18:52,316 INFO L273 TraceCheckUtils]: 14: Hoare triple {8859#true} assume !false; {8859#true} is VALID [2018-11-14 17:18:52,316 INFO L273 TraceCheckUtils]: 15: Hoare triple {8859#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,316 INFO L273 TraceCheckUtils]: 16: Hoare triple {8859#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,316 INFO L273 TraceCheckUtils]: 17: Hoare triple {8859#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,317 INFO L273 TraceCheckUtils]: 18: Hoare triple {8859#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,317 INFO L273 TraceCheckUtils]: 19: Hoare triple {8859#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,317 INFO L273 TraceCheckUtils]: 20: Hoare triple {8859#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,317 INFO L273 TraceCheckUtils]: 21: Hoare triple {8859#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,317 INFO L273 TraceCheckUtils]: 22: Hoare triple {8859#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,317 INFO L273 TraceCheckUtils]: 23: Hoare triple {8859#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {8859#true} is VALID [2018-11-14 17:18:52,317 INFO L273 TraceCheckUtils]: 24: Hoare triple {8859#true} assume #t~mem32 == 8464;havoc #t~mem32; {8859#true} is VALID [2018-11-14 17:18:52,317 INFO L273 TraceCheckUtils]: 25: Hoare triple {8859#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {8859#true} is VALID [2018-11-14 17:18:52,318 INFO L273 TraceCheckUtils]: 26: Hoare triple {8859#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {8859#true} is VALID [2018-11-14 17:18:52,335 INFO L273 TraceCheckUtils]: 27: Hoare triple {8859#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,340 INFO L273 TraceCheckUtils]: 28: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,341 INFO L273 TraceCheckUtils]: 29: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,341 INFO L273 TraceCheckUtils]: 30: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} ~skip~0 := 0; {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,341 INFO L273 TraceCheckUtils]: 31: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume true; {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,342 INFO L273 TraceCheckUtils]: 32: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !false; {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,342 INFO L273 TraceCheckUtils]: 33: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,342 INFO L273 TraceCheckUtils]: 34: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,343 INFO L273 TraceCheckUtils]: 35: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,343 INFO L273 TraceCheckUtils]: 36: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,344 INFO L273 TraceCheckUtils]: 37: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:52,344 INFO L273 TraceCheckUtils]: 38: Hoare triple {8861#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {8862#(= |ssl3_accept_#t~mem29| 8496)} is VALID [2018-11-14 17:18:52,345 INFO L273 TraceCheckUtils]: 39: Hoare triple {8862#(= |ssl3_accept_#t~mem29| 8496)} assume #t~mem29 == 8480;havoc #t~mem29; {8860#false} is VALID [2018-11-14 17:18:52,345 INFO L273 TraceCheckUtils]: 40: Hoare triple {8860#false} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet67 && #t~nondet67 <= 2147483647;~ret~0 := #t~nondet67;havoc #t~nondet67; {8860#false} is VALID [2018-11-14 17:18:52,346 INFO L273 TraceCheckUtils]: 41: Hoare triple {8860#false} assume !(~ret~0 <= 0);call #t~mem68.base, #t~mem68.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call write~int(8482, #t~mem68.base, #t~mem68.offset + 604 + 240, 4);havoc #t~mem68.base, #t~mem68.offset;call write~int(8448, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {8860#false} is VALID [2018-11-14 17:18:52,346 INFO L273 TraceCheckUtils]: 42: Hoare triple {8860#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {8860#false} is VALID [2018-11-14 17:18:52,346 INFO L273 TraceCheckUtils]: 43: Hoare triple {8860#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {8860#false} is VALID [2018-11-14 17:18:52,346 INFO L273 TraceCheckUtils]: 44: Hoare triple {8860#false} ~skip~0 := 0; {8860#false} is VALID [2018-11-14 17:18:52,346 INFO L273 TraceCheckUtils]: 45: Hoare triple {8860#false} assume true; {8860#false} is VALID [2018-11-14 17:18:52,347 INFO L273 TraceCheckUtils]: 46: Hoare triple {8860#false} assume !false; {8860#false} is VALID [2018-11-14 17:18:52,347 INFO L273 TraceCheckUtils]: 47: Hoare triple {8860#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,347 INFO L273 TraceCheckUtils]: 48: Hoare triple {8860#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,347 INFO L273 TraceCheckUtils]: 49: Hoare triple {8860#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,347 INFO L273 TraceCheckUtils]: 50: Hoare triple {8860#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,348 INFO L273 TraceCheckUtils]: 51: Hoare triple {8860#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,348 INFO L273 TraceCheckUtils]: 52: Hoare triple {8860#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,348 INFO L273 TraceCheckUtils]: 53: Hoare triple {8860#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,348 INFO L273 TraceCheckUtils]: 54: Hoare triple {8860#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,348 INFO L273 TraceCheckUtils]: 55: Hoare triple {8860#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,348 INFO L273 TraceCheckUtils]: 56: Hoare triple {8860#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,348 INFO L273 TraceCheckUtils]: 57: Hoare triple {8860#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,349 INFO L273 TraceCheckUtils]: 58: Hoare triple {8860#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,349 INFO L273 TraceCheckUtils]: 59: Hoare triple {8860#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,349 INFO L273 TraceCheckUtils]: 60: Hoare triple {8860#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,349 INFO L273 TraceCheckUtils]: 61: Hoare triple {8860#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,349 INFO L273 TraceCheckUtils]: 62: Hoare triple {8860#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,349 INFO L273 TraceCheckUtils]: 63: Hoare triple {8860#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,349 INFO L273 TraceCheckUtils]: 64: Hoare triple {8860#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,349 INFO L273 TraceCheckUtils]: 65: Hoare triple {8860#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,350 INFO L273 TraceCheckUtils]: 66: Hoare triple {8860#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,350 INFO L273 TraceCheckUtils]: 67: Hoare triple {8860#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,350 INFO L273 TraceCheckUtils]: 68: Hoare triple {8860#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,350 INFO L273 TraceCheckUtils]: 69: Hoare triple {8860#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,350 INFO L273 TraceCheckUtils]: 70: Hoare triple {8860#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,351 INFO L273 TraceCheckUtils]: 71: Hoare triple {8860#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,351 INFO L273 TraceCheckUtils]: 72: Hoare triple {8860#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,351 INFO L273 TraceCheckUtils]: 73: Hoare triple {8860#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,351 INFO L273 TraceCheckUtils]: 74: Hoare triple {8860#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,351 INFO L273 TraceCheckUtils]: 75: Hoare triple {8860#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,352 INFO L273 TraceCheckUtils]: 76: Hoare triple {8860#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,352 INFO L273 TraceCheckUtils]: 77: Hoare triple {8860#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,352 INFO L273 TraceCheckUtils]: 78: Hoare triple {8860#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,352 INFO L273 TraceCheckUtils]: 79: Hoare triple {8860#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {8860#false} is VALID [2018-11-14 17:18:52,353 INFO L273 TraceCheckUtils]: 80: Hoare triple {8860#false} assume #t~mem56 == 8672;havoc #t~mem56; {8860#false} is VALID [2018-11-14 17:18:52,353 INFO L273 TraceCheckUtils]: 81: Hoare triple {8860#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {8860#false} is VALID [2018-11-14 17:18:52,353 INFO L273 TraceCheckUtils]: 82: Hoare triple {8860#false} assume ~blastFlag~0 == 4; {8860#false} is VALID [2018-11-14 17:18:52,353 INFO L273 TraceCheckUtils]: 83: Hoare triple {8860#false} assume !false; {8860#false} is VALID [2018-11-14 17:18:52,358 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 33 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:52,359 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:52,359 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:52,359 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 84 [2018-11-14 17:18:52,359 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:52,360 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:52,476 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 84 edges. 84 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:52,476 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:52,476 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:52,477 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:52,477 INFO L87 Difference]: Start difference. First operand 172 states and 255 transitions. Second operand 4 states. [2018-11-14 17:18:53,436 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:53,437 INFO L93 Difference]: Finished difference Result 339 states and 508 transitions. [2018-11-14 17:18:53,437 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:53,437 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 84 [2018-11-14 17:18:53,437 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:53,437 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:53,439 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 457 transitions. [2018-11-14 17:18:53,440 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:53,442 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 457 transitions. [2018-11-14 17:18:53,442 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 457 transitions. [2018-11-14 17:18:53,864 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 457 edges. 457 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:53,867 INFO L225 Difference]: With dead ends: 339 [2018-11-14 17:18:53,868 INFO L226 Difference]: Without dead ends: 193 [2018-11-14 17:18:53,868 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:53,869 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 193 states. [2018-11-14 17:18:53,908 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 193 to 172. [2018-11-14 17:18:53,908 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:53,908 INFO L82 GeneralOperation]: Start isEquivalent. First operand 193 states. Second operand 172 states. [2018-11-14 17:18:53,908 INFO L74 IsIncluded]: Start isIncluded. First operand 193 states. Second operand 172 states. [2018-11-14 17:18:53,909 INFO L87 Difference]: Start difference. First operand 193 states. Second operand 172 states. [2018-11-14 17:18:53,914 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:53,914 INFO L93 Difference]: Finished difference Result 193 states and 281 transitions. [2018-11-14 17:18:53,914 INFO L276 IsEmpty]: Start isEmpty. Operand 193 states and 281 transitions. [2018-11-14 17:18:53,914 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:53,914 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:53,914 INFO L74 IsIncluded]: Start isIncluded. First operand 172 states. Second operand 193 states. [2018-11-14 17:18:53,914 INFO L87 Difference]: Start difference. First operand 172 states. Second operand 193 states. [2018-11-14 17:18:53,917 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:53,918 INFO L93 Difference]: Finished difference Result 193 states and 281 transitions. [2018-11-14 17:18:53,918 INFO L276 IsEmpty]: Start isEmpty. Operand 193 states and 281 transitions. [2018-11-14 17:18:53,918 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:53,918 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:53,918 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:53,918 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:53,918 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 172 states. [2018-11-14 17:18:53,921 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 172 states to 172 states and 254 transitions. [2018-11-14 17:18:53,921 INFO L78 Accepts]: Start accepts. Automaton has 172 states and 254 transitions. Word has length 84 [2018-11-14 17:18:53,921 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:53,921 INFO L480 AbstractCegarLoop]: Abstraction has 172 states and 254 transitions. [2018-11-14 17:18:53,921 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:53,921 INFO L276 IsEmpty]: Start isEmpty. Operand 172 states and 254 transitions. [2018-11-14 17:18:53,922 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 86 [2018-11-14 17:18:53,922 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:53,923 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:53,923 INFO L423 AbstractCegarLoop]: === Iteration 12 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:53,923 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:53,923 INFO L82 PathProgramCache]: Analyzing trace with hash -1201084832, now seen corresponding path program 1 times [2018-11-14 17:18:53,923 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:53,923 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:53,924 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:53,925 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:53,925 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:53,939 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:54,599 INFO L256 TraceCheckUtils]: 0: Hoare triple {9859#true} call ULTIMATE.init(); {9859#true} is VALID [2018-11-14 17:18:54,599 INFO L273 TraceCheckUtils]: 1: Hoare triple {9859#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {9859#true} is VALID [2018-11-14 17:18:54,600 INFO L273 TraceCheckUtils]: 2: Hoare triple {9859#true} assume true; {9859#true} is VALID [2018-11-14 17:18:54,600 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {9859#true} {9859#true} #654#return; {9859#true} is VALID [2018-11-14 17:18:54,600 INFO L256 TraceCheckUtils]: 4: Hoare triple {9859#true} call #t~ret138 := main(); {9859#true} is VALID [2018-11-14 17:18:54,600 INFO L273 TraceCheckUtils]: 5: Hoare triple {9859#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,600 INFO L256 TraceCheckUtils]: 6: Hoare triple {9859#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {9859#true} is VALID [2018-11-14 17:18:54,601 INFO L273 TraceCheckUtils]: 7: Hoare triple {9859#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {9859#true} is VALID [2018-11-14 17:18:54,601 INFO L273 TraceCheckUtils]: 8: Hoare triple {9859#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {9859#true} is VALID [2018-11-14 17:18:54,601 INFO L273 TraceCheckUtils]: 9: Hoare triple {9859#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {9859#true} is VALID [2018-11-14 17:18:54,601 INFO L273 TraceCheckUtils]: 10: Hoare triple {9859#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {9859#true} is VALID [2018-11-14 17:18:54,601 INFO L273 TraceCheckUtils]: 11: Hoare triple {9859#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {9859#true} is VALID [2018-11-14 17:18:54,602 INFO L273 TraceCheckUtils]: 12: Hoare triple {9859#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {9859#true} is VALID [2018-11-14 17:18:54,602 INFO L273 TraceCheckUtils]: 13: Hoare triple {9859#true} assume true; {9859#true} is VALID [2018-11-14 17:18:54,602 INFO L273 TraceCheckUtils]: 14: Hoare triple {9859#true} assume !false; {9859#true} is VALID [2018-11-14 17:18:54,602 INFO L273 TraceCheckUtils]: 15: Hoare triple {9859#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,602 INFO L273 TraceCheckUtils]: 16: Hoare triple {9859#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,602 INFO L273 TraceCheckUtils]: 17: Hoare triple {9859#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,603 INFO L273 TraceCheckUtils]: 18: Hoare triple {9859#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,603 INFO L273 TraceCheckUtils]: 19: Hoare triple {9859#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,603 INFO L273 TraceCheckUtils]: 20: Hoare triple {9859#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,603 INFO L273 TraceCheckUtils]: 21: Hoare triple {9859#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,603 INFO L273 TraceCheckUtils]: 22: Hoare triple {9859#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,603 INFO L273 TraceCheckUtils]: 23: Hoare triple {9859#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,604 INFO L273 TraceCheckUtils]: 24: Hoare triple {9859#true} assume #t~mem32 == 8464;havoc #t~mem32; {9859#true} is VALID [2018-11-14 17:18:54,604 INFO L273 TraceCheckUtils]: 25: Hoare triple {9859#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {9859#true} is VALID [2018-11-14 17:18:54,604 INFO L273 TraceCheckUtils]: 26: Hoare triple {9859#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {9859#true} is VALID [2018-11-14 17:18:54,604 INFO L273 TraceCheckUtils]: 27: Hoare triple {9859#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {9859#true} is VALID [2018-11-14 17:18:54,604 INFO L273 TraceCheckUtils]: 28: Hoare triple {9859#true} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {9859#true} is VALID [2018-11-14 17:18:54,604 INFO L273 TraceCheckUtils]: 29: Hoare triple {9859#true} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {9859#true} is VALID [2018-11-14 17:18:54,605 INFO L273 TraceCheckUtils]: 30: Hoare triple {9859#true} ~skip~0 := 0; {9859#true} is VALID [2018-11-14 17:18:54,605 INFO L273 TraceCheckUtils]: 31: Hoare triple {9859#true} assume true; {9859#true} is VALID [2018-11-14 17:18:54,605 INFO L273 TraceCheckUtils]: 32: Hoare triple {9859#true} assume !false; {9859#true} is VALID [2018-11-14 17:18:54,605 INFO L273 TraceCheckUtils]: 33: Hoare triple {9859#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,605 INFO L273 TraceCheckUtils]: 34: Hoare triple {9859#true} assume #t~mem24 == 12292;havoc #t~mem24; {9859#true} is VALID [2018-11-14 17:18:54,605 INFO L273 TraceCheckUtils]: 35: Hoare triple {9859#true} call write~int(1, ~s.base, ~s.offset + 40, 4); {9859#true} is VALID [2018-11-14 17:18:54,606 INFO L273 TraceCheckUtils]: 36: Hoare triple {9859#true} call write~int(1, ~s.base, ~s.offset + 36, 4); {9859#true} is VALID [2018-11-14 17:18:54,606 INFO L273 TraceCheckUtils]: 37: Hoare triple {9859#true} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {9859#true} is VALID [2018-11-14 17:18:54,606 INFO L273 TraceCheckUtils]: 38: Hoare triple {9859#true} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {9859#true} is VALID [2018-11-14 17:18:54,606 INFO L273 TraceCheckUtils]: 39: Hoare triple {9859#true} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {9859#true} is VALID [2018-11-14 17:18:54,606 INFO L273 TraceCheckUtils]: 40: Hoare triple {9859#true} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {9859#true} is VALID [2018-11-14 17:18:54,606 INFO L273 TraceCheckUtils]: 41: Hoare triple {9859#true} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {9859#true} is VALID [2018-11-14 17:18:54,619 INFO L273 TraceCheckUtils]: 42: Hoare triple {9859#true} assume !(#t~mem62 != 12292);havoc #t~mem62;call #t~mem65.base, #t~mem65.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem66 := read~int(#t~mem65.base, #t~mem65.offset + 60 + 16, 4);call write~int(#t~mem66 + 1, #t~mem65.base, #t~mem65.offset + 60 + 16, 4);havoc #t~mem65.base, #t~mem65.offset;havoc #t~mem66;call write~int(8480, ~s.base, ~s.offset + 52, 4); {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,633 INFO L273 TraceCheckUtils]: 43: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,641 INFO L273 TraceCheckUtils]: 44: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,644 INFO L273 TraceCheckUtils]: 45: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} ~skip~0 := 0; {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,645 INFO L273 TraceCheckUtils]: 46: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume true; {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,646 INFO L273 TraceCheckUtils]: 47: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !false; {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,646 INFO L273 TraceCheckUtils]: 48: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,648 INFO L273 TraceCheckUtils]: 49: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,648 INFO L273 TraceCheckUtils]: 50: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,650 INFO L273 TraceCheckUtils]: 51: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,650 INFO L273 TraceCheckUtils]: 52: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:54,652 INFO L273 TraceCheckUtils]: 53: Hoare triple {9861#(= 8480 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {9862#(= 8480 |ssl3_accept_#t~mem29|)} is VALID [2018-11-14 17:18:54,652 INFO L273 TraceCheckUtils]: 54: Hoare triple {9862#(= 8480 |ssl3_accept_#t~mem29|)} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,652 INFO L273 TraceCheckUtils]: 55: Hoare triple {9860#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,652 INFO L273 TraceCheckUtils]: 56: Hoare triple {9860#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,652 INFO L273 TraceCheckUtils]: 57: Hoare triple {9860#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,652 INFO L273 TraceCheckUtils]: 58: Hoare triple {9860#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,653 INFO L273 TraceCheckUtils]: 59: Hoare triple {9860#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,653 INFO L273 TraceCheckUtils]: 60: Hoare triple {9860#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,653 INFO L273 TraceCheckUtils]: 61: Hoare triple {9860#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,653 INFO L273 TraceCheckUtils]: 62: Hoare triple {9860#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,653 INFO L273 TraceCheckUtils]: 63: Hoare triple {9860#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,653 INFO L273 TraceCheckUtils]: 64: Hoare triple {9860#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,653 INFO L273 TraceCheckUtils]: 65: Hoare triple {9860#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,653 INFO L273 TraceCheckUtils]: 66: Hoare triple {9860#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,654 INFO L273 TraceCheckUtils]: 67: Hoare triple {9860#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,654 INFO L273 TraceCheckUtils]: 68: Hoare triple {9860#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,654 INFO L273 TraceCheckUtils]: 69: Hoare triple {9860#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,654 INFO L273 TraceCheckUtils]: 70: Hoare triple {9860#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,654 INFO L273 TraceCheckUtils]: 71: Hoare triple {9860#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,654 INFO L273 TraceCheckUtils]: 72: Hoare triple {9860#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,654 INFO L273 TraceCheckUtils]: 73: Hoare triple {9860#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,654 INFO L273 TraceCheckUtils]: 74: Hoare triple {9860#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,655 INFO L273 TraceCheckUtils]: 75: Hoare triple {9860#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,655 INFO L273 TraceCheckUtils]: 76: Hoare triple {9860#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,655 INFO L273 TraceCheckUtils]: 77: Hoare triple {9860#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,655 INFO L273 TraceCheckUtils]: 78: Hoare triple {9860#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,655 INFO L273 TraceCheckUtils]: 79: Hoare triple {9860#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,655 INFO L273 TraceCheckUtils]: 80: Hoare triple {9860#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {9860#false} is VALID [2018-11-14 17:18:54,655 INFO L273 TraceCheckUtils]: 81: Hoare triple {9860#false} assume #t~mem56 == 8672;havoc #t~mem56; {9860#false} is VALID [2018-11-14 17:18:54,655 INFO L273 TraceCheckUtils]: 82: Hoare triple {9860#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {9860#false} is VALID [2018-11-14 17:18:54,656 INFO L273 TraceCheckUtils]: 83: Hoare triple {9860#false} assume ~blastFlag~0 == 4; {9860#false} is VALID [2018-11-14 17:18:54,656 INFO L273 TraceCheckUtils]: 84: Hoare triple {9860#false} assume !false; {9860#false} is VALID [2018-11-14 17:18:54,660 INFO L134 CoverageAnalysis]: Checked inductivity of 23 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2018-11-14 17:18:54,660 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:54,660 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:54,661 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 85 [2018-11-14 17:18:54,661 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:54,661 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:54,743 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 82 edges. 82 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:54,743 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:54,744 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:54,744 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:54,744 INFO L87 Difference]: Start difference. First operand 172 states and 254 transitions. Second operand 4 states. [2018-11-14 17:18:55,962 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:55,962 INFO L93 Difference]: Finished difference Result 348 states and 523 transitions. [2018-11-14 17:18:55,962 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:55,962 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 85 [2018-11-14 17:18:55,962 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:55,962 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:55,964 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 435 transitions. [2018-11-14 17:18:55,964 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:55,967 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 435 transitions. [2018-11-14 17:18:55,967 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 435 transitions. [2018-11-14 17:18:56,383 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 435 edges. 435 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:56,387 INFO L225 Difference]: With dead ends: 348 [2018-11-14 17:18:56,387 INFO L226 Difference]: Without dead ends: 202 [2018-11-14 17:18:56,388 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:56,388 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 202 states. [2018-11-14 17:18:56,411 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 202 to 189. [2018-11-14 17:18:56,411 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:56,411 INFO L82 GeneralOperation]: Start isEquivalent. First operand 202 states. Second operand 189 states. [2018-11-14 17:18:56,411 INFO L74 IsIncluded]: Start isIncluded. First operand 202 states. Second operand 189 states. [2018-11-14 17:18:56,412 INFO L87 Difference]: Start difference. First operand 202 states. Second operand 189 states. [2018-11-14 17:18:56,415 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:56,416 INFO L93 Difference]: Finished difference Result 202 states and 297 transitions. [2018-11-14 17:18:56,416 INFO L276 IsEmpty]: Start isEmpty. Operand 202 states and 297 transitions. [2018-11-14 17:18:56,416 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:56,416 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:56,417 INFO L74 IsIncluded]: Start isIncluded. First operand 189 states. Second operand 202 states. [2018-11-14 17:18:56,417 INFO L87 Difference]: Start difference. First operand 189 states. Second operand 202 states. [2018-11-14 17:18:56,421 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:56,421 INFO L93 Difference]: Finished difference Result 202 states and 297 transitions. [2018-11-14 17:18:56,421 INFO L276 IsEmpty]: Start isEmpty. Operand 202 states and 297 transitions. [2018-11-14 17:18:56,422 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:56,422 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:56,422 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:56,422 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:56,423 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 189 states. [2018-11-14 17:18:56,426 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 189 states to 189 states and 281 transitions. [2018-11-14 17:18:56,427 INFO L78 Accepts]: Start accepts. Automaton has 189 states and 281 transitions. Word has length 85 [2018-11-14 17:18:56,427 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:56,427 INFO L480 AbstractCegarLoop]: Abstraction has 189 states and 281 transitions. [2018-11-14 17:18:56,427 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:56,427 INFO L276 IsEmpty]: Start isEmpty. Operand 189 states and 281 transitions. [2018-11-14 17:18:56,428 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 86 [2018-11-14 17:18:56,428 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:56,429 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:56,429 INFO L423 AbstractCegarLoop]: === Iteration 13 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:56,429 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:56,429 INFO L82 PathProgramCache]: Analyzing trace with hash -1100881291, now seen corresponding path program 1 times [2018-11-14 17:18:56,429 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:56,429 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:56,431 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:56,431 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:56,431 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:56,445 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:56,638 INFO L256 TraceCheckUtils]: 0: Hoare triple {10904#true} call ULTIMATE.init(); {10904#true} is VALID [2018-11-14 17:18:56,638 INFO L273 TraceCheckUtils]: 1: Hoare triple {10904#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {10904#true} is VALID [2018-11-14 17:18:56,638 INFO L273 TraceCheckUtils]: 2: Hoare triple {10904#true} assume true; {10904#true} is VALID [2018-11-14 17:18:56,639 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {10904#true} {10904#true} #654#return; {10904#true} is VALID [2018-11-14 17:18:56,639 INFO L256 TraceCheckUtils]: 4: Hoare triple {10904#true} call #t~ret138 := main(); {10904#true} is VALID [2018-11-14 17:18:56,639 INFO L273 TraceCheckUtils]: 5: Hoare triple {10904#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,639 INFO L256 TraceCheckUtils]: 6: Hoare triple {10904#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {10904#true} is VALID [2018-11-14 17:18:56,639 INFO L273 TraceCheckUtils]: 7: Hoare triple {10904#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {10904#true} is VALID [2018-11-14 17:18:56,640 INFO L273 TraceCheckUtils]: 8: Hoare triple {10904#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {10904#true} is VALID [2018-11-14 17:18:56,640 INFO L273 TraceCheckUtils]: 9: Hoare triple {10904#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {10904#true} is VALID [2018-11-14 17:18:56,640 INFO L273 TraceCheckUtils]: 10: Hoare triple {10904#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {10904#true} is VALID [2018-11-14 17:18:56,640 INFO L273 TraceCheckUtils]: 11: Hoare triple {10904#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {10904#true} is VALID [2018-11-14 17:18:56,641 INFO L273 TraceCheckUtils]: 12: Hoare triple {10904#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {10904#true} is VALID [2018-11-14 17:18:56,641 INFO L273 TraceCheckUtils]: 13: Hoare triple {10904#true} assume true; {10904#true} is VALID [2018-11-14 17:18:56,641 INFO L273 TraceCheckUtils]: 14: Hoare triple {10904#true} assume !false; {10904#true} is VALID [2018-11-14 17:18:56,641 INFO L273 TraceCheckUtils]: 15: Hoare triple {10904#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,641 INFO L273 TraceCheckUtils]: 16: Hoare triple {10904#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,641 INFO L273 TraceCheckUtils]: 17: Hoare triple {10904#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,641 INFO L273 TraceCheckUtils]: 18: Hoare triple {10904#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,641 INFO L273 TraceCheckUtils]: 19: Hoare triple {10904#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,642 INFO L273 TraceCheckUtils]: 20: Hoare triple {10904#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,642 INFO L273 TraceCheckUtils]: 21: Hoare triple {10904#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,642 INFO L273 TraceCheckUtils]: 22: Hoare triple {10904#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,642 INFO L273 TraceCheckUtils]: 23: Hoare triple {10904#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {10904#true} is VALID [2018-11-14 17:18:56,642 INFO L273 TraceCheckUtils]: 24: Hoare triple {10904#true} assume #t~mem32 == 8464;havoc #t~mem32; {10904#true} is VALID [2018-11-14 17:18:56,642 INFO L273 TraceCheckUtils]: 25: Hoare triple {10904#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {10904#true} is VALID [2018-11-14 17:18:56,642 INFO L273 TraceCheckUtils]: 26: Hoare triple {10904#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {10904#true} is VALID [2018-11-14 17:18:56,643 INFO L273 TraceCheckUtils]: 27: Hoare triple {10904#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,643 INFO L273 TraceCheckUtils]: 28: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,644 INFO L273 TraceCheckUtils]: 29: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,644 INFO L273 TraceCheckUtils]: 30: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} ~skip~0 := 0; {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,644 INFO L273 TraceCheckUtils]: 31: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume true; {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,645 INFO L273 TraceCheckUtils]: 32: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !false; {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,645 INFO L273 TraceCheckUtils]: 33: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,645 INFO L273 TraceCheckUtils]: 34: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,646 INFO L273 TraceCheckUtils]: 35: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,646 INFO L273 TraceCheckUtils]: 36: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,647 INFO L273 TraceCheckUtils]: 37: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,647 INFO L273 TraceCheckUtils]: 38: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:56,648 INFO L273 TraceCheckUtils]: 39: Hoare triple {10906#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {10907#(= |ssl3_accept_#t~mem30| 8496)} is VALID [2018-11-14 17:18:56,649 INFO L273 TraceCheckUtils]: 40: Hoare triple {10907#(= |ssl3_accept_#t~mem30| 8496)} assume #t~mem30 == 8481;havoc #t~mem30; {10905#false} is VALID [2018-11-14 17:18:56,649 INFO L273 TraceCheckUtils]: 41: Hoare triple {10905#false} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet67 && #t~nondet67 <= 2147483647;~ret~0 := #t~nondet67;havoc #t~nondet67; {10905#false} is VALID [2018-11-14 17:18:56,649 INFO L273 TraceCheckUtils]: 42: Hoare triple {10905#false} assume !(~ret~0 <= 0);call #t~mem68.base, #t~mem68.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call write~int(8482, #t~mem68.base, #t~mem68.offset + 604 + 240, 4);havoc #t~mem68.base, #t~mem68.offset;call write~int(8448, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {10905#false} is VALID [2018-11-14 17:18:56,649 INFO L273 TraceCheckUtils]: 43: Hoare triple {10905#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {10905#false} is VALID [2018-11-14 17:18:56,649 INFO L273 TraceCheckUtils]: 44: Hoare triple {10905#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {10905#false} is VALID [2018-11-14 17:18:56,650 INFO L273 TraceCheckUtils]: 45: Hoare triple {10905#false} ~skip~0 := 0; {10905#false} is VALID [2018-11-14 17:18:56,650 INFO L273 TraceCheckUtils]: 46: Hoare triple {10905#false} assume true; {10905#false} is VALID [2018-11-14 17:18:56,650 INFO L273 TraceCheckUtils]: 47: Hoare triple {10905#false} assume !false; {10905#false} is VALID [2018-11-14 17:18:56,650 INFO L273 TraceCheckUtils]: 48: Hoare triple {10905#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,650 INFO L273 TraceCheckUtils]: 49: Hoare triple {10905#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,651 INFO L273 TraceCheckUtils]: 50: Hoare triple {10905#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,651 INFO L273 TraceCheckUtils]: 51: Hoare triple {10905#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,651 INFO L273 TraceCheckUtils]: 52: Hoare triple {10905#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,651 INFO L273 TraceCheckUtils]: 53: Hoare triple {10905#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,652 INFO L273 TraceCheckUtils]: 54: Hoare triple {10905#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,652 INFO L273 TraceCheckUtils]: 55: Hoare triple {10905#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,652 INFO L273 TraceCheckUtils]: 56: Hoare triple {10905#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,652 INFO L273 TraceCheckUtils]: 57: Hoare triple {10905#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,652 INFO L273 TraceCheckUtils]: 58: Hoare triple {10905#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,653 INFO L273 TraceCheckUtils]: 59: Hoare triple {10905#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,653 INFO L273 TraceCheckUtils]: 60: Hoare triple {10905#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,653 INFO L273 TraceCheckUtils]: 61: Hoare triple {10905#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,653 INFO L273 TraceCheckUtils]: 62: Hoare triple {10905#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,653 INFO L273 TraceCheckUtils]: 63: Hoare triple {10905#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,654 INFO L273 TraceCheckUtils]: 64: Hoare triple {10905#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,654 INFO L273 TraceCheckUtils]: 65: Hoare triple {10905#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,654 INFO L273 TraceCheckUtils]: 66: Hoare triple {10905#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,654 INFO L273 TraceCheckUtils]: 67: Hoare triple {10905#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,654 INFO L273 TraceCheckUtils]: 68: Hoare triple {10905#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,654 INFO L273 TraceCheckUtils]: 69: Hoare triple {10905#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,654 INFO L273 TraceCheckUtils]: 70: Hoare triple {10905#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,655 INFO L273 TraceCheckUtils]: 71: Hoare triple {10905#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,655 INFO L273 TraceCheckUtils]: 72: Hoare triple {10905#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,655 INFO L273 TraceCheckUtils]: 73: Hoare triple {10905#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,655 INFO L273 TraceCheckUtils]: 74: Hoare triple {10905#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,655 INFO L273 TraceCheckUtils]: 75: Hoare triple {10905#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,655 INFO L273 TraceCheckUtils]: 76: Hoare triple {10905#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,655 INFO L273 TraceCheckUtils]: 77: Hoare triple {10905#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,655 INFO L273 TraceCheckUtils]: 78: Hoare triple {10905#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,656 INFO L273 TraceCheckUtils]: 79: Hoare triple {10905#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,656 INFO L273 TraceCheckUtils]: 80: Hoare triple {10905#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {10905#false} is VALID [2018-11-14 17:18:56,656 INFO L273 TraceCheckUtils]: 81: Hoare triple {10905#false} assume #t~mem56 == 8672;havoc #t~mem56; {10905#false} is VALID [2018-11-14 17:18:56,656 INFO L273 TraceCheckUtils]: 82: Hoare triple {10905#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {10905#false} is VALID [2018-11-14 17:18:56,656 INFO L273 TraceCheckUtils]: 83: Hoare triple {10905#false} assume ~blastFlag~0 == 4; {10905#false} is VALID [2018-11-14 17:18:56,656 INFO L273 TraceCheckUtils]: 84: Hoare triple {10905#false} assume !false; {10905#false} is VALID [2018-11-14 17:18:56,660 INFO L134 CoverageAnalysis]: Checked inductivity of 35 backedges. 35 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:56,661 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:56,661 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:56,661 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 85 [2018-11-14 17:18:56,662 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:56,662 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:56,763 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 85 edges. 85 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:56,763 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:56,763 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:56,763 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:56,764 INFO L87 Difference]: Start difference. First operand 189 states and 281 transitions. Second operand 4 states. [2018-11-14 17:18:57,575 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:57,575 INFO L93 Difference]: Finished difference Result 371 states and 558 transitions. [2018-11-14 17:18:57,575 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:57,575 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 85 [2018-11-14 17:18:57,575 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:57,575 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:57,577 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 454 transitions. [2018-11-14 17:18:57,578 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:57,580 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 454 transitions. [2018-11-14 17:18:57,580 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 454 transitions. [2018-11-14 17:18:57,992 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 454 edges. 454 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:57,996 INFO L225 Difference]: With dead ends: 371 [2018-11-14 17:18:57,997 INFO L226 Difference]: Without dead ends: 208 [2018-11-14 17:18:57,997 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:57,998 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 208 states. [2018-11-14 17:18:58,019 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 208 to 189. [2018-11-14 17:18:58,020 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:58,020 INFO L82 GeneralOperation]: Start isEquivalent. First operand 208 states. Second operand 189 states. [2018-11-14 17:18:58,020 INFO L74 IsIncluded]: Start isIncluded. First operand 208 states. Second operand 189 states. [2018-11-14 17:18:58,020 INFO L87 Difference]: Start difference. First operand 208 states. Second operand 189 states. [2018-11-14 17:18:58,024 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:58,024 INFO L93 Difference]: Finished difference Result 208 states and 305 transitions. [2018-11-14 17:18:58,024 INFO L276 IsEmpty]: Start isEmpty. Operand 208 states and 305 transitions. [2018-11-14 17:18:58,025 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:58,025 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:58,025 INFO L74 IsIncluded]: Start isIncluded. First operand 189 states. Second operand 208 states. [2018-11-14 17:18:58,025 INFO L87 Difference]: Start difference. First operand 189 states. Second operand 208 states. [2018-11-14 17:18:58,028 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:58,028 INFO L93 Difference]: Finished difference Result 208 states and 305 transitions. [2018-11-14 17:18:58,028 INFO L276 IsEmpty]: Start isEmpty. Operand 208 states and 305 transitions. [2018-11-14 17:18:58,029 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:58,029 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:58,029 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:58,029 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:58,029 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 189 states. [2018-11-14 17:18:58,032 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 189 states to 189 states and 280 transitions. [2018-11-14 17:18:58,032 INFO L78 Accepts]: Start accepts. Automaton has 189 states and 280 transitions. Word has length 85 [2018-11-14 17:18:58,032 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:58,032 INFO L480 AbstractCegarLoop]: Abstraction has 189 states and 280 transitions. [2018-11-14 17:18:58,032 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:58,032 INFO L276 IsEmpty]: Start isEmpty. Operand 189 states and 280 transitions. [2018-11-14 17:18:58,033 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 86 [2018-11-14 17:18:58,033 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:58,034 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:58,034 INFO L423 AbstractCegarLoop]: === Iteration 14 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:58,034 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:58,034 INFO L82 PathProgramCache]: Analyzing trace with hash 1534413972, now seen corresponding path program 1 times [2018-11-14 17:18:58,034 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:58,035 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:58,035 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:58,035 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:58,036 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:58,049 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:58,250 INFO L256 TraceCheckUtils]: 0: Hoare triple {11988#true} call ULTIMATE.init(); {11988#true} is VALID [2018-11-14 17:18:58,250 INFO L273 TraceCheckUtils]: 1: Hoare triple {11988#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {11988#true} is VALID [2018-11-14 17:18:58,250 INFO L273 TraceCheckUtils]: 2: Hoare triple {11988#true} assume true; {11988#true} is VALID [2018-11-14 17:18:58,250 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {11988#true} {11988#true} #654#return; {11988#true} is VALID [2018-11-14 17:18:58,251 INFO L256 TraceCheckUtils]: 4: Hoare triple {11988#true} call #t~ret138 := main(); {11988#true} is VALID [2018-11-14 17:18:58,251 INFO L273 TraceCheckUtils]: 5: Hoare triple {11988#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,251 INFO L256 TraceCheckUtils]: 6: Hoare triple {11988#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {11988#true} is VALID [2018-11-14 17:18:58,251 INFO L273 TraceCheckUtils]: 7: Hoare triple {11988#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {11988#true} is VALID [2018-11-14 17:18:58,252 INFO L273 TraceCheckUtils]: 8: Hoare triple {11988#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {11988#true} is VALID [2018-11-14 17:18:58,252 INFO L273 TraceCheckUtils]: 9: Hoare triple {11988#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {11988#true} is VALID [2018-11-14 17:18:58,252 INFO L273 TraceCheckUtils]: 10: Hoare triple {11988#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {11988#true} is VALID [2018-11-14 17:18:58,252 INFO L273 TraceCheckUtils]: 11: Hoare triple {11988#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {11988#true} is VALID [2018-11-14 17:18:58,252 INFO L273 TraceCheckUtils]: 12: Hoare triple {11988#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {11988#true} is VALID [2018-11-14 17:18:58,253 INFO L273 TraceCheckUtils]: 13: Hoare triple {11988#true} assume true; {11988#true} is VALID [2018-11-14 17:18:58,253 INFO L273 TraceCheckUtils]: 14: Hoare triple {11988#true} assume !false; {11988#true} is VALID [2018-11-14 17:18:58,253 INFO L273 TraceCheckUtils]: 15: Hoare triple {11988#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,253 INFO L273 TraceCheckUtils]: 16: Hoare triple {11988#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,254 INFO L273 TraceCheckUtils]: 17: Hoare triple {11988#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,254 INFO L273 TraceCheckUtils]: 18: Hoare triple {11988#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,254 INFO L273 TraceCheckUtils]: 19: Hoare triple {11988#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,254 INFO L273 TraceCheckUtils]: 20: Hoare triple {11988#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,254 INFO L273 TraceCheckUtils]: 21: Hoare triple {11988#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,254 INFO L273 TraceCheckUtils]: 22: Hoare triple {11988#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,254 INFO L273 TraceCheckUtils]: 23: Hoare triple {11988#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {11988#true} is VALID [2018-11-14 17:18:58,255 INFO L273 TraceCheckUtils]: 24: Hoare triple {11988#true} assume #t~mem32 == 8464;havoc #t~mem32; {11988#true} is VALID [2018-11-14 17:18:58,255 INFO L273 TraceCheckUtils]: 25: Hoare triple {11988#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {11988#true} is VALID [2018-11-14 17:18:58,255 INFO L273 TraceCheckUtils]: 26: Hoare triple {11988#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {11988#true} is VALID [2018-11-14 17:18:58,255 INFO L273 TraceCheckUtils]: 27: Hoare triple {11988#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,256 INFO L273 TraceCheckUtils]: 28: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,256 INFO L273 TraceCheckUtils]: 29: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,256 INFO L273 TraceCheckUtils]: 30: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} ~skip~0 := 0; {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,257 INFO L273 TraceCheckUtils]: 31: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume true; {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,257 INFO L273 TraceCheckUtils]: 32: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !false; {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,257 INFO L273 TraceCheckUtils]: 33: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,258 INFO L273 TraceCheckUtils]: 34: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,258 INFO L273 TraceCheckUtils]: 35: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,259 INFO L273 TraceCheckUtils]: 36: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,259 INFO L273 TraceCheckUtils]: 37: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,260 INFO L273 TraceCheckUtils]: 38: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,260 INFO L273 TraceCheckUtils]: 39: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:18:58,261 INFO L273 TraceCheckUtils]: 40: Hoare triple {11990#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {11991#(= |ssl3_accept_#t~mem31| 8496)} is VALID [2018-11-14 17:18:58,279 INFO L273 TraceCheckUtils]: 41: Hoare triple {11991#(= |ssl3_accept_#t~mem31| 8496)} assume #t~mem31 == 8482;havoc #t~mem31; {11989#false} is VALID [2018-11-14 17:18:58,279 INFO L273 TraceCheckUtils]: 42: Hoare triple {11989#false} call write~int(3, ~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,279 INFO L273 TraceCheckUtils]: 43: Hoare triple {11989#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {11989#false} is VALID [2018-11-14 17:18:58,279 INFO L273 TraceCheckUtils]: 44: Hoare triple {11989#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {11989#false} is VALID [2018-11-14 17:18:58,280 INFO L273 TraceCheckUtils]: 45: Hoare triple {11989#false} ~skip~0 := 0; {11989#false} is VALID [2018-11-14 17:18:58,280 INFO L273 TraceCheckUtils]: 46: Hoare triple {11989#false} assume true; {11989#false} is VALID [2018-11-14 17:18:58,280 INFO L273 TraceCheckUtils]: 47: Hoare triple {11989#false} assume !false; {11989#false} is VALID [2018-11-14 17:18:58,280 INFO L273 TraceCheckUtils]: 48: Hoare triple {11989#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,280 INFO L273 TraceCheckUtils]: 49: Hoare triple {11989#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,281 INFO L273 TraceCheckUtils]: 50: Hoare triple {11989#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,281 INFO L273 TraceCheckUtils]: 51: Hoare triple {11989#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,281 INFO L273 TraceCheckUtils]: 52: Hoare triple {11989#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,281 INFO L273 TraceCheckUtils]: 53: Hoare triple {11989#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,281 INFO L273 TraceCheckUtils]: 54: Hoare triple {11989#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,281 INFO L273 TraceCheckUtils]: 55: Hoare triple {11989#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,282 INFO L273 TraceCheckUtils]: 56: Hoare triple {11989#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,282 INFO L273 TraceCheckUtils]: 57: Hoare triple {11989#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,282 INFO L273 TraceCheckUtils]: 58: Hoare triple {11989#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,282 INFO L273 TraceCheckUtils]: 59: Hoare triple {11989#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,282 INFO L273 TraceCheckUtils]: 60: Hoare triple {11989#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,282 INFO L273 TraceCheckUtils]: 61: Hoare triple {11989#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,283 INFO L273 TraceCheckUtils]: 62: Hoare triple {11989#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,283 INFO L273 TraceCheckUtils]: 63: Hoare triple {11989#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,283 INFO L273 TraceCheckUtils]: 64: Hoare triple {11989#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,283 INFO L273 TraceCheckUtils]: 65: Hoare triple {11989#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,283 INFO L273 TraceCheckUtils]: 66: Hoare triple {11989#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,283 INFO L273 TraceCheckUtils]: 67: Hoare triple {11989#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,284 INFO L273 TraceCheckUtils]: 68: Hoare triple {11989#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,284 INFO L273 TraceCheckUtils]: 69: Hoare triple {11989#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,284 INFO L273 TraceCheckUtils]: 70: Hoare triple {11989#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,284 INFO L273 TraceCheckUtils]: 71: Hoare triple {11989#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,284 INFO L273 TraceCheckUtils]: 72: Hoare triple {11989#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,284 INFO L273 TraceCheckUtils]: 73: Hoare triple {11989#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,285 INFO L273 TraceCheckUtils]: 74: Hoare triple {11989#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,285 INFO L273 TraceCheckUtils]: 75: Hoare triple {11989#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,285 INFO L273 TraceCheckUtils]: 76: Hoare triple {11989#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,285 INFO L273 TraceCheckUtils]: 77: Hoare triple {11989#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,285 INFO L273 TraceCheckUtils]: 78: Hoare triple {11989#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,285 INFO L273 TraceCheckUtils]: 79: Hoare triple {11989#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,285 INFO L273 TraceCheckUtils]: 80: Hoare triple {11989#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {11989#false} is VALID [2018-11-14 17:18:58,286 INFO L273 TraceCheckUtils]: 81: Hoare triple {11989#false} assume #t~mem56 == 8672;havoc #t~mem56; {11989#false} is VALID [2018-11-14 17:18:58,286 INFO L273 TraceCheckUtils]: 82: Hoare triple {11989#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {11989#false} is VALID [2018-11-14 17:18:58,286 INFO L273 TraceCheckUtils]: 83: Hoare triple {11989#false} assume ~blastFlag~0 == 4; {11989#false} is VALID [2018-11-14 17:18:58,286 INFO L273 TraceCheckUtils]: 84: Hoare triple {11989#false} assume !false; {11989#false} is VALID [2018-11-14 17:18:58,292 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 37 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:18:58,292 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:58,292 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:18:58,292 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 85 [2018-11-14 17:18:58,293 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:58,293 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:18:58,384 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 85 edges. 85 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:58,385 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:18:58,385 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:18:58,385 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:18:58,386 INFO L87 Difference]: Start difference. First operand 189 states and 280 transitions. Second operand 4 states. [2018-11-14 17:18:59,218 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:59,218 INFO L93 Difference]: Finished difference Result 370 states and 555 transitions. [2018-11-14 17:18:59,218 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:18:59,218 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 85 [2018-11-14 17:18:59,218 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:18:59,218 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:59,220 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 452 transitions. [2018-11-14 17:18:59,220 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:18:59,222 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 452 transitions. [2018-11-14 17:18:59,222 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 452 transitions. [2018-11-14 17:18:59,633 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 452 edges. 452 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:59,637 INFO L225 Difference]: With dead ends: 370 [2018-11-14 17:18:59,638 INFO L226 Difference]: Without dead ends: 207 [2018-11-14 17:18:59,638 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:59,639 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 207 states. [2018-11-14 17:18:59,662 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 207 to 189. [2018-11-14 17:18:59,663 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:18:59,663 INFO L82 GeneralOperation]: Start isEquivalent. First operand 207 states. Second operand 189 states. [2018-11-14 17:18:59,663 INFO L74 IsIncluded]: Start isIncluded. First operand 207 states. Second operand 189 states. [2018-11-14 17:18:59,663 INFO L87 Difference]: Start difference. First operand 207 states. Second operand 189 states. [2018-11-14 17:18:59,667 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:59,667 INFO L93 Difference]: Finished difference Result 207 states and 303 transitions. [2018-11-14 17:18:59,668 INFO L276 IsEmpty]: Start isEmpty. Operand 207 states and 303 transitions. [2018-11-14 17:18:59,668 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:59,668 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:59,668 INFO L74 IsIncluded]: Start isIncluded. First operand 189 states. Second operand 207 states. [2018-11-14 17:18:59,668 INFO L87 Difference]: Start difference. First operand 189 states. Second operand 207 states. [2018-11-14 17:18:59,672 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:18:59,672 INFO L93 Difference]: Finished difference Result 207 states and 303 transitions. [2018-11-14 17:18:59,672 INFO L276 IsEmpty]: Start isEmpty. Operand 207 states and 303 transitions. [2018-11-14 17:18:59,672 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:18:59,672 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:18:59,673 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:18:59,673 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:18:59,673 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 189 states. [2018-11-14 17:18:59,676 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 189 states to 189 states and 279 transitions. [2018-11-14 17:18:59,676 INFO L78 Accepts]: Start accepts. Automaton has 189 states and 279 transitions. Word has length 85 [2018-11-14 17:18:59,676 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:18:59,676 INFO L480 AbstractCegarLoop]: Abstraction has 189 states and 279 transitions. [2018-11-14 17:18:59,676 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:18:59,676 INFO L276 IsEmpty]: Start isEmpty. Operand 189 states and 279 transitions. [2018-11-14 17:18:59,677 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 87 [2018-11-14 17:18:59,677 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:18:59,677 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:18:59,678 INFO L423 AbstractCegarLoop]: === Iteration 15 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:18:59,678 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:18:59,678 INFO L82 PathProgramCache]: Analyzing trace with hash 2077787515, now seen corresponding path program 1 times [2018-11-14 17:18:59,678 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:18:59,678 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:18:59,679 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:59,679 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:18:59,680 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:18:59,693 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:18:59,827 INFO L256 TraceCheckUtils]: 0: Hoare triple {13068#true} call ULTIMATE.init(); {13068#true} is VALID [2018-11-14 17:18:59,827 INFO L273 TraceCheckUtils]: 1: Hoare triple {13068#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {13068#true} is VALID [2018-11-14 17:18:59,827 INFO L273 TraceCheckUtils]: 2: Hoare triple {13068#true} assume true; {13068#true} is VALID [2018-11-14 17:18:59,828 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {13068#true} {13068#true} #654#return; {13068#true} is VALID [2018-11-14 17:18:59,828 INFO L256 TraceCheckUtils]: 4: Hoare triple {13068#true} call #t~ret138 := main(); {13068#true} is VALID [2018-11-14 17:18:59,828 INFO L273 TraceCheckUtils]: 5: Hoare triple {13068#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,828 INFO L256 TraceCheckUtils]: 6: Hoare triple {13068#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {13068#true} is VALID [2018-11-14 17:18:59,828 INFO L273 TraceCheckUtils]: 7: Hoare triple {13068#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {13068#true} is VALID [2018-11-14 17:18:59,829 INFO L273 TraceCheckUtils]: 8: Hoare triple {13068#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {13068#true} is VALID [2018-11-14 17:18:59,829 INFO L273 TraceCheckUtils]: 9: Hoare triple {13068#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {13068#true} is VALID [2018-11-14 17:18:59,829 INFO L273 TraceCheckUtils]: 10: Hoare triple {13068#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {13068#true} is VALID [2018-11-14 17:18:59,829 INFO L273 TraceCheckUtils]: 11: Hoare triple {13068#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {13068#true} is VALID [2018-11-14 17:18:59,830 INFO L273 TraceCheckUtils]: 12: Hoare triple {13068#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {13068#true} is VALID [2018-11-14 17:18:59,830 INFO L273 TraceCheckUtils]: 13: Hoare triple {13068#true} assume true; {13068#true} is VALID [2018-11-14 17:18:59,830 INFO L273 TraceCheckUtils]: 14: Hoare triple {13068#true} assume !false; {13068#true} is VALID [2018-11-14 17:18:59,830 INFO L273 TraceCheckUtils]: 15: Hoare triple {13068#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,830 INFO L273 TraceCheckUtils]: 16: Hoare triple {13068#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,831 INFO L273 TraceCheckUtils]: 17: Hoare triple {13068#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,831 INFO L273 TraceCheckUtils]: 18: Hoare triple {13068#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,831 INFO L273 TraceCheckUtils]: 19: Hoare triple {13068#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,831 INFO L273 TraceCheckUtils]: 20: Hoare triple {13068#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,831 INFO L273 TraceCheckUtils]: 21: Hoare triple {13068#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,831 INFO L273 TraceCheckUtils]: 22: Hoare triple {13068#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,831 INFO L273 TraceCheckUtils]: 23: Hoare triple {13068#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {13068#true} is VALID [2018-11-14 17:18:59,832 INFO L273 TraceCheckUtils]: 24: Hoare triple {13068#true} assume #t~mem32 == 8464;havoc #t~mem32; {13068#true} is VALID [2018-11-14 17:18:59,832 INFO L273 TraceCheckUtils]: 25: Hoare triple {13068#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {13068#true} is VALID [2018-11-14 17:18:59,832 INFO L273 TraceCheckUtils]: 26: Hoare triple {13068#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {13068#true} is VALID [2018-11-14 17:18:59,832 INFO L273 TraceCheckUtils]: 27: Hoare triple {13068#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {13068#true} is VALID [2018-11-14 17:18:59,832 INFO L273 TraceCheckUtils]: 28: Hoare triple {13068#true} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {13068#true} is VALID [2018-11-14 17:18:59,832 INFO L273 TraceCheckUtils]: 29: Hoare triple {13068#true} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {13068#true} is VALID [2018-11-14 17:18:59,832 INFO L273 TraceCheckUtils]: 30: Hoare triple {13068#true} ~skip~0 := 0; {13068#true} is VALID [2018-11-14 17:18:59,832 INFO L273 TraceCheckUtils]: 31: Hoare triple {13068#true} assume true; {13068#true} is VALID [2018-11-14 17:18:59,833 INFO L273 TraceCheckUtils]: 32: Hoare triple {13068#true} assume !false; {13068#true} is VALID [2018-11-14 17:18:59,833 INFO L273 TraceCheckUtils]: 33: Hoare triple {13068#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {13070#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) |ssl3_accept_#t~mem24|)} is VALID [2018-11-14 17:18:59,833 INFO L273 TraceCheckUtils]: 34: Hoare triple {13070#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) |ssl3_accept_#t~mem24|)} assume #t~mem24 == 12292;havoc #t~mem24; {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:59,834 INFO L273 TraceCheckUtils]: 35: Hoare triple {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} call write~int(1, ~s.base, ~s.offset + 40, 4); {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:59,835 INFO L273 TraceCheckUtils]: 36: Hoare triple {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} call write~int(1, ~s.base, ~s.offset + 36, 4); {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:59,838 INFO L273 TraceCheckUtils]: 37: Hoare triple {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:59,838 INFO L273 TraceCheckUtils]: 38: Hoare triple {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:59,839 INFO L273 TraceCheckUtils]: 39: Hoare triple {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:59,839 INFO L273 TraceCheckUtils]: 40: Hoare triple {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} is VALID [2018-11-14 17:18:59,840 INFO L273 TraceCheckUtils]: 41: Hoare triple {13071#(= 12292 (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)))} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {13072#(= 12292 |ssl3_accept_#t~mem62|)} is VALID [2018-11-14 17:18:59,840 INFO L273 TraceCheckUtils]: 42: Hoare triple {13072#(= 12292 |ssl3_accept_#t~mem62|)} assume #t~mem62 != 12292;havoc #t~mem62; {13069#false} is VALID [2018-11-14 17:18:59,840 INFO L273 TraceCheckUtils]: 43: Hoare triple {13069#false} assume !(~tmp___5~0 == 0);call write~int(8464, ~s.base, ~s.offset + 52, 4);call #t~mem63.base, #t~mem63.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem64 := read~int(#t~mem63.base, #t~mem63.offset + 60 + 12, 4);call write~int(#t~mem64 + 1, #t~mem63.base, #t~mem63.offset + 60 + 12, 4);havoc #t~mem64;havoc #t~mem63.base, #t~mem63.offset; {13069#false} is VALID [2018-11-14 17:18:59,841 INFO L273 TraceCheckUtils]: 44: Hoare triple {13069#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {13069#false} is VALID [2018-11-14 17:18:59,841 INFO L273 TraceCheckUtils]: 45: Hoare triple {13069#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {13069#false} is VALID [2018-11-14 17:18:59,841 INFO L273 TraceCheckUtils]: 46: Hoare triple {13069#false} ~skip~0 := 0; {13069#false} is VALID [2018-11-14 17:18:59,841 INFO L273 TraceCheckUtils]: 47: Hoare triple {13069#false} assume true; {13069#false} is VALID [2018-11-14 17:18:59,841 INFO L273 TraceCheckUtils]: 48: Hoare triple {13069#false} assume !false; {13069#false} is VALID [2018-11-14 17:18:59,841 INFO L273 TraceCheckUtils]: 49: Hoare triple {13069#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,842 INFO L273 TraceCheckUtils]: 50: Hoare triple {13069#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,842 INFO L273 TraceCheckUtils]: 51: Hoare triple {13069#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,842 INFO L273 TraceCheckUtils]: 52: Hoare triple {13069#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,842 INFO L273 TraceCheckUtils]: 53: Hoare triple {13069#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,843 INFO L273 TraceCheckUtils]: 54: Hoare triple {13069#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,843 INFO L273 TraceCheckUtils]: 55: Hoare triple {13069#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,843 INFO L273 TraceCheckUtils]: 56: Hoare triple {13069#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,843 INFO L273 TraceCheckUtils]: 57: Hoare triple {13069#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,843 INFO L273 TraceCheckUtils]: 58: Hoare triple {13069#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,844 INFO L273 TraceCheckUtils]: 59: Hoare triple {13069#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,844 INFO L273 TraceCheckUtils]: 60: Hoare triple {13069#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,844 INFO L273 TraceCheckUtils]: 61: Hoare triple {13069#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,844 INFO L273 TraceCheckUtils]: 62: Hoare triple {13069#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,844 INFO L273 TraceCheckUtils]: 63: Hoare triple {13069#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,844 INFO L273 TraceCheckUtils]: 64: Hoare triple {13069#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,844 INFO L273 TraceCheckUtils]: 65: Hoare triple {13069#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,845 INFO L273 TraceCheckUtils]: 66: Hoare triple {13069#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,845 INFO L273 TraceCheckUtils]: 67: Hoare triple {13069#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,845 INFO L273 TraceCheckUtils]: 68: Hoare triple {13069#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,845 INFO L273 TraceCheckUtils]: 69: Hoare triple {13069#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,845 INFO L273 TraceCheckUtils]: 70: Hoare triple {13069#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,845 INFO L273 TraceCheckUtils]: 71: Hoare triple {13069#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,845 INFO L273 TraceCheckUtils]: 72: Hoare triple {13069#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,845 INFO L273 TraceCheckUtils]: 73: Hoare triple {13069#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,846 INFO L273 TraceCheckUtils]: 74: Hoare triple {13069#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,846 INFO L273 TraceCheckUtils]: 75: Hoare triple {13069#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,846 INFO L273 TraceCheckUtils]: 76: Hoare triple {13069#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,846 INFO L273 TraceCheckUtils]: 77: Hoare triple {13069#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,846 INFO L273 TraceCheckUtils]: 78: Hoare triple {13069#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,846 INFO L273 TraceCheckUtils]: 79: Hoare triple {13069#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,846 INFO L273 TraceCheckUtils]: 80: Hoare triple {13069#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,846 INFO L273 TraceCheckUtils]: 81: Hoare triple {13069#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {13069#false} is VALID [2018-11-14 17:18:59,847 INFO L273 TraceCheckUtils]: 82: Hoare triple {13069#false} assume #t~mem56 == 8672;havoc #t~mem56; {13069#false} is VALID [2018-11-14 17:18:59,847 INFO L273 TraceCheckUtils]: 83: Hoare triple {13069#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {13069#false} is VALID [2018-11-14 17:18:59,847 INFO L273 TraceCheckUtils]: 84: Hoare triple {13069#false} assume ~blastFlag~0 == 4; {13069#false} is VALID [2018-11-14 17:18:59,847 INFO L273 TraceCheckUtils]: 85: Hoare triple {13069#false} assume !false; {13069#false} is VALID [2018-11-14 17:18:59,851 INFO L134 CoverageAnalysis]: Checked inductivity of 23 backedges. 20 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2018-11-14 17:18:59,851 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:18:59,851 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2018-11-14 17:18:59,851 INFO L78 Accepts]: Start accepts. Automaton has 5 states. Word has length 86 [2018-11-14 17:18:59,851 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:18:59,852 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 5 states. [2018-11-14 17:18:59,930 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 84 edges. 84 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:18:59,931 INFO L459 AbstractCegarLoop]: Interpolant automaton has 5 states [2018-11-14 17:18:59,931 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2018-11-14 17:18:59,931 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:18:59,932 INFO L87 Difference]: Start difference. First operand 189 states and 279 transitions. Second operand 5 states. [2018-11-14 17:19:01,054 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:01,054 INFO L93 Difference]: Finished difference Result 361 states and 541 transitions. [2018-11-14 17:19:01,054 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2018-11-14 17:19:01,054 INFO L78 Accepts]: Start accepts. Automaton has 5 states. Word has length 86 [2018-11-14 17:19:01,055 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:19:01,055 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 5 states. [2018-11-14 17:19:01,057 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5 states to 5 states and 403 transitions. [2018-11-14 17:19:01,057 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 5 states. [2018-11-14 17:19:01,059 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5 states to 5 states and 403 transitions. [2018-11-14 17:19:01,059 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 5 states and 403 transitions. [2018-11-14 17:19:01,453 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 403 edges. 403 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:01,457 INFO L225 Difference]: With dead ends: 361 [2018-11-14 17:19:01,457 INFO L226 Difference]: Without dead ends: 198 [2018-11-14 17:19:01,458 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 2 SyntacticMatches, 4 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2018-11-14 17:19:01,458 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 198 states. [2018-11-14 17:19:01,491 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 198 to 198. [2018-11-14 17:19:01,491 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:19:01,491 INFO L82 GeneralOperation]: Start isEquivalent. First operand 198 states. Second operand 198 states. [2018-11-14 17:19:01,491 INFO L74 IsIncluded]: Start isIncluded. First operand 198 states. Second operand 198 states. [2018-11-14 17:19:01,491 INFO L87 Difference]: Start difference. First operand 198 states. Second operand 198 states. [2018-11-14 17:19:01,495 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:01,495 INFO L93 Difference]: Finished difference Result 198 states and 290 transitions. [2018-11-14 17:19:01,495 INFO L276 IsEmpty]: Start isEmpty. Operand 198 states and 290 transitions. [2018-11-14 17:19:01,495 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:01,495 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:01,495 INFO L74 IsIncluded]: Start isIncluded. First operand 198 states. Second operand 198 states. [2018-11-14 17:19:01,496 INFO L87 Difference]: Start difference. First operand 198 states. Second operand 198 states. [2018-11-14 17:19:01,499 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:01,500 INFO L93 Difference]: Finished difference Result 198 states and 290 transitions. [2018-11-14 17:19:01,500 INFO L276 IsEmpty]: Start isEmpty. Operand 198 states and 290 transitions. [2018-11-14 17:19:01,500 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:01,500 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:01,500 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:19:01,501 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:19:01,501 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 198 states. [2018-11-14 17:19:01,505 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 198 states to 198 states and 290 transitions. [2018-11-14 17:19:01,505 INFO L78 Accepts]: Start accepts. Automaton has 198 states and 290 transitions. Word has length 86 [2018-11-14 17:19:01,505 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:19:01,506 INFO L480 AbstractCegarLoop]: Abstraction has 198 states and 290 transitions. [2018-11-14 17:19:01,506 INFO L481 AbstractCegarLoop]: Interpolant automaton has 5 states. [2018-11-14 17:19:01,506 INFO L276 IsEmpty]: Start isEmpty. Operand 198 states and 290 transitions. [2018-11-14 17:19:01,507 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 87 [2018-11-14 17:19:01,507 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:19:01,507 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:19:01,507 INFO L423 AbstractCegarLoop]: === Iteration 16 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:19:01,507 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:19:01,508 INFO L82 PathProgramCache]: Analyzing trace with hash -47712241, now seen corresponding path program 1 times [2018-11-14 17:19:01,508 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:19:01,508 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:19:01,509 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:01,509 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:19:01,509 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:01,523 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:19:02,114 INFO L256 TraceCheckUtils]: 0: Hoare triple {14129#true} call ULTIMATE.init(); {14129#true} is VALID [2018-11-14 17:19:02,114 INFO L273 TraceCheckUtils]: 1: Hoare triple {14129#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {14129#true} is VALID [2018-11-14 17:19:02,115 INFO L273 TraceCheckUtils]: 2: Hoare triple {14129#true} assume true; {14129#true} is VALID [2018-11-14 17:19:02,115 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {14129#true} {14129#true} #654#return; {14129#true} is VALID [2018-11-14 17:19:02,115 INFO L256 TraceCheckUtils]: 4: Hoare triple {14129#true} call #t~ret138 := main(); {14129#true} is VALID [2018-11-14 17:19:02,115 INFO L273 TraceCheckUtils]: 5: Hoare triple {14129#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,115 INFO L256 TraceCheckUtils]: 6: Hoare triple {14129#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {14129#true} is VALID [2018-11-14 17:19:02,116 INFO L273 TraceCheckUtils]: 7: Hoare triple {14129#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {14129#true} is VALID [2018-11-14 17:19:02,116 INFO L273 TraceCheckUtils]: 8: Hoare triple {14129#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {14129#true} is VALID [2018-11-14 17:19:02,116 INFO L273 TraceCheckUtils]: 9: Hoare triple {14129#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {14129#true} is VALID [2018-11-14 17:19:02,116 INFO L273 TraceCheckUtils]: 10: Hoare triple {14129#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {14129#true} is VALID [2018-11-14 17:19:02,117 INFO L273 TraceCheckUtils]: 11: Hoare triple {14129#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {14129#true} is VALID [2018-11-14 17:19:02,117 INFO L273 TraceCheckUtils]: 12: Hoare triple {14129#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {14129#true} is VALID [2018-11-14 17:19:02,117 INFO L273 TraceCheckUtils]: 13: Hoare triple {14129#true} assume true; {14129#true} is VALID [2018-11-14 17:19:02,117 INFO L273 TraceCheckUtils]: 14: Hoare triple {14129#true} assume !false; {14129#true} is VALID [2018-11-14 17:19:02,118 INFO L273 TraceCheckUtils]: 15: Hoare triple {14129#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,118 INFO L273 TraceCheckUtils]: 16: Hoare triple {14129#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,118 INFO L273 TraceCheckUtils]: 17: Hoare triple {14129#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,118 INFO L273 TraceCheckUtils]: 18: Hoare triple {14129#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,118 INFO L273 TraceCheckUtils]: 19: Hoare triple {14129#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,119 INFO L273 TraceCheckUtils]: 20: Hoare triple {14129#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,119 INFO L273 TraceCheckUtils]: 21: Hoare triple {14129#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,119 INFO L273 TraceCheckUtils]: 22: Hoare triple {14129#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,119 INFO L273 TraceCheckUtils]: 23: Hoare triple {14129#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {14129#true} is VALID [2018-11-14 17:19:02,120 INFO L273 TraceCheckUtils]: 24: Hoare triple {14129#true} assume #t~mem32 == 8464;havoc #t~mem32; {14129#true} is VALID [2018-11-14 17:19:02,120 INFO L273 TraceCheckUtils]: 25: Hoare triple {14129#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {14129#true} is VALID [2018-11-14 17:19:02,120 INFO L273 TraceCheckUtils]: 26: Hoare triple {14129#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {14129#true} is VALID [2018-11-14 17:19:02,132 INFO L273 TraceCheckUtils]: 27: Hoare triple {14129#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:02,145 INFO L273 TraceCheckUtils]: 28: Hoare triple {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:02,158 INFO L273 TraceCheckUtils]: 29: Hoare triple {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:02,170 INFO L273 TraceCheckUtils]: 30: Hoare triple {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} ~skip~0 := 0; {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:02,183 INFO L273 TraceCheckUtils]: 31: Hoare triple {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume true; {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:02,196 INFO L273 TraceCheckUtils]: 32: Hoare triple {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !false; {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:02,199 INFO L273 TraceCheckUtils]: 33: Hoare triple {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:02,203 INFO L273 TraceCheckUtils]: 34: Hoare triple {14131#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {14132#(= |ssl3_accept_#t~mem25| 8496)} is VALID [2018-11-14 17:19:02,203 INFO L273 TraceCheckUtils]: 35: Hoare triple {14132#(= |ssl3_accept_#t~mem25| 8496)} assume #t~mem25 == 16384;havoc #t~mem25; {14130#false} is VALID [2018-11-14 17:19:02,203 INFO L273 TraceCheckUtils]: 36: Hoare triple {14130#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {14130#false} is VALID [2018-11-14 17:19:02,203 INFO L273 TraceCheckUtils]: 37: Hoare triple {14130#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {14130#false} is VALID [2018-11-14 17:19:02,204 INFO L273 TraceCheckUtils]: 38: Hoare triple {14130#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {14130#false} is VALID [2018-11-14 17:19:02,204 INFO L273 TraceCheckUtils]: 39: Hoare triple {14130#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {14130#false} is VALID [2018-11-14 17:19:02,204 INFO L273 TraceCheckUtils]: 40: Hoare triple {14130#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {14130#false} is VALID [2018-11-14 17:19:02,204 INFO L273 TraceCheckUtils]: 41: Hoare triple {14130#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,204 INFO L273 TraceCheckUtils]: 42: Hoare triple {14130#false} assume #t~mem62 != 12292;havoc #t~mem62; {14130#false} is VALID [2018-11-14 17:19:02,204 INFO L273 TraceCheckUtils]: 43: Hoare triple {14130#false} assume !(~tmp___5~0 == 0);call write~int(8464, ~s.base, ~s.offset + 52, 4);call #t~mem63.base, #t~mem63.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem64 := read~int(#t~mem63.base, #t~mem63.offset + 60 + 12, 4);call write~int(#t~mem64 + 1, #t~mem63.base, #t~mem63.offset + 60 + 12, 4);havoc #t~mem64;havoc #t~mem63.base, #t~mem63.offset; {14130#false} is VALID [2018-11-14 17:19:02,204 INFO L273 TraceCheckUtils]: 44: Hoare triple {14130#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {14130#false} is VALID [2018-11-14 17:19:02,204 INFO L273 TraceCheckUtils]: 45: Hoare triple {14130#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {14130#false} is VALID [2018-11-14 17:19:02,205 INFO L273 TraceCheckUtils]: 46: Hoare triple {14130#false} ~skip~0 := 0; {14130#false} is VALID [2018-11-14 17:19:02,205 INFO L273 TraceCheckUtils]: 47: Hoare triple {14130#false} assume true; {14130#false} is VALID [2018-11-14 17:19:02,205 INFO L273 TraceCheckUtils]: 48: Hoare triple {14130#false} assume !false; {14130#false} is VALID [2018-11-14 17:19:02,205 INFO L273 TraceCheckUtils]: 49: Hoare triple {14130#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,205 INFO L273 TraceCheckUtils]: 50: Hoare triple {14130#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,205 INFO L273 TraceCheckUtils]: 51: Hoare triple {14130#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,205 INFO L273 TraceCheckUtils]: 52: Hoare triple {14130#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,205 INFO L273 TraceCheckUtils]: 53: Hoare triple {14130#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,208 INFO L273 TraceCheckUtils]: 54: Hoare triple {14130#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,208 INFO L273 TraceCheckUtils]: 55: Hoare triple {14130#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,208 INFO L273 TraceCheckUtils]: 56: Hoare triple {14130#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,208 INFO L273 TraceCheckUtils]: 57: Hoare triple {14130#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,209 INFO L273 TraceCheckUtils]: 58: Hoare triple {14130#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,209 INFO L273 TraceCheckUtils]: 59: Hoare triple {14130#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,209 INFO L273 TraceCheckUtils]: 60: Hoare triple {14130#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,209 INFO L273 TraceCheckUtils]: 61: Hoare triple {14130#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,210 INFO L273 TraceCheckUtils]: 62: Hoare triple {14130#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,210 INFO L273 TraceCheckUtils]: 63: Hoare triple {14130#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,210 INFO L273 TraceCheckUtils]: 64: Hoare triple {14130#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,210 INFO L273 TraceCheckUtils]: 65: Hoare triple {14130#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,210 INFO L273 TraceCheckUtils]: 66: Hoare triple {14130#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,211 INFO L273 TraceCheckUtils]: 67: Hoare triple {14130#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,211 INFO L273 TraceCheckUtils]: 68: Hoare triple {14130#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,211 INFO L273 TraceCheckUtils]: 69: Hoare triple {14130#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,211 INFO L273 TraceCheckUtils]: 70: Hoare triple {14130#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,212 INFO L273 TraceCheckUtils]: 71: Hoare triple {14130#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,212 INFO L273 TraceCheckUtils]: 72: Hoare triple {14130#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,212 INFO L273 TraceCheckUtils]: 73: Hoare triple {14130#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,212 INFO L273 TraceCheckUtils]: 74: Hoare triple {14130#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,212 INFO L273 TraceCheckUtils]: 75: Hoare triple {14130#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,212 INFO L273 TraceCheckUtils]: 76: Hoare triple {14130#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,213 INFO L273 TraceCheckUtils]: 77: Hoare triple {14130#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,213 INFO L273 TraceCheckUtils]: 78: Hoare triple {14130#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,213 INFO L273 TraceCheckUtils]: 79: Hoare triple {14130#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,213 INFO L273 TraceCheckUtils]: 80: Hoare triple {14130#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,213 INFO L273 TraceCheckUtils]: 81: Hoare triple {14130#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {14130#false} is VALID [2018-11-14 17:19:02,213 INFO L273 TraceCheckUtils]: 82: Hoare triple {14130#false} assume #t~mem56 == 8672;havoc #t~mem56; {14130#false} is VALID [2018-11-14 17:19:02,214 INFO L273 TraceCheckUtils]: 83: Hoare triple {14130#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {14130#false} is VALID [2018-11-14 17:19:02,214 INFO L273 TraceCheckUtils]: 84: Hoare triple {14130#false} assume ~blastFlag~0 == 4; {14130#false} is VALID [2018-11-14 17:19:02,214 INFO L273 TraceCheckUtils]: 85: Hoare triple {14130#false} assume !false; {14130#false} is VALID [2018-11-14 17:19:02,218 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 25 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:19:02,219 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:19:02,219 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:19:02,219 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 86 [2018-11-14 17:19:02,220 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:19:02,220 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:19:02,327 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 86 edges. 86 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:02,327 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:19:02,327 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:19:02,328 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:19:02,328 INFO L87 Difference]: Start difference. First operand 198 states and 290 transitions. Second operand 4 states. [2018-11-14 17:19:03,182 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:03,182 INFO L93 Difference]: Finished difference Result 397 states and 586 transitions. [2018-11-14 17:19:03,182 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:19:03,182 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 86 [2018-11-14 17:19:03,183 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:19:03,183 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:19:03,185 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 451 transitions. [2018-11-14 17:19:03,185 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:19:03,186 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 451 transitions. [2018-11-14 17:19:03,187 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 451 transitions. [2018-11-14 17:19:03,620 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 451 edges. 451 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:03,624 INFO L225 Difference]: With dead ends: 397 [2018-11-14 17:19:03,624 INFO L226 Difference]: Without dead ends: 225 [2018-11-14 17:19:03,625 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:19:03,626 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 225 states. [2018-11-14 17:19:03,685 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 225 to 198. [2018-11-14 17:19:03,686 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:19:03,686 INFO L82 GeneralOperation]: Start isEquivalent. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:03,686 INFO L74 IsIncluded]: Start isIncluded. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:03,686 INFO L87 Difference]: Start difference. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:03,691 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:03,691 INFO L93 Difference]: Finished difference Result 225 states and 324 transitions. [2018-11-14 17:19:03,691 INFO L276 IsEmpty]: Start isEmpty. Operand 225 states and 324 transitions. [2018-11-14 17:19:03,692 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:03,692 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:03,692 INFO L74 IsIncluded]: Start isIncluded. First operand 198 states. Second operand 225 states. [2018-11-14 17:19:03,692 INFO L87 Difference]: Start difference. First operand 198 states. Second operand 225 states. [2018-11-14 17:19:03,696 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:03,696 INFO L93 Difference]: Finished difference Result 225 states and 324 transitions. [2018-11-14 17:19:03,697 INFO L276 IsEmpty]: Start isEmpty. Operand 225 states and 324 transitions. [2018-11-14 17:19:03,697 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:03,697 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:03,697 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:19:03,697 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:19:03,697 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 198 states. [2018-11-14 17:19:03,701 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 198 states to 198 states and 289 transitions. [2018-11-14 17:19:03,701 INFO L78 Accepts]: Start accepts. Automaton has 198 states and 289 transitions. Word has length 86 [2018-11-14 17:19:03,701 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:19:03,701 INFO L480 AbstractCegarLoop]: Abstraction has 198 states and 289 transitions. [2018-11-14 17:19:03,701 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:19:03,701 INFO L276 IsEmpty]: Start isEmpty. Operand 198 states and 289 transitions. [2018-11-14 17:19:03,702 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 88 [2018-11-14 17:19:03,702 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:19:03,702 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:19:03,702 INFO L423 AbstractCegarLoop]: === Iteration 17 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:19:03,703 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:19:03,703 INFO L82 PathProgramCache]: Analyzing trace with hash -610300072, now seen corresponding path program 1 times [2018-11-14 17:19:03,703 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:19:03,703 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:19:03,704 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:03,704 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:19:03,704 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:03,718 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:19:04,020 INFO L256 TraceCheckUtils]: 0: Hoare triple {15285#true} call ULTIMATE.init(); {15285#true} is VALID [2018-11-14 17:19:04,020 INFO L273 TraceCheckUtils]: 1: Hoare triple {15285#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {15285#true} is VALID [2018-11-14 17:19:04,021 INFO L273 TraceCheckUtils]: 2: Hoare triple {15285#true} assume true; {15285#true} is VALID [2018-11-14 17:19:04,021 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {15285#true} {15285#true} #654#return; {15285#true} is VALID [2018-11-14 17:19:04,021 INFO L256 TraceCheckUtils]: 4: Hoare triple {15285#true} call #t~ret138 := main(); {15285#true} is VALID [2018-11-14 17:19:04,021 INFO L273 TraceCheckUtils]: 5: Hoare triple {15285#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,021 INFO L256 TraceCheckUtils]: 6: Hoare triple {15285#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {15285#true} is VALID [2018-11-14 17:19:04,021 INFO L273 TraceCheckUtils]: 7: Hoare triple {15285#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {15285#true} is VALID [2018-11-14 17:19:04,022 INFO L273 TraceCheckUtils]: 8: Hoare triple {15285#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {15285#true} is VALID [2018-11-14 17:19:04,022 INFO L273 TraceCheckUtils]: 9: Hoare triple {15285#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {15285#true} is VALID [2018-11-14 17:19:04,022 INFO L273 TraceCheckUtils]: 10: Hoare triple {15285#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {15285#true} is VALID [2018-11-14 17:19:04,022 INFO L273 TraceCheckUtils]: 11: Hoare triple {15285#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {15285#true} is VALID [2018-11-14 17:19:04,022 INFO L273 TraceCheckUtils]: 12: Hoare triple {15285#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {15285#true} is VALID [2018-11-14 17:19:04,022 INFO L273 TraceCheckUtils]: 13: Hoare triple {15285#true} assume true; {15285#true} is VALID [2018-11-14 17:19:04,023 INFO L273 TraceCheckUtils]: 14: Hoare triple {15285#true} assume !false; {15285#true} is VALID [2018-11-14 17:19:04,023 INFO L273 TraceCheckUtils]: 15: Hoare triple {15285#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,023 INFO L273 TraceCheckUtils]: 16: Hoare triple {15285#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,023 INFO L273 TraceCheckUtils]: 17: Hoare triple {15285#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,023 INFO L273 TraceCheckUtils]: 18: Hoare triple {15285#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,024 INFO L273 TraceCheckUtils]: 19: Hoare triple {15285#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,024 INFO L273 TraceCheckUtils]: 20: Hoare triple {15285#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,024 INFO L273 TraceCheckUtils]: 21: Hoare triple {15285#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,024 INFO L273 TraceCheckUtils]: 22: Hoare triple {15285#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,024 INFO L273 TraceCheckUtils]: 23: Hoare triple {15285#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {15285#true} is VALID [2018-11-14 17:19:04,024 INFO L273 TraceCheckUtils]: 24: Hoare triple {15285#true} assume #t~mem32 == 8464;havoc #t~mem32; {15285#true} is VALID [2018-11-14 17:19:04,025 INFO L273 TraceCheckUtils]: 25: Hoare triple {15285#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {15285#true} is VALID [2018-11-14 17:19:04,025 INFO L273 TraceCheckUtils]: 26: Hoare triple {15285#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {15285#true} is VALID [2018-11-14 17:19:04,026 INFO L273 TraceCheckUtils]: 27: Hoare triple {15285#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:04,026 INFO L273 TraceCheckUtils]: 28: Hoare triple {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:04,027 INFO L273 TraceCheckUtils]: 29: Hoare triple {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:04,027 INFO L273 TraceCheckUtils]: 30: Hoare triple {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} ~skip~0 := 0; {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:04,027 INFO L273 TraceCheckUtils]: 31: Hoare triple {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume true; {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:04,028 INFO L273 TraceCheckUtils]: 32: Hoare triple {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !false; {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:04,028 INFO L273 TraceCheckUtils]: 33: Hoare triple {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:04,028 INFO L273 TraceCheckUtils]: 34: Hoare triple {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:04,029 INFO L273 TraceCheckUtils]: 35: Hoare triple {15287#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {15288#(= |ssl3_accept_#t~mem26| 8496)} is VALID [2018-11-14 17:19:04,030 INFO L273 TraceCheckUtils]: 36: Hoare triple {15288#(= |ssl3_accept_#t~mem26| 8496)} assume #t~mem26 == 8192;havoc #t~mem26; {15286#false} is VALID [2018-11-14 17:19:04,030 INFO L273 TraceCheckUtils]: 37: Hoare triple {15286#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {15286#false} is VALID [2018-11-14 17:19:04,030 INFO L273 TraceCheckUtils]: 38: Hoare triple {15286#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {15286#false} is VALID [2018-11-14 17:19:04,031 INFO L273 TraceCheckUtils]: 39: Hoare triple {15286#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {15286#false} is VALID [2018-11-14 17:19:04,031 INFO L273 TraceCheckUtils]: 40: Hoare triple {15286#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {15286#false} is VALID [2018-11-14 17:19:04,031 INFO L273 TraceCheckUtils]: 41: Hoare triple {15286#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {15286#false} is VALID [2018-11-14 17:19:04,031 INFO L273 TraceCheckUtils]: 42: Hoare triple {15286#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,032 INFO L273 TraceCheckUtils]: 43: Hoare triple {15286#false} assume #t~mem62 != 12292;havoc #t~mem62; {15286#false} is VALID [2018-11-14 17:19:04,032 INFO L273 TraceCheckUtils]: 44: Hoare triple {15286#false} assume !(~tmp___5~0 == 0);call write~int(8464, ~s.base, ~s.offset + 52, 4);call #t~mem63.base, #t~mem63.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem64 := read~int(#t~mem63.base, #t~mem63.offset + 60 + 12, 4);call write~int(#t~mem64 + 1, #t~mem63.base, #t~mem63.offset + 60 + 12, 4);havoc #t~mem64;havoc #t~mem63.base, #t~mem63.offset; {15286#false} is VALID [2018-11-14 17:19:04,032 INFO L273 TraceCheckUtils]: 45: Hoare triple {15286#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {15286#false} is VALID [2018-11-14 17:19:04,032 INFO L273 TraceCheckUtils]: 46: Hoare triple {15286#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {15286#false} is VALID [2018-11-14 17:19:04,033 INFO L273 TraceCheckUtils]: 47: Hoare triple {15286#false} ~skip~0 := 0; {15286#false} is VALID [2018-11-14 17:19:04,033 INFO L273 TraceCheckUtils]: 48: Hoare triple {15286#false} assume true; {15286#false} is VALID [2018-11-14 17:19:04,033 INFO L273 TraceCheckUtils]: 49: Hoare triple {15286#false} assume !false; {15286#false} is VALID [2018-11-14 17:19:04,033 INFO L273 TraceCheckUtils]: 50: Hoare triple {15286#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,033 INFO L273 TraceCheckUtils]: 51: Hoare triple {15286#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,033 INFO L273 TraceCheckUtils]: 52: Hoare triple {15286#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,034 INFO L273 TraceCheckUtils]: 53: Hoare triple {15286#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,034 INFO L273 TraceCheckUtils]: 54: Hoare triple {15286#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,034 INFO L273 TraceCheckUtils]: 55: Hoare triple {15286#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,034 INFO L273 TraceCheckUtils]: 56: Hoare triple {15286#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,034 INFO L273 TraceCheckUtils]: 57: Hoare triple {15286#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,034 INFO L273 TraceCheckUtils]: 58: Hoare triple {15286#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,035 INFO L273 TraceCheckUtils]: 59: Hoare triple {15286#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,035 INFO L273 TraceCheckUtils]: 60: Hoare triple {15286#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,035 INFO L273 TraceCheckUtils]: 61: Hoare triple {15286#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,035 INFO L273 TraceCheckUtils]: 62: Hoare triple {15286#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,035 INFO L273 TraceCheckUtils]: 63: Hoare triple {15286#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,035 INFO L273 TraceCheckUtils]: 64: Hoare triple {15286#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,035 INFO L273 TraceCheckUtils]: 65: Hoare triple {15286#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,036 INFO L273 TraceCheckUtils]: 66: Hoare triple {15286#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,036 INFO L273 TraceCheckUtils]: 67: Hoare triple {15286#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,036 INFO L273 TraceCheckUtils]: 68: Hoare triple {15286#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,036 INFO L273 TraceCheckUtils]: 69: Hoare triple {15286#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,036 INFO L273 TraceCheckUtils]: 70: Hoare triple {15286#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,036 INFO L273 TraceCheckUtils]: 71: Hoare triple {15286#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,037 INFO L273 TraceCheckUtils]: 72: Hoare triple {15286#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,037 INFO L273 TraceCheckUtils]: 73: Hoare triple {15286#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,037 INFO L273 TraceCheckUtils]: 74: Hoare triple {15286#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,037 INFO L273 TraceCheckUtils]: 75: Hoare triple {15286#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,037 INFO L273 TraceCheckUtils]: 76: Hoare triple {15286#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,037 INFO L273 TraceCheckUtils]: 77: Hoare triple {15286#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,037 INFO L273 TraceCheckUtils]: 78: Hoare triple {15286#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,038 INFO L273 TraceCheckUtils]: 79: Hoare triple {15286#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,038 INFO L273 TraceCheckUtils]: 80: Hoare triple {15286#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,038 INFO L273 TraceCheckUtils]: 81: Hoare triple {15286#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,038 INFO L273 TraceCheckUtils]: 82: Hoare triple {15286#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {15286#false} is VALID [2018-11-14 17:19:04,038 INFO L273 TraceCheckUtils]: 83: Hoare triple {15286#false} assume #t~mem56 == 8672;havoc #t~mem56; {15286#false} is VALID [2018-11-14 17:19:04,038 INFO L273 TraceCheckUtils]: 84: Hoare triple {15286#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {15286#false} is VALID [2018-11-14 17:19:04,039 INFO L273 TraceCheckUtils]: 85: Hoare triple {15286#false} assume ~blastFlag~0 == 4; {15286#false} is VALID [2018-11-14 17:19:04,039 INFO L273 TraceCheckUtils]: 86: Hoare triple {15286#false} assume !false; {15286#false} is VALID [2018-11-14 17:19:04,045 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 27 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:19:04,045 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:19:04,046 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:19:04,046 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 87 [2018-11-14 17:19:04,046 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:19:04,046 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:19:04,156 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 87 edges. 87 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:04,157 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:19:04,157 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:19:04,157 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:19:04,158 INFO L87 Difference]: Start difference. First operand 198 states and 289 transitions. Second operand 4 states. [2018-11-14 17:19:05,111 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:05,112 INFO L93 Difference]: Finished difference Result 397 states and 584 transitions. [2018-11-14 17:19:05,112 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:19:05,112 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 87 [2018-11-14 17:19:05,112 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:19:05,112 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:19:05,114 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 450 transitions. [2018-11-14 17:19:05,114 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:19:05,116 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 450 transitions. [2018-11-14 17:19:05,117 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 450 transitions. [2018-11-14 17:19:05,537 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 450 edges. 450 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:05,542 INFO L225 Difference]: With dead ends: 397 [2018-11-14 17:19:05,542 INFO L226 Difference]: Without dead ends: 225 [2018-11-14 17:19:05,543 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:19:05,543 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 225 states. [2018-11-14 17:19:05,901 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 225 to 198. [2018-11-14 17:19:05,901 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:19:05,902 INFO L82 GeneralOperation]: Start isEquivalent. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:05,902 INFO L74 IsIncluded]: Start isIncluded. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:05,902 INFO L87 Difference]: Start difference. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:05,907 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:05,907 INFO L93 Difference]: Finished difference Result 225 states and 323 transitions. [2018-11-14 17:19:05,907 INFO L276 IsEmpty]: Start isEmpty. Operand 225 states and 323 transitions. [2018-11-14 17:19:05,908 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:05,908 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:05,908 INFO L74 IsIncluded]: Start isIncluded. First operand 198 states. Second operand 225 states. [2018-11-14 17:19:05,908 INFO L87 Difference]: Start difference. First operand 198 states. Second operand 225 states. [2018-11-14 17:19:05,913 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:05,913 INFO L93 Difference]: Finished difference Result 225 states and 323 transitions. [2018-11-14 17:19:05,914 INFO L276 IsEmpty]: Start isEmpty. Operand 225 states and 323 transitions. [2018-11-14 17:19:05,914 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:05,914 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:05,915 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:19:05,915 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:19:05,915 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 198 states. [2018-11-14 17:19:05,919 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 198 states to 198 states and 288 transitions. [2018-11-14 17:19:05,919 INFO L78 Accepts]: Start accepts. Automaton has 198 states and 288 transitions. Word has length 87 [2018-11-14 17:19:05,919 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:19:05,920 INFO L480 AbstractCegarLoop]: Abstraction has 198 states and 288 transitions. [2018-11-14 17:19:05,920 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:19:05,920 INFO L276 IsEmpty]: Start isEmpty. Operand 198 states and 288 transitions. [2018-11-14 17:19:05,920 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2018-11-14 17:19:05,920 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:19:05,921 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:19:05,921 INFO L423 AbstractCegarLoop]: === Iteration 18 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:19:05,921 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:19:05,921 INFO L82 PathProgramCache]: Analyzing trace with hash 500332020, now seen corresponding path program 1 times [2018-11-14 17:19:05,921 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:19:05,921 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:19:05,922 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:05,922 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:19:05,923 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:05,936 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:19:06,374 INFO L256 TraceCheckUtils]: 0: Hoare triple {16441#true} call ULTIMATE.init(); {16441#true} is VALID [2018-11-14 17:19:06,375 INFO L273 TraceCheckUtils]: 1: Hoare triple {16441#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {16441#true} is VALID [2018-11-14 17:19:06,375 INFO L273 TraceCheckUtils]: 2: Hoare triple {16441#true} assume true; {16441#true} is VALID [2018-11-14 17:19:06,375 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {16441#true} {16441#true} #654#return; {16441#true} is VALID [2018-11-14 17:19:06,375 INFO L256 TraceCheckUtils]: 4: Hoare triple {16441#true} call #t~ret138 := main(); {16441#true} is VALID [2018-11-14 17:19:06,375 INFO L273 TraceCheckUtils]: 5: Hoare triple {16441#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,375 INFO L256 TraceCheckUtils]: 6: Hoare triple {16441#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {16441#true} is VALID [2018-11-14 17:19:06,376 INFO L273 TraceCheckUtils]: 7: Hoare triple {16441#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {16441#true} is VALID [2018-11-14 17:19:06,376 INFO L273 TraceCheckUtils]: 8: Hoare triple {16441#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {16441#true} is VALID [2018-11-14 17:19:06,376 INFO L273 TraceCheckUtils]: 9: Hoare triple {16441#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {16441#true} is VALID [2018-11-14 17:19:06,376 INFO L273 TraceCheckUtils]: 10: Hoare triple {16441#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {16441#true} is VALID [2018-11-14 17:19:06,376 INFO L273 TraceCheckUtils]: 11: Hoare triple {16441#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {16441#true} is VALID [2018-11-14 17:19:06,377 INFO L273 TraceCheckUtils]: 12: Hoare triple {16441#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {16441#true} is VALID [2018-11-14 17:19:06,377 INFO L273 TraceCheckUtils]: 13: Hoare triple {16441#true} assume true; {16441#true} is VALID [2018-11-14 17:19:06,377 INFO L273 TraceCheckUtils]: 14: Hoare triple {16441#true} assume !false; {16441#true} is VALID [2018-11-14 17:19:06,377 INFO L273 TraceCheckUtils]: 15: Hoare triple {16441#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,377 INFO L273 TraceCheckUtils]: 16: Hoare triple {16441#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,377 INFO L273 TraceCheckUtils]: 17: Hoare triple {16441#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,378 INFO L273 TraceCheckUtils]: 18: Hoare triple {16441#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,378 INFO L273 TraceCheckUtils]: 19: Hoare triple {16441#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,378 INFO L273 TraceCheckUtils]: 20: Hoare triple {16441#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,378 INFO L273 TraceCheckUtils]: 21: Hoare triple {16441#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,378 INFO L273 TraceCheckUtils]: 22: Hoare triple {16441#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,378 INFO L273 TraceCheckUtils]: 23: Hoare triple {16441#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {16441#true} is VALID [2018-11-14 17:19:06,378 INFO L273 TraceCheckUtils]: 24: Hoare triple {16441#true} assume #t~mem32 == 8464;havoc #t~mem32; {16441#true} is VALID [2018-11-14 17:19:06,378 INFO L273 TraceCheckUtils]: 25: Hoare triple {16441#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {16441#true} is VALID [2018-11-14 17:19:06,379 INFO L273 TraceCheckUtils]: 26: Hoare triple {16441#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {16441#true} is VALID [2018-11-14 17:19:06,379 INFO L273 TraceCheckUtils]: 27: Hoare triple {16441#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,380 INFO L273 TraceCheckUtils]: 28: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,380 INFO L273 TraceCheckUtils]: 29: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,380 INFO L273 TraceCheckUtils]: 30: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} ~skip~0 := 0; {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,381 INFO L273 TraceCheckUtils]: 31: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume true; {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,381 INFO L273 TraceCheckUtils]: 32: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !false; {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,381 INFO L273 TraceCheckUtils]: 33: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,382 INFO L273 TraceCheckUtils]: 34: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,382 INFO L273 TraceCheckUtils]: 35: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:06,382 INFO L273 TraceCheckUtils]: 36: Hoare triple {16443#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {16444#(= |ssl3_accept_#t~mem27| 8496)} is VALID [2018-11-14 17:19:06,383 INFO L273 TraceCheckUtils]: 37: Hoare triple {16444#(= |ssl3_accept_#t~mem27| 8496)} assume #t~mem27 == 24576;havoc #t~mem27; {16442#false} is VALID [2018-11-14 17:19:06,383 INFO L273 TraceCheckUtils]: 38: Hoare triple {16442#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {16442#false} is VALID [2018-11-14 17:19:06,383 INFO L273 TraceCheckUtils]: 39: Hoare triple {16442#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {16442#false} is VALID [2018-11-14 17:19:06,383 INFO L273 TraceCheckUtils]: 40: Hoare triple {16442#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {16442#false} is VALID [2018-11-14 17:19:06,383 INFO L273 TraceCheckUtils]: 41: Hoare triple {16442#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {16442#false} is VALID [2018-11-14 17:19:06,384 INFO L273 TraceCheckUtils]: 42: Hoare triple {16442#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {16442#false} is VALID [2018-11-14 17:19:06,384 INFO L273 TraceCheckUtils]: 43: Hoare triple {16442#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,384 INFO L273 TraceCheckUtils]: 44: Hoare triple {16442#false} assume #t~mem62 != 12292;havoc #t~mem62; {16442#false} is VALID [2018-11-14 17:19:06,384 INFO L273 TraceCheckUtils]: 45: Hoare triple {16442#false} assume !(~tmp___5~0 == 0);call write~int(8464, ~s.base, ~s.offset + 52, 4);call #t~mem63.base, #t~mem63.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem64 := read~int(#t~mem63.base, #t~mem63.offset + 60 + 12, 4);call write~int(#t~mem64 + 1, #t~mem63.base, #t~mem63.offset + 60 + 12, 4);havoc #t~mem64;havoc #t~mem63.base, #t~mem63.offset; {16442#false} is VALID [2018-11-14 17:19:06,384 INFO L273 TraceCheckUtils]: 46: Hoare triple {16442#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {16442#false} is VALID [2018-11-14 17:19:06,385 INFO L273 TraceCheckUtils]: 47: Hoare triple {16442#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {16442#false} is VALID [2018-11-14 17:19:06,385 INFO L273 TraceCheckUtils]: 48: Hoare triple {16442#false} ~skip~0 := 0; {16442#false} is VALID [2018-11-14 17:19:06,385 INFO L273 TraceCheckUtils]: 49: Hoare triple {16442#false} assume true; {16442#false} is VALID [2018-11-14 17:19:06,385 INFO L273 TraceCheckUtils]: 50: Hoare triple {16442#false} assume !false; {16442#false} is VALID [2018-11-14 17:19:06,385 INFO L273 TraceCheckUtils]: 51: Hoare triple {16442#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,386 INFO L273 TraceCheckUtils]: 52: Hoare triple {16442#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,386 INFO L273 TraceCheckUtils]: 53: Hoare triple {16442#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,386 INFO L273 TraceCheckUtils]: 54: Hoare triple {16442#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,386 INFO L273 TraceCheckUtils]: 55: Hoare triple {16442#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,386 INFO L273 TraceCheckUtils]: 56: Hoare triple {16442#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,387 INFO L273 TraceCheckUtils]: 57: Hoare triple {16442#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,387 INFO L273 TraceCheckUtils]: 58: Hoare triple {16442#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,387 INFO L273 TraceCheckUtils]: 59: Hoare triple {16442#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,387 INFO L273 TraceCheckUtils]: 60: Hoare triple {16442#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,387 INFO L273 TraceCheckUtils]: 61: Hoare triple {16442#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,387 INFO L273 TraceCheckUtils]: 62: Hoare triple {16442#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,388 INFO L273 TraceCheckUtils]: 63: Hoare triple {16442#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,388 INFO L273 TraceCheckUtils]: 64: Hoare triple {16442#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,388 INFO L273 TraceCheckUtils]: 65: Hoare triple {16442#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,388 INFO L273 TraceCheckUtils]: 66: Hoare triple {16442#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,388 INFO L273 TraceCheckUtils]: 67: Hoare triple {16442#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,388 INFO L273 TraceCheckUtils]: 68: Hoare triple {16442#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,389 INFO L273 TraceCheckUtils]: 69: Hoare triple {16442#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,389 INFO L273 TraceCheckUtils]: 70: Hoare triple {16442#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,389 INFO L273 TraceCheckUtils]: 71: Hoare triple {16442#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,389 INFO L273 TraceCheckUtils]: 72: Hoare triple {16442#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,389 INFO L273 TraceCheckUtils]: 73: Hoare triple {16442#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,390 INFO L273 TraceCheckUtils]: 74: Hoare triple {16442#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,390 INFO L273 TraceCheckUtils]: 75: Hoare triple {16442#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,390 INFO L273 TraceCheckUtils]: 76: Hoare triple {16442#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,390 INFO L273 TraceCheckUtils]: 77: Hoare triple {16442#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,390 INFO L273 TraceCheckUtils]: 78: Hoare triple {16442#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,391 INFO L273 TraceCheckUtils]: 79: Hoare triple {16442#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,391 INFO L273 TraceCheckUtils]: 80: Hoare triple {16442#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,391 INFO L273 TraceCheckUtils]: 81: Hoare triple {16442#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,391 INFO L273 TraceCheckUtils]: 82: Hoare triple {16442#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,391 INFO L273 TraceCheckUtils]: 83: Hoare triple {16442#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {16442#false} is VALID [2018-11-14 17:19:06,392 INFO L273 TraceCheckUtils]: 84: Hoare triple {16442#false} assume #t~mem56 == 8672;havoc #t~mem56; {16442#false} is VALID [2018-11-14 17:19:06,392 INFO L273 TraceCheckUtils]: 85: Hoare triple {16442#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {16442#false} is VALID [2018-11-14 17:19:06,392 INFO L273 TraceCheckUtils]: 86: Hoare triple {16442#false} assume ~blastFlag~0 == 4; {16442#false} is VALID [2018-11-14 17:19:06,392 INFO L273 TraceCheckUtils]: 87: Hoare triple {16442#false} assume !false; {16442#false} is VALID [2018-11-14 17:19:06,397 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 29 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:19:06,398 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:19:06,398 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:19:06,398 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 88 [2018-11-14 17:19:06,399 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:19:06,399 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:19:06,498 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 88 edges. 88 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:06,498 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:19:06,499 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:19:06,499 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:19:06,499 INFO L87 Difference]: Start difference. First operand 198 states and 288 transitions. Second operand 4 states. [2018-11-14 17:19:07,362 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:07,362 INFO L93 Difference]: Finished difference Result 397 states and 582 transitions. [2018-11-14 17:19:07,362 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:19:07,362 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 88 [2018-11-14 17:19:07,363 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:19:07,363 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:19:07,365 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 449 transitions. [2018-11-14 17:19:07,365 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:19:07,366 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 449 transitions. [2018-11-14 17:19:07,367 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 449 transitions. [2018-11-14 17:19:07,783 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 449 edges. 449 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:07,787 INFO L225 Difference]: With dead ends: 397 [2018-11-14 17:19:07,787 INFO L226 Difference]: Without dead ends: 225 [2018-11-14 17:19:07,788 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:19:07,788 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 225 states. [2018-11-14 17:19:07,812 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 225 to 198. [2018-11-14 17:19:07,813 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:19:07,813 INFO L82 GeneralOperation]: Start isEquivalent. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:07,813 INFO L74 IsIncluded]: Start isIncluded. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:07,813 INFO L87 Difference]: Start difference. First operand 225 states. Second operand 198 states. [2018-11-14 17:19:07,817 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:07,817 INFO L93 Difference]: Finished difference Result 225 states and 322 transitions. [2018-11-14 17:19:07,818 INFO L276 IsEmpty]: Start isEmpty. Operand 225 states and 322 transitions. [2018-11-14 17:19:07,818 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:07,818 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:07,818 INFO L74 IsIncluded]: Start isIncluded. First operand 198 states. Second operand 225 states. [2018-11-14 17:19:07,818 INFO L87 Difference]: Start difference. First operand 198 states. Second operand 225 states. [2018-11-14 17:19:07,822 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:07,822 INFO L93 Difference]: Finished difference Result 225 states and 322 transitions. [2018-11-14 17:19:07,822 INFO L276 IsEmpty]: Start isEmpty. Operand 225 states and 322 transitions. [2018-11-14 17:19:07,823 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:07,823 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:07,823 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:19:07,823 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:19:07,823 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 198 states. [2018-11-14 17:19:07,826 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 198 states to 198 states and 287 transitions. [2018-11-14 17:19:07,826 INFO L78 Accepts]: Start accepts. Automaton has 198 states and 287 transitions. Word has length 88 [2018-11-14 17:19:07,826 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:19:07,826 INFO L480 AbstractCegarLoop]: Abstraction has 198 states and 287 transitions. [2018-11-14 17:19:07,826 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:19:07,827 INFO L276 IsEmpty]: Start isEmpty. Operand 198 states and 287 transitions. [2018-11-14 17:19:07,827 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2018-11-14 17:19:07,827 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:19:07,827 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:19:07,827 INFO L423 AbstractCegarLoop]: === Iteration 19 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:19:07,828 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:19:07,828 INFO L82 PathProgramCache]: Analyzing trace with hash 1941174173, now seen corresponding path program 1 times [2018-11-14 17:19:07,828 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:19:07,828 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:19:07,829 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:07,829 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:19:07,829 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:07,843 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:19:08,455 INFO L256 TraceCheckUtils]: 0: Hoare triple {17597#true} call ULTIMATE.init(); {17597#true} is VALID [2018-11-14 17:19:08,455 INFO L273 TraceCheckUtils]: 1: Hoare triple {17597#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {17597#true} is VALID [2018-11-14 17:19:08,455 INFO L273 TraceCheckUtils]: 2: Hoare triple {17597#true} assume true; {17597#true} is VALID [2018-11-14 17:19:08,455 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {17597#true} {17597#true} #654#return; {17597#true} is VALID [2018-11-14 17:19:08,456 INFO L256 TraceCheckUtils]: 4: Hoare triple {17597#true} call #t~ret138 := main(); {17597#true} is VALID [2018-11-14 17:19:08,456 INFO L273 TraceCheckUtils]: 5: Hoare triple {17597#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,456 INFO L256 TraceCheckUtils]: 6: Hoare triple {17597#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {17597#true} is VALID [2018-11-14 17:19:08,456 INFO L273 TraceCheckUtils]: 7: Hoare triple {17597#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {17597#true} is VALID [2018-11-14 17:19:08,456 INFO L273 TraceCheckUtils]: 8: Hoare triple {17597#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {17597#true} is VALID [2018-11-14 17:19:08,457 INFO L273 TraceCheckUtils]: 9: Hoare triple {17597#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {17597#true} is VALID [2018-11-14 17:19:08,457 INFO L273 TraceCheckUtils]: 10: Hoare triple {17597#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {17597#true} is VALID [2018-11-14 17:19:08,457 INFO L273 TraceCheckUtils]: 11: Hoare triple {17597#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {17597#true} is VALID [2018-11-14 17:19:08,457 INFO L273 TraceCheckUtils]: 12: Hoare triple {17597#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {17597#true} is VALID [2018-11-14 17:19:08,457 INFO L273 TraceCheckUtils]: 13: Hoare triple {17597#true} assume true; {17597#true} is VALID [2018-11-14 17:19:08,457 INFO L273 TraceCheckUtils]: 14: Hoare triple {17597#true} assume !false; {17597#true} is VALID [2018-11-14 17:19:08,458 INFO L273 TraceCheckUtils]: 15: Hoare triple {17597#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,458 INFO L273 TraceCheckUtils]: 16: Hoare triple {17597#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,458 INFO L273 TraceCheckUtils]: 17: Hoare triple {17597#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,458 INFO L273 TraceCheckUtils]: 18: Hoare triple {17597#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,458 INFO L273 TraceCheckUtils]: 19: Hoare triple {17597#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,459 INFO L273 TraceCheckUtils]: 20: Hoare triple {17597#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,459 INFO L273 TraceCheckUtils]: 21: Hoare triple {17597#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,459 INFO L273 TraceCheckUtils]: 22: Hoare triple {17597#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,459 INFO L273 TraceCheckUtils]: 23: Hoare triple {17597#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {17597#true} is VALID [2018-11-14 17:19:08,459 INFO L273 TraceCheckUtils]: 24: Hoare triple {17597#true} assume #t~mem32 == 8464;havoc #t~mem32; {17597#true} is VALID [2018-11-14 17:19:08,459 INFO L273 TraceCheckUtils]: 25: Hoare triple {17597#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {17597#true} is VALID [2018-11-14 17:19:08,460 INFO L273 TraceCheckUtils]: 26: Hoare triple {17597#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {17597#true} is VALID [2018-11-14 17:19:08,479 INFO L273 TraceCheckUtils]: 27: Hoare triple {17597#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,488 INFO L273 TraceCheckUtils]: 28: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,500 INFO L273 TraceCheckUtils]: 29: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,513 INFO L273 TraceCheckUtils]: 30: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} ~skip~0 := 0; {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,526 INFO L273 TraceCheckUtils]: 31: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume true; {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,540 INFO L273 TraceCheckUtils]: 32: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !false; {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,549 INFO L273 TraceCheckUtils]: 33: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,561 INFO L273 TraceCheckUtils]: 34: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,574 INFO L273 TraceCheckUtils]: 35: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,587 INFO L273 TraceCheckUtils]: 36: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} is VALID [2018-11-14 17:19:08,600 INFO L273 TraceCheckUtils]: 37: Hoare triple {17599#(= (select (select |#memory_int| ssl3_accept_~s.base) (+ ssl3_accept_~s.offset 52)) 8496)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {17600#(= |ssl3_accept_#t~mem28| 8496)} is VALID [2018-11-14 17:19:08,612 INFO L273 TraceCheckUtils]: 38: Hoare triple {17600#(= |ssl3_accept_#t~mem28| 8496)} assume #t~mem28 == 8195;havoc #t~mem28; {17598#false} is VALID [2018-11-14 17:19:08,613 INFO L273 TraceCheckUtils]: 39: Hoare triple {17598#false} call write~int(1, ~s.base, ~s.offset + 36, 4); {17598#false} is VALID [2018-11-14 17:19:08,613 INFO L273 TraceCheckUtils]: 40: Hoare triple {17598#false} assume (~cb~0.base + ~cb~0.offset) % 4294967296 != 0; {17598#false} is VALID [2018-11-14 17:19:08,613 INFO L273 TraceCheckUtils]: 41: Hoare triple {17598#false} call #t~mem59 := read~int(~s.base, ~s.offset + 0, 4); {17598#false} is VALID [2018-11-14 17:19:08,613 INFO L273 TraceCheckUtils]: 42: Hoare triple {17598#false} assume !(#t~mem59 / 256 != 3);havoc #t~mem59;call write~int(8192, ~s.base, ~s.offset + 4, 4);call #t~mem60.base, #t~mem60.offset := read~$Pointer$(~s.base, ~s.offset + 60, 4); {17598#false} is VALID [2018-11-14 17:19:08,614 INFO L273 TraceCheckUtils]: 43: Hoare triple {17598#false} assume !((#t~mem60.base + #t~mem60.offset) % 4294967296 == 0);havoc #t~mem60.base, #t~mem60.offset; {17598#false} is VALID [2018-11-14 17:19:08,614 INFO L273 TraceCheckUtils]: 44: Hoare triple {17598#false} assume !(~tmp___4~0 == 0);call write~int(0, ~s.base, ~s.offset + 64, 4);call #t~mem62 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,614 INFO L273 TraceCheckUtils]: 45: Hoare triple {17598#false} assume #t~mem62 != 12292;havoc #t~mem62; {17598#false} is VALID [2018-11-14 17:19:08,614 INFO L273 TraceCheckUtils]: 46: Hoare triple {17598#false} assume !(~tmp___5~0 == 0);call write~int(8464, ~s.base, ~s.offset + 52, 4);call #t~mem63.base, #t~mem63.offset := read~$Pointer$(~s.base, ~s.offset + 204, 4);call #t~mem64 := read~int(#t~mem63.base, #t~mem63.offset + 60 + 12, 4);call write~int(#t~mem64 + 1, #t~mem63.base, #t~mem63.offset + 60 + 12, 4);havoc #t~mem64;havoc #t~mem63.base, #t~mem63.offset; {17598#false} is VALID [2018-11-14 17:19:08,615 INFO L273 TraceCheckUtils]: 47: Hoare triple {17598#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {17598#false} is VALID [2018-11-14 17:19:08,615 INFO L273 TraceCheckUtils]: 48: Hoare triple {17598#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {17598#false} is VALID [2018-11-14 17:19:08,615 INFO L273 TraceCheckUtils]: 49: Hoare triple {17598#false} ~skip~0 := 0; {17598#false} is VALID [2018-11-14 17:19:08,615 INFO L273 TraceCheckUtils]: 50: Hoare triple {17598#false} assume true; {17598#false} is VALID [2018-11-14 17:19:08,616 INFO L273 TraceCheckUtils]: 51: Hoare triple {17598#false} assume !false; {17598#false} is VALID [2018-11-14 17:19:08,616 INFO L273 TraceCheckUtils]: 52: Hoare triple {17598#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,616 INFO L273 TraceCheckUtils]: 53: Hoare triple {17598#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,616 INFO L273 TraceCheckUtils]: 54: Hoare triple {17598#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,616 INFO L273 TraceCheckUtils]: 55: Hoare triple {17598#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,616 INFO L273 TraceCheckUtils]: 56: Hoare triple {17598#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,617 INFO L273 TraceCheckUtils]: 57: Hoare triple {17598#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,617 INFO L273 TraceCheckUtils]: 58: Hoare triple {17598#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,617 INFO L273 TraceCheckUtils]: 59: Hoare triple {17598#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,617 INFO L273 TraceCheckUtils]: 60: Hoare triple {17598#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,618 INFO L273 TraceCheckUtils]: 61: Hoare triple {17598#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,618 INFO L273 TraceCheckUtils]: 62: Hoare triple {17598#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,618 INFO L273 TraceCheckUtils]: 63: Hoare triple {17598#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,618 INFO L273 TraceCheckUtils]: 64: Hoare triple {17598#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,618 INFO L273 TraceCheckUtils]: 65: Hoare triple {17598#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,618 INFO L273 TraceCheckUtils]: 66: Hoare triple {17598#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,619 INFO L273 TraceCheckUtils]: 67: Hoare triple {17598#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,619 INFO L273 TraceCheckUtils]: 68: Hoare triple {17598#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,619 INFO L273 TraceCheckUtils]: 69: Hoare triple {17598#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,619 INFO L273 TraceCheckUtils]: 70: Hoare triple {17598#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,619 INFO L273 TraceCheckUtils]: 71: Hoare triple {17598#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,620 INFO L273 TraceCheckUtils]: 72: Hoare triple {17598#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,620 INFO L273 TraceCheckUtils]: 73: Hoare triple {17598#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,620 INFO L273 TraceCheckUtils]: 74: Hoare triple {17598#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,620 INFO L273 TraceCheckUtils]: 75: Hoare triple {17598#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,620 INFO L273 TraceCheckUtils]: 76: Hoare triple {17598#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,620 INFO L273 TraceCheckUtils]: 77: Hoare triple {17598#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,621 INFO L273 TraceCheckUtils]: 78: Hoare triple {17598#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,621 INFO L273 TraceCheckUtils]: 79: Hoare triple {17598#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,621 INFO L273 TraceCheckUtils]: 80: Hoare triple {17598#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,621 INFO L273 TraceCheckUtils]: 81: Hoare triple {17598#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,621 INFO L273 TraceCheckUtils]: 82: Hoare triple {17598#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,622 INFO L273 TraceCheckUtils]: 83: Hoare triple {17598#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,622 INFO L273 TraceCheckUtils]: 84: Hoare triple {17598#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {17598#false} is VALID [2018-11-14 17:19:08,622 INFO L273 TraceCheckUtils]: 85: Hoare triple {17598#false} assume #t~mem56 == 8672;havoc #t~mem56; {17598#false} is VALID [2018-11-14 17:19:08,622 INFO L273 TraceCheckUtils]: 86: Hoare triple {17598#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {17598#false} is VALID [2018-11-14 17:19:08,622 INFO L273 TraceCheckUtils]: 87: Hoare triple {17598#false} assume ~blastFlag~0 == 4; {17598#false} is VALID [2018-11-14 17:19:08,623 INFO L273 TraceCheckUtils]: 88: Hoare triple {17598#false} assume !false; {17598#false} is VALID [2018-11-14 17:19:08,628 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 31 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:19:08,628 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:19:08,629 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2018-11-14 17:19:08,629 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 89 [2018-11-14 17:19:08,629 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:19:08,629 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states. [2018-11-14 17:19:08,990 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 89 edges. 89 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:08,990 INFO L459 AbstractCegarLoop]: Interpolant automaton has 4 states [2018-11-14 17:19:08,990 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2018-11-14 17:19:08,991 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2018-11-14 17:19:08,991 INFO L87 Difference]: Start difference. First operand 198 states and 287 transitions. Second operand 4 states. [2018-11-14 17:19:09,845 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:09,845 INFO L93 Difference]: Finished difference Result 387 states and 567 transitions. [2018-11-14 17:19:09,845 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2018-11-14 17:19:09,845 INFO L78 Accepts]: Start accepts. Automaton has 4 states. Word has length 89 [2018-11-14 17:19:09,845 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:19:09,845 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:19:09,848 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 446 transitions. [2018-11-14 17:19:09,848 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 4 states. [2018-11-14 17:19:09,850 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4 states to 4 states and 446 transitions. [2018-11-14 17:19:09,850 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 4 states and 446 transitions. [2018-11-14 17:19:10,258 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 446 edges. 446 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:10,263 INFO L225 Difference]: With dead ends: 387 [2018-11-14 17:19:10,263 INFO L226 Difference]: Without dead ends: 215 [2018-11-14 17:19:10,264 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 1 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2018-11-14 17:19:10,264 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 215 states. [2018-11-14 17:19:10,288 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 215 to 198. [2018-11-14 17:19:10,288 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:19:10,288 INFO L82 GeneralOperation]: Start isEquivalent. First operand 215 states. Second operand 198 states. [2018-11-14 17:19:10,289 INFO L74 IsIncluded]: Start isIncluded. First operand 215 states. Second operand 198 states. [2018-11-14 17:19:10,289 INFO L87 Difference]: Start difference. First operand 215 states. Second operand 198 states. [2018-11-14 17:19:10,293 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:10,293 INFO L93 Difference]: Finished difference Result 215 states and 308 transitions. [2018-11-14 17:19:10,293 INFO L276 IsEmpty]: Start isEmpty. Operand 215 states and 308 transitions. [2018-11-14 17:19:10,293 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:10,293 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:10,293 INFO L74 IsIncluded]: Start isIncluded. First operand 198 states. Second operand 215 states. [2018-11-14 17:19:10,294 INFO L87 Difference]: Start difference. First operand 198 states. Second operand 215 states. [2018-11-14 17:19:10,298 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:10,298 INFO L93 Difference]: Finished difference Result 215 states and 308 transitions. [2018-11-14 17:19:10,298 INFO L276 IsEmpty]: Start isEmpty. Operand 215 states and 308 transitions. [2018-11-14 17:19:10,298 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:10,299 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:10,299 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:19:10,299 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:19:10,299 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 198 states. [2018-11-14 17:19:10,303 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 198 states to 198 states and 286 transitions. [2018-11-14 17:19:10,303 INFO L78 Accepts]: Start accepts. Automaton has 198 states and 286 transitions. Word has length 89 [2018-11-14 17:19:10,303 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:19:10,304 INFO L480 AbstractCegarLoop]: Abstraction has 198 states and 286 transitions. [2018-11-14 17:19:10,304 INFO L481 AbstractCegarLoop]: Interpolant automaton has 4 states. [2018-11-14 17:19:10,304 INFO L276 IsEmpty]: Start isEmpty. Operand 198 states and 286 transitions. [2018-11-14 17:19:10,304 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 94 [2018-11-14 17:19:10,305 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:19:10,305 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:19:10,305 INFO L423 AbstractCegarLoop]: === Iteration 20 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:19:10,305 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:19:10,305 INFO L82 PathProgramCache]: Analyzing trace with hash -167912189, now seen corresponding path program 1 times [2018-11-14 17:19:10,306 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:19:10,306 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:19:10,307 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:10,307 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:19:10,307 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:10,318 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:19:10,414 INFO L256 TraceCheckUtils]: 0: Hoare triple {18722#true} call ULTIMATE.init(); {18722#true} is VALID [2018-11-14 17:19:10,414 INFO L273 TraceCheckUtils]: 1: Hoare triple {18722#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {18722#true} is VALID [2018-11-14 17:19:10,414 INFO L273 TraceCheckUtils]: 2: Hoare triple {18722#true} assume true; {18722#true} is VALID [2018-11-14 17:19:10,415 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {18722#true} {18722#true} #654#return; {18722#true} is VALID [2018-11-14 17:19:10,415 INFO L256 TraceCheckUtils]: 4: Hoare triple {18722#true} call #t~ret138 := main(); {18722#true} is VALID [2018-11-14 17:19:10,415 INFO L273 TraceCheckUtils]: 5: Hoare triple {18722#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,415 INFO L256 TraceCheckUtils]: 6: Hoare triple {18722#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {18722#true} is VALID [2018-11-14 17:19:10,415 INFO L273 TraceCheckUtils]: 7: Hoare triple {18722#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {18722#true} is VALID [2018-11-14 17:19:10,415 INFO L273 TraceCheckUtils]: 8: Hoare triple {18722#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {18722#true} is VALID [2018-11-14 17:19:10,415 INFO L273 TraceCheckUtils]: 9: Hoare triple {18722#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {18722#true} is VALID [2018-11-14 17:19:10,415 INFO L273 TraceCheckUtils]: 10: Hoare triple {18722#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 11: Hoare triple {18722#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 12: Hoare triple {18722#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 13: Hoare triple {18722#true} assume true; {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 14: Hoare triple {18722#true} assume !false; {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 15: Hoare triple {18722#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 16: Hoare triple {18722#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 17: Hoare triple {18722#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 18: Hoare triple {18722#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,416 INFO L273 TraceCheckUtils]: 19: Hoare triple {18722#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,417 INFO L273 TraceCheckUtils]: 20: Hoare triple {18722#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,417 INFO L273 TraceCheckUtils]: 21: Hoare triple {18722#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,417 INFO L273 TraceCheckUtils]: 22: Hoare triple {18722#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,417 INFO L273 TraceCheckUtils]: 23: Hoare triple {18722#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {18722#true} is VALID [2018-11-14 17:19:10,417 INFO L273 TraceCheckUtils]: 24: Hoare triple {18722#true} assume #t~mem32 == 8464;havoc #t~mem32; {18722#true} is VALID [2018-11-14 17:19:10,417 INFO L273 TraceCheckUtils]: 25: Hoare triple {18722#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {18722#true} is VALID [2018-11-14 17:19:10,418 INFO L273 TraceCheckUtils]: 26: Hoare triple {18722#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,418 INFO L273 TraceCheckUtils]: 27: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,420 INFO L273 TraceCheckUtils]: 28: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,420 INFO L273 TraceCheckUtils]: 29: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,422 INFO L273 TraceCheckUtils]: 30: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} ~skip~0 := 0; {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,422 INFO L273 TraceCheckUtils]: 31: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume true; {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,424 INFO L273 TraceCheckUtils]: 32: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !false; {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,424 INFO L273 TraceCheckUtils]: 33: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,426 INFO L273 TraceCheckUtils]: 34: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,426 INFO L273 TraceCheckUtils]: 35: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,428 INFO L273 TraceCheckUtils]: 36: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,428 INFO L273 TraceCheckUtils]: 37: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,428 INFO L273 TraceCheckUtils]: 38: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,429 INFO L273 TraceCheckUtils]: 39: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,429 INFO L273 TraceCheckUtils]: 40: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,429 INFO L273 TraceCheckUtils]: 41: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,429 INFO L273 TraceCheckUtils]: 42: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,430 INFO L273 TraceCheckUtils]: 43: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,430 INFO L273 TraceCheckUtils]: 44: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,430 INFO L273 TraceCheckUtils]: 45: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume #t~mem35 == 8496;havoc #t~mem35; {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,431 INFO L273 TraceCheckUtils]: 46: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume -2147483648 <= #t~nondet70 && #t~nondet70 <= 2147483647;~ret~0 := #t~nondet70;havoc #t~nondet70; {18724#(= ssl3_accept_~blastFlag~0 1)} is VALID [2018-11-14 17:19:10,431 INFO L273 TraceCheckUtils]: 47: Hoare triple {18724#(= ssl3_accept_~blastFlag~0 1)} assume !(~blastFlag~0 == 1); {18723#false} is VALID [2018-11-14 17:19:10,432 INFO L273 TraceCheckUtils]: 48: Hoare triple {18723#false} assume !(~ret~0 <= 0);call #t~mem71 := read~int(~s.base, ~s.offset + 92, 4); {18723#false} is VALID [2018-11-14 17:19:10,432 INFO L273 TraceCheckUtils]: 49: Hoare triple {18723#false} assume #t~mem71 != 0;havoc #t~mem71;call write~int(8656, ~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,432 INFO L273 TraceCheckUtils]: 50: Hoare triple {18723#false} call write~int(0, ~s.base, ~s.offset + 64, 4); {18723#false} is VALID [2018-11-14 17:19:10,432 INFO L273 TraceCheckUtils]: 51: Hoare triple {18723#false} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {18723#false} is VALID [2018-11-14 17:19:10,432 INFO L273 TraceCheckUtils]: 52: Hoare triple {18723#false} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {18723#false} is VALID [2018-11-14 17:19:10,433 INFO L273 TraceCheckUtils]: 53: Hoare triple {18723#false} ~skip~0 := 0; {18723#false} is VALID [2018-11-14 17:19:10,433 INFO L273 TraceCheckUtils]: 54: Hoare triple {18723#false} assume true; {18723#false} is VALID [2018-11-14 17:19:10,433 INFO L273 TraceCheckUtils]: 55: Hoare triple {18723#false} assume !false; {18723#false} is VALID [2018-11-14 17:19:10,433 INFO L273 TraceCheckUtils]: 56: Hoare triple {18723#false} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,433 INFO L273 TraceCheckUtils]: 57: Hoare triple {18723#false} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,434 INFO L273 TraceCheckUtils]: 58: Hoare triple {18723#false} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,434 INFO L273 TraceCheckUtils]: 59: Hoare triple {18723#false} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,434 INFO L273 TraceCheckUtils]: 60: Hoare triple {18723#false} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,434 INFO L273 TraceCheckUtils]: 61: Hoare triple {18723#false} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,434 INFO L273 TraceCheckUtils]: 62: Hoare triple {18723#false} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,434 INFO L273 TraceCheckUtils]: 63: Hoare triple {18723#false} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,434 INFO L273 TraceCheckUtils]: 64: Hoare triple {18723#false} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 65: Hoare triple {18723#false} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 66: Hoare triple {18723#false} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 67: Hoare triple {18723#false} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 68: Hoare triple {18723#false} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 69: Hoare triple {18723#false} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 70: Hoare triple {18723#false} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 71: Hoare triple {18723#false} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 72: Hoare triple {18723#false} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,435 INFO L273 TraceCheckUtils]: 73: Hoare triple {18723#false} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,436 INFO L273 TraceCheckUtils]: 74: Hoare triple {18723#false} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,436 INFO L273 TraceCheckUtils]: 75: Hoare triple {18723#false} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,436 INFO L273 TraceCheckUtils]: 76: Hoare triple {18723#false} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,436 INFO L273 TraceCheckUtils]: 77: Hoare triple {18723#false} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,436 INFO L273 TraceCheckUtils]: 78: Hoare triple {18723#false} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,436 INFO L273 TraceCheckUtils]: 79: Hoare triple {18723#false} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,436 INFO L273 TraceCheckUtils]: 80: Hoare triple {18723#false} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,436 INFO L273 TraceCheckUtils]: 81: Hoare triple {18723#false} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 82: Hoare triple {18723#false} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 83: Hoare triple {18723#false} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 84: Hoare triple {18723#false} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 85: Hoare triple {18723#false} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 86: Hoare triple {18723#false} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 87: Hoare triple {18723#false} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 88: Hoare triple {18723#false} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 89: Hoare triple {18723#false} assume #t~mem56 == 8672;havoc #t~mem56; {18723#false} is VALID [2018-11-14 17:19:10,437 INFO L273 TraceCheckUtils]: 90: Hoare triple {18723#false} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {18723#false} is VALID [2018-11-14 17:19:10,438 INFO L273 TraceCheckUtils]: 91: Hoare triple {18723#false} assume ~blastFlag~0 == 4; {18723#false} is VALID [2018-11-14 17:19:10,438 INFO L273 TraceCheckUtils]: 92: Hoare triple {18723#false} assume !false; {18723#false} is VALID [2018-11-14 17:19:10,441 INFO L134 CoverageAnalysis]: Checked inductivity of 42 backedges. 42 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2018-11-14 17:19:10,441 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:19:10,442 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2018-11-14 17:19:10,442 INFO L78 Accepts]: Start accepts. Automaton has 3 states. Word has length 93 [2018-11-14 17:19:10,442 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:19:10,442 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 3 states. [2018-11-14 17:19:10,530 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 93 edges. 93 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:10,531 INFO L459 AbstractCegarLoop]: Interpolant automaton has 3 states [2018-11-14 17:19:10,531 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2018-11-14 17:19:10,531 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-14 17:19:10,532 INFO L87 Difference]: Start difference. First operand 198 states and 286 transitions. Second operand 3 states. [2018-11-14 17:19:11,371 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:11,372 INFO L93 Difference]: Finished difference Result 537 states and 795 transitions. [2018-11-14 17:19:11,372 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2018-11-14 17:19:11,372 INFO L78 Accepts]: Start accepts. Automaton has 3 states. Word has length 93 [2018-11-14 17:19:11,372 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:19:11,372 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 3 states. [2018-11-14 17:19:11,374 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 3 states to 3 states and 573 transitions. [2018-11-14 17:19:11,374 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 3 states. [2018-11-14 17:19:11,376 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 3 states to 3 states and 573 transitions. [2018-11-14 17:19:11,376 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 3 states and 573 transitions. [2018-11-14 17:19:11,918 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 573 edges. 573 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:11,929 INFO L225 Difference]: With dead ends: 537 [2018-11-14 17:19:11,930 INFO L226 Difference]: Without dead ends: 365 [2018-11-14 17:19:11,931 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-14 17:19:11,931 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 365 states. [2018-11-14 17:19:12,012 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 365 to 365. [2018-11-14 17:19:12,013 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:19:12,013 INFO L82 GeneralOperation]: Start isEquivalent. First operand 365 states. Second operand 365 states. [2018-11-14 17:19:12,013 INFO L74 IsIncluded]: Start isIncluded. First operand 365 states. Second operand 365 states. [2018-11-14 17:19:12,013 INFO L87 Difference]: Start difference. First operand 365 states. Second operand 365 states. [2018-11-14 17:19:12,022 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:12,022 INFO L93 Difference]: Finished difference Result 365 states and 533 transitions. [2018-11-14 17:19:12,022 INFO L276 IsEmpty]: Start isEmpty. Operand 365 states and 533 transitions. [2018-11-14 17:19:12,023 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:12,023 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:12,023 INFO L74 IsIncluded]: Start isIncluded. First operand 365 states. Second operand 365 states. [2018-11-14 17:19:12,024 INFO L87 Difference]: Start difference. First operand 365 states. Second operand 365 states. [2018-11-14 17:19:12,032 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:12,033 INFO L93 Difference]: Finished difference Result 365 states and 533 transitions. [2018-11-14 17:19:12,033 INFO L276 IsEmpty]: Start isEmpty. Operand 365 states and 533 transitions. [2018-11-14 17:19:12,033 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:12,034 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:12,034 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:19:12,034 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:19:12,034 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 365 states. [2018-11-14 17:19:12,043 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 365 states to 365 states and 533 transitions. [2018-11-14 17:19:12,043 INFO L78 Accepts]: Start accepts. Automaton has 365 states and 533 transitions. Word has length 93 [2018-11-14 17:19:12,044 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:19:12,044 INFO L480 AbstractCegarLoop]: Abstraction has 365 states and 533 transitions. [2018-11-14 17:19:12,044 INFO L481 AbstractCegarLoop]: Interpolant automaton has 3 states. [2018-11-14 17:19:12,044 INFO L276 IsEmpty]: Start isEmpty. Operand 365 states and 533 transitions. [2018-11-14 17:19:12,045 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 94 [2018-11-14 17:19:12,045 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:19:12,045 INFO L375 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:19:12,045 INFO L423 AbstractCegarLoop]: === Iteration 21 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:19:12,045 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:19:12,046 INFO L82 PathProgramCache]: Analyzing trace with hash -2096184891, now seen corresponding path program 1 times [2018-11-14 17:19:12,046 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:19:12,046 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:19:12,047 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:12,047 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:19:12,047 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:12,061 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-14 17:19:12,215 INFO L256 TraceCheckUtils]: 0: Hoare triple {20511#true} call ULTIMATE.init(); {20511#true} is VALID [2018-11-14 17:19:12,215 INFO L273 TraceCheckUtils]: 1: Hoare triple {20511#true} #NULL.base, #NULL.offset := 0, 0;#valid := #valid[0 := 0];~init~0 := 1;call ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset := #Ultimate.alloc(100);call write~unchecked~int(0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 0, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 4, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 8, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 12, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 16, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 20, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 24, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 28, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 32, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 36, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 40, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 44, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 48, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 52, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 56, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 60, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 64, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 68, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 72, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 76, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 80, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 84, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 88, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 92, 4);call write~$Pointer$(0, 0, ~#SSLv3_server_data~0.base, ~#SSLv3_server_data~0.offset + 96, 4); {20511#true} is VALID [2018-11-14 17:19:12,215 INFO L273 TraceCheckUtils]: 2: Hoare triple {20511#true} assume true; {20511#true} is VALID [2018-11-14 17:19:12,216 INFO L268 TraceCheckUtils]: 3: Hoare quadruple {20511#true} {20511#true} #654#return; {20511#true} is VALID [2018-11-14 17:19:12,216 INFO L256 TraceCheckUtils]: 4: Hoare triple {20511#true} call #t~ret138 := main(); {20511#true} is VALID [2018-11-14 17:19:12,216 INFO L273 TraceCheckUtils]: 5: Hoare triple {20511#true} havoc ~s~0.base, ~s~0.offset;havoc ~tmp~2;call #t~malloc3.base, #t~malloc3.offset := #Ultimate.alloc(248);~s~0.base, ~s~0.offset := #t~malloc3.base, #t~malloc3.offset;call #t~malloc4.base, #t~malloc4.offset := #Ultimate.alloc(899);call write~$Pointer$(#t~malloc4.base, #t~malloc4.offset, ~s~0.base, ~s~0.offset + 84, 4);call #t~malloc5.base, #t~malloc5.offset := #Ultimate.alloc(232);call write~$Pointer$(#t~malloc5.base, #t~malloc5.offset, ~s~0.base, ~s~0.offset + 204, 4);call #t~malloc6.base, #t~malloc6.offset := #Ultimate.alloc(200);call write~$Pointer$(#t~malloc6.base, #t~malloc6.offset, ~s~0.base, ~s~0.offset + 176, 4);call write~int(8464, ~s~0.base, ~s~0.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,216 INFO L256 TraceCheckUtils]: 6: Hoare triple {20511#true} call #t~ret7 := ssl3_accept(~s~0.base, ~s~0.offset); {20511#true} is VALID [2018-11-14 17:19:12,216 INFO L273 TraceCheckUtils]: 7: Hoare triple {20511#true} ~s.base, ~s.offset := #in~s.base, #in~s.offset;havoc ~buf~0.base, ~buf~0.offset;havoc ~l~0;havoc ~Time~0;havoc ~tmp~3;havoc ~cb~0.base, ~cb~0.offset;havoc ~num1~0;havoc ~ret~0;havoc ~new_state~0;havoc ~state~0;havoc ~skip~0;havoc ~got_new_session~0;assume -2147483648 <= #t~nondet8 && #t~nondet8 <= 2147483647;~tmp___1~0 := #t~nondet8;havoc #t~nondet8;assume -2147483648 <= #t~nondet9 && #t~nondet9 <= 2147483647;~tmp___2~0 := #t~nondet9;havoc #t~nondet9;assume -2147483648 <= #t~nondet10 && #t~nondet10 <= 2147483647;~tmp___3~0 := #t~nondet10;havoc #t~nondet10;assume -2147483648 <= #t~nondet11 && #t~nondet11 <= 2147483647;~tmp___4~0 := #t~nondet11;havoc #t~nondet11;assume -2147483648 <= #t~nondet12 && #t~nondet12 <= 2147483647;~tmp___5~0 := #t~nondet12;havoc #t~nondet12;assume -2147483648 <= #t~nondet13 && #t~nondet13 <= 2147483647;~tmp___6~0 := #t~nondet13;havoc #t~nondet13;havoc ~tmp___7~0;assume -2147483648 <= #t~nondet14 && #t~nondet14 <= 2147483647;~tmp___8~0 := #t~nondet14;havoc #t~nondet14;assume -2147483648 <= #t~nondet15 && #t~nondet15 <= 2147483647;~tmp___9~0 := #t~nondet15;havoc #t~nondet15;assume -2147483648 <= #t~nondet16 && #t~nondet16 <= 2147483647;~tmp___10~0 := #t~nondet16;havoc #t~nondet16;havoc ~blastFlag~0;~blastFlag~0 := 0;assume -2147483648 <= #t~nondet17 && #t~nondet17 <= 2147483647;call write~int(#t~nondet17, ~s.base, ~s.offset + 92, 4);havoc #t~nondet17;call write~int(8464, ~s.base, ~s.offset + 52, 4);assume -2147483648 <= #t~nondet18 && #t~nondet18 <= 2147483647;~tmp~3 := #t~nondet18;havoc #t~nondet18;~Time~0 := ~tmp~3;~cb~0.base, ~cb~0.offset := 0, 0;~ret~0 := -1;~skip~0 := 0;~got_new_session~0 := 0;call #t~mem19.base, #t~mem19.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4); {20511#true} is VALID [2018-11-14 17:19:12,216 INFO L273 TraceCheckUtils]: 8: Hoare triple {20511#true} assume (#t~mem19.base + #t~mem19.offset) % 4294967296 != 0;havoc #t~mem19.base, #t~mem19.offset;call #t~mem20.base, #t~mem20.offset := read~$Pointer$(~s.base, ~s.offset + 192, 4);~cb~0.base, ~cb~0.offset := #t~mem20.base, #t~mem20.offset;havoc #t~mem20.base, #t~mem20.offset; {20511#true} is VALID [2018-11-14 17:19:12,216 INFO L273 TraceCheckUtils]: 9: Hoare triple {20511#true} call #t~mem21 := read~int(~s.base, ~s.offset + 28, 4);call write~int(#t~mem21 + 1, ~s.base, ~s.offset + 28, 4);havoc #t~mem21; {20511#true} is VALID [2018-11-14 17:19:12,217 INFO L273 TraceCheckUtils]: 10: Hoare triple {20511#true} assume !(~bitwiseAnd(~tmp___1~0, 12288) != 0); {20511#true} is VALID [2018-11-14 17:19:12,217 INFO L273 TraceCheckUtils]: 11: Hoare triple {20511#true} call #t~mem22.base, #t~mem22.offset := read~$Pointer$(~s.base, ~s.offset + 136, 4); {20511#true} is VALID [2018-11-14 17:19:12,217 INFO L273 TraceCheckUtils]: 12: Hoare triple {20511#true} assume !((#t~mem22.base + #t~mem22.offset) % 4294967296 == 0);havoc #t~mem22.base, #t~mem22.offset; {20511#true} is VALID [2018-11-14 17:19:12,217 INFO L273 TraceCheckUtils]: 13: Hoare triple {20511#true} assume true; {20511#true} is VALID [2018-11-14 17:19:12,217 INFO L273 TraceCheckUtils]: 14: Hoare triple {20511#true} assume !false; {20511#true} is VALID [2018-11-14 17:19:12,217 INFO L273 TraceCheckUtils]: 15: Hoare triple {20511#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,217 INFO L273 TraceCheckUtils]: 16: Hoare triple {20511#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,217 INFO L273 TraceCheckUtils]: 17: Hoare triple {20511#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 18: Hoare triple {20511#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 19: Hoare triple {20511#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 20: Hoare triple {20511#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 21: Hoare triple {20511#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 22: Hoare triple {20511#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 23: Hoare triple {20511#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 24: Hoare triple {20511#true} assume #t~mem32 == 8464;havoc #t~mem32; {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 25: Hoare triple {20511#true} call write~int(0, ~s.base, ~s.offset + 48, 4);assume -2147483648 <= #t~nondet69 && #t~nondet69 <= 2147483647;~ret~0 := #t~nondet69;havoc #t~nondet69; {20511#true} is VALID [2018-11-14 17:19:12,218 INFO L273 TraceCheckUtils]: 26: Hoare triple {20511#true} assume ~blastFlag~0 == 0;~blastFlag~0 := 1; {20511#true} is VALID [2018-11-14 17:19:12,219 INFO L273 TraceCheckUtils]: 27: Hoare triple {20511#true} assume !(~ret~0 <= 0);~got_new_session~0 := 1;call write~int(8496, ~s.base, ~s.offset + 52, 4);call write~int(0, ~s.base, ~s.offset + 64, 4); {20511#true} is VALID [2018-11-14 17:19:12,219 INFO L273 TraceCheckUtils]: 28: Hoare triple {20511#true} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {20511#true} is VALID [2018-11-14 17:19:12,219 INFO L273 TraceCheckUtils]: 29: Hoare triple {20511#true} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {20511#true} is VALID [2018-11-14 17:19:12,219 INFO L273 TraceCheckUtils]: 30: Hoare triple {20511#true} ~skip~0 := 0; {20511#true} is VALID [2018-11-14 17:19:12,219 INFO L273 TraceCheckUtils]: 31: Hoare triple {20511#true} assume true; {20511#true} is VALID [2018-11-14 17:19:12,219 INFO L273 TraceCheckUtils]: 32: Hoare triple {20511#true} assume !false; {20511#true} is VALID [2018-11-14 17:19:12,219 INFO L273 TraceCheckUtils]: 33: Hoare triple {20511#true} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,219 INFO L273 TraceCheckUtils]: 34: Hoare triple {20511#true} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,220 INFO L273 TraceCheckUtils]: 35: Hoare triple {20511#true} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,220 INFO L273 TraceCheckUtils]: 36: Hoare triple {20511#true} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,220 INFO L273 TraceCheckUtils]: 37: Hoare triple {20511#true} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,220 INFO L273 TraceCheckUtils]: 38: Hoare triple {20511#true} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,220 INFO L273 TraceCheckUtils]: 39: Hoare triple {20511#true} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,220 INFO L273 TraceCheckUtils]: 40: Hoare triple {20511#true} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,220 INFO L273 TraceCheckUtils]: 41: Hoare triple {20511#true} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,220 INFO L273 TraceCheckUtils]: 42: Hoare triple {20511#true} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,221 INFO L273 TraceCheckUtils]: 43: Hoare triple {20511#true} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,221 INFO L273 TraceCheckUtils]: 44: Hoare triple {20511#true} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {20511#true} is VALID [2018-11-14 17:19:12,221 INFO L273 TraceCheckUtils]: 45: Hoare triple {20511#true} assume #t~mem35 == 8496;havoc #t~mem35; {20511#true} is VALID [2018-11-14 17:19:12,221 INFO L273 TraceCheckUtils]: 46: Hoare triple {20511#true} assume -2147483648 <= #t~nondet70 && #t~nondet70 <= 2147483647;~ret~0 := #t~nondet70;havoc #t~nondet70; {20511#true} is VALID [2018-11-14 17:19:12,222 INFO L273 TraceCheckUtils]: 47: Hoare triple {20511#true} assume ~blastFlag~0 == 1;~blastFlag~0 := 2; {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,225 INFO L273 TraceCheckUtils]: 48: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(~ret~0 <= 0);call #t~mem71 := read~int(~s.base, ~s.offset + 92, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,225 INFO L273 TraceCheckUtils]: 49: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume #t~mem71 != 0;havoc #t~mem71;call write~int(8656, ~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,225 INFO L273 TraceCheckUtils]: 50: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} call write~int(0, ~s.base, ~s.offset + 64, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,226 INFO L273 TraceCheckUtils]: 51: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} call #t~mem127.base, #t~mem127.offset := read~$Pointer$(~s.base, ~s.offset + 84, 4);call #t~mem128 := read~int(#t~mem127.base, #t~mem127.offset + 604 + 244, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,226 INFO L273 TraceCheckUtils]: 52: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem128 == 0);havoc #t~mem127.base, #t~mem127.offset;havoc #t~mem128; {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,226 INFO L273 TraceCheckUtils]: 53: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} ~skip~0 := 0; {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,227 INFO L273 TraceCheckUtils]: 54: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume true; {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,227 INFO L273 TraceCheckUtils]: 55: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !false; {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,227 INFO L273 TraceCheckUtils]: 56: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} call #t~mem23 := read~int(~s.base, ~s.offset + 52, 4);~state~0 := #t~mem23;havoc #t~mem23;call #t~mem24 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,228 INFO L273 TraceCheckUtils]: 57: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem24 == 12292);havoc #t~mem24;call #t~mem25 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,228 INFO L273 TraceCheckUtils]: 58: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem25 == 16384);havoc #t~mem25;call #t~mem26 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,229 INFO L273 TraceCheckUtils]: 59: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem26 == 8192);havoc #t~mem26;call #t~mem27 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,229 INFO L273 TraceCheckUtils]: 60: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem27 == 24576);havoc #t~mem27;call #t~mem28 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,230 INFO L273 TraceCheckUtils]: 61: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem28 == 8195);havoc #t~mem28;call #t~mem29 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,230 INFO L273 TraceCheckUtils]: 62: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem29 == 8480);havoc #t~mem29;call #t~mem30 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,231 INFO L273 TraceCheckUtils]: 63: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem30 == 8481);havoc #t~mem30;call #t~mem31 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,231 INFO L273 TraceCheckUtils]: 64: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem31 == 8482);havoc #t~mem31;call #t~mem32 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,232 INFO L273 TraceCheckUtils]: 65: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem32 == 8464);havoc #t~mem32;call #t~mem33 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,232 INFO L273 TraceCheckUtils]: 66: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem33 == 8465);havoc #t~mem33;call #t~mem34 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,233 INFO L273 TraceCheckUtils]: 67: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem34 == 8466);havoc #t~mem34;call #t~mem35 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,233 INFO L273 TraceCheckUtils]: 68: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem35 == 8496);havoc #t~mem35;call #t~mem36 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,234 INFO L273 TraceCheckUtils]: 69: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem36 == 8497);havoc #t~mem36;call #t~mem37 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,234 INFO L273 TraceCheckUtils]: 70: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem37 == 8512);havoc #t~mem37;call #t~mem38 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,235 INFO L273 TraceCheckUtils]: 71: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem38 == 8513);havoc #t~mem38;call #t~mem39 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,235 INFO L273 TraceCheckUtils]: 72: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem39 == 8528);havoc #t~mem39;call #t~mem40 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,236 INFO L273 TraceCheckUtils]: 73: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem40 == 8529);havoc #t~mem40;call #t~mem41 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,236 INFO L273 TraceCheckUtils]: 74: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem41 == 8544);havoc #t~mem41;call #t~mem42 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,237 INFO L273 TraceCheckUtils]: 75: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem42 == 8545);havoc #t~mem42;call #t~mem43 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,237 INFO L273 TraceCheckUtils]: 76: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem43 == 8560);havoc #t~mem43;call #t~mem44 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,238 INFO L273 TraceCheckUtils]: 77: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem44 == 8561);havoc #t~mem44;call #t~mem45 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,238 INFO L273 TraceCheckUtils]: 78: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem45 == 8448);havoc #t~mem45;call #t~mem46 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,239 INFO L273 TraceCheckUtils]: 79: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem46 == 8576);havoc #t~mem46;call #t~mem47 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,239 INFO L273 TraceCheckUtils]: 80: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem47 == 8577);havoc #t~mem47;call #t~mem48 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,240 INFO L273 TraceCheckUtils]: 81: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem48 == 8592);havoc #t~mem48;call #t~mem49 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,240 INFO L273 TraceCheckUtils]: 82: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem49 == 8593);havoc #t~mem49;call #t~mem50 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,241 INFO L273 TraceCheckUtils]: 83: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem50 == 8608);havoc #t~mem50;call #t~mem51 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,241 INFO L273 TraceCheckUtils]: 84: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem51 == 8609);havoc #t~mem51;call #t~mem52 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,242 INFO L273 TraceCheckUtils]: 85: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem52 == 8640);havoc #t~mem52;call #t~mem53 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,242 INFO L273 TraceCheckUtils]: 86: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem53 == 8641);havoc #t~mem53;call #t~mem54 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,243 INFO L273 TraceCheckUtils]: 87: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem54 == 8656);havoc #t~mem54;call #t~mem55 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,244 INFO L273 TraceCheckUtils]: 88: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume !(#t~mem55 == 8657);havoc #t~mem55;call #t~mem56 := read~int(~s.base, ~s.offset + 52, 4); {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,244 INFO L273 TraceCheckUtils]: 89: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume #t~mem56 == 8672;havoc #t~mem56; {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,245 INFO L273 TraceCheckUtils]: 90: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume -2147483648 <= #t~nondet121 && #t~nondet121 <= 2147483647;~ret~0 := #t~nondet121;havoc #t~nondet121; {20513#(<= ssl3_accept_~blastFlag~0 2)} is VALID [2018-11-14 17:19:12,245 INFO L273 TraceCheckUtils]: 91: Hoare triple {20513#(<= ssl3_accept_~blastFlag~0 2)} assume ~blastFlag~0 == 4; {20512#false} is VALID [2018-11-14 17:19:12,245 INFO L273 TraceCheckUtils]: 92: Hoare triple {20512#false} assume !false; {20512#false} is VALID [2018-11-14 17:19:12,251 INFO L134 CoverageAnalysis]: Checked inductivity of 42 backedges. 30 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2018-11-14 17:19:12,251 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-14 17:19:12,251 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2018-11-14 17:19:12,252 INFO L78 Accepts]: Start accepts. Automaton has 3 states. Word has length 93 [2018-11-14 17:19:12,252 INFO L84 Accepts]: Finished accepts. word is accepted. [2018-11-14 17:19:12,252 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 3 states. [2018-11-14 17:19:12,340 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 82 edges. 82 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:12,341 INFO L459 AbstractCegarLoop]: Interpolant automaton has 3 states [2018-11-14 17:19:12,341 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2018-11-14 17:19:12,341 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-14 17:19:12,341 INFO L87 Difference]: Start difference. First operand 365 states and 533 transitions. Second operand 3 states. [2018-11-14 17:19:12,900 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:12,901 INFO L93 Difference]: Finished difference Result 874 states and 1293 transitions. [2018-11-14 17:19:12,901 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2018-11-14 17:19:12,901 INFO L78 Accepts]: Start accepts. Automaton has 3 states. Word has length 93 [2018-11-14 17:19:12,901 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-14 17:19:12,901 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 3 states. [2018-11-14 17:19:12,903 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 3 states to 3 states and 577 transitions. [2018-11-14 17:19:12,903 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 3 states. [2018-11-14 17:19:12,905 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 3 states to 3 states and 577 transitions. [2018-11-14 17:19:12,905 INFO L86 InductivityCheck]: Starting indutivity check of a Floyd-Hoare automaton with 3 states and 577 transitions. [2018-11-14 17:19:13,429 INFO L119 InductivityCheck]: Floyd-Hoare automaton has 577 edges. 577 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. [2018-11-14 17:19:13,445 INFO L225 Difference]: With dead ends: 874 [2018-11-14 17:19:13,445 INFO L226 Difference]: Without dead ends: 535 [2018-11-14 17:19:13,446 INFO L604 BasicCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-14 17:19:13,447 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 535 states. [2018-11-14 17:19:13,600 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 535 to 535. [2018-11-14 17:19:13,600 INFO L214 AbstractMinimizeNwa]: Start testing correctness of minimizeSevpa [2018-11-14 17:19:13,600 INFO L82 GeneralOperation]: Start isEquivalent. First operand 535 states. Second operand 535 states. [2018-11-14 17:19:13,600 INFO L74 IsIncluded]: Start isIncluded. First operand 535 states. Second operand 535 states. [2018-11-14 17:19:13,600 INFO L87 Difference]: Start difference. First operand 535 states. Second operand 535 states. [2018-11-14 17:19:13,614 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:13,615 INFO L93 Difference]: Finished difference Result 535 states and 787 transitions. [2018-11-14 17:19:13,615 INFO L276 IsEmpty]: Start isEmpty. Operand 535 states and 787 transitions. [2018-11-14 17:19:13,615 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:13,615 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:13,616 INFO L74 IsIncluded]: Start isIncluded. First operand 535 states. Second operand 535 states. [2018-11-14 17:19:13,616 INFO L87 Difference]: Start difference. First operand 535 states. Second operand 535 states. [2018-11-14 17:19:13,632 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-14 17:19:13,633 INFO L93 Difference]: Finished difference Result 535 states and 787 transitions. [2018-11-14 17:19:13,633 INFO L276 IsEmpty]: Start isEmpty. Operand 535 states and 787 transitions. [2018-11-14 17:19:13,634 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-14 17:19:13,634 INFO L83 IsIncluded]: Finished isIncluded. Language is included [2018-11-14 17:19:13,634 INFO L88 GeneralOperation]: Finished isEquivalent. [2018-11-14 17:19:13,634 INFO L221 AbstractMinimizeNwa]: Finished testing correctness of minimizeSevpa [2018-11-14 17:19:13,634 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 535 states. [2018-11-14 17:19:13,649 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 535 states to 535 states and 787 transitions. [2018-11-14 17:19:13,650 INFO L78 Accepts]: Start accepts. Automaton has 535 states and 787 transitions. Word has length 93 [2018-11-14 17:19:13,650 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-14 17:19:13,650 INFO L480 AbstractCegarLoop]: Abstraction has 535 states and 787 transitions. [2018-11-14 17:19:13,650 INFO L481 AbstractCegarLoop]: Interpolant automaton has 3 states. [2018-11-14 17:19:13,650 INFO L276 IsEmpty]: Start isEmpty. Operand 535 states and 787 transitions. [2018-11-14 17:19:13,651 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 136 [2018-11-14 17:19:13,651 INFO L367 BasicCegarLoop]: Found error trace [2018-11-14 17:19:13,651 INFO L375 BasicCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-14 17:19:13,651 INFO L423 AbstractCegarLoop]: === Iteration 22 === [ssl3_acceptErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-14 17:19:13,651 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-14 17:19:13,652 INFO L82 PathProgramCache]: Analyzing trace with hash -2091830027, now seen corresponding path program 1 times [2018-11-14 17:19:13,652 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-14 17:19:13,652 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-14 17:19:13,652 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:13,652 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-14 17:19:13,653 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-14 17:19:13,711 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is sat [2018-11-14 17:19:13,754 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is sat [2018-11-14 17:19:13,840 INFO L442 BasicCegarLoop]: Counterexample might be feasible [2018-11-14 17:19:13,933 WARN L1239 BoogieBacktranslator]: Unfinished Backtranslation: IntegerLiteral 24586 could not be translated for associated CType STRUCT~~ssl_method_st?version~INT?ssl_new~*((*~SSL~0 ) : INT)?ssl_clear~*((*~SSL~0 ) : VOID)?ssl_free~*((*~SSL~0 ) : VOID)?ssl_accept~*((*~SSL~0 ) : INT)?ssl_connect~*((*~SSL~0 ) : INT)?ssl_read~*((*~SSL~0 *VOID INT ) : INT)?ssl_peek~*((*~SSL~0 *VOID INT ) : INT)?ssl_write~*((*~SSL~0 *VOID INT ) : INT)?ssl_shutdown~*((*~SSL~0 ) : INT)?ssl_renegotiate~*((*~SSL~0 ) : INT)?ssl_renegotiate_check~*((*~SSL~0 ) : INT)?ssl_ctrl~*((*~SSL~0 INT LONG *CHAR ) : LONG)?ssl_ctx_ctrl~*((*~SSL_CTX~0 INT LONG *CHAR ) : LONG)?get_cipher_by_char~*((*UCHAR ) : *~SSL_CIPHER~0)?put_cipher_by_char~*((*~SSL_CIPHER~0 *UCHAR ) : INT)?ssl_pending~*((*~SSL~0 ) : INT)?num_ciphers~*(() : INT)?get_cipher~*((UINT ) : *~SSL_CIPHER~0)?get_ssl_method~*((INT ) : *ssl_method_st)?get_timeout~*(() : LONG)?ssl3_enc~*ssl3_enc_method?ssl_version~*(() : INT)?ssl_callback_ctrl~*((*~SSL~0 INT *(() : VOID) ) : LONG)?ssl_ctx_callback_ctrl~*((*~SSL_CTX~0 INT *(() : VOID) ) : LONG)# [2018-11-14 17:19:13,934 WARN L1239 BoogieBacktranslator]: Unfinished Backtranslation: IntegerLiteral 24589 could not be translated for associated CType STRUCT~~ssl_method_st?version~INT?ssl_new~*((*~SSL~0 ) : INT)?ssl_clear~*((*~SSL~0 ) : VOID)?ssl_free~*((*~SSL~0 ) : VOID)?ssl_accept~*((*~SSL~0 ) : INT)?ssl_connect~*((*~SSL~0 ) : INT)?ssl_read~*((*~SSL~0 *VOID INT ) : INT)?ssl_peek~*((*~SSL~0 *VOID INT ) : INT)?ssl_write~*((*~SSL~0 *VOID INT ) : INT)?ssl_shutdown~*((*~SSL~0 ) : INT)?ssl_renegotiate~*((*~SSL~0 ) : INT)?ssl_renegotiate_check~*((*~SSL~0 ) : INT)?ssl_ctrl~*((*~SSL~0 INT LONG *CHAR ) : LONG)?ssl_ctx_ctrl~*((*~SSL_CTX~0 INT LONG *CHAR ) : LONG)?get_cipher_by_char~*((*UCHAR ) : *~SSL_CIPHER~0)?put_cipher_by_char~*((*~SSL_CIPHER~0 *UCHAR ) : INT)?ssl_pending~*((*~SSL~0 ) : INT)?num_ciphers~*(() : INT)?get_cipher~*((UINT ) : *~SSL_CIPHER~0)?get_ssl_method~*((INT ) : *ssl_method_st)?get_timeout~*(() : LONG)?ssl3_enc~*ssl3_enc_method?ssl_version~*(() : INT)?ssl_callback_ctrl~*((*~SSL~0 INT *(() : VOID) ) : LONG)?ssl_ctx_callback_ctrl~*((*~SSL_CTX~0 INT *(() : VOID) ) : LONG)# [2018-11-14 17:19:14,037 WARN L170 areAnnotationChecker]: SSLv3_server_methodENTRY has no Hoare annotation [2018-11-14 17:19:14,037 WARN L170 areAnnotationChecker]: ULTIMATE.initENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: ULTIMATE.startENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: ULTIMATE.startENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: mainENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: #Ultimate.C_memcpyENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: sslv3_base_methodENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: #Ultimate.meminitENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: ssl3_acceptENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: ssl3_get_server_methodENTRY has no Hoare annotation [2018-11-14 17:19:14,038 WARN L170 areAnnotationChecker]: L1049 has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: L1049 has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: ULTIMATE.initFINAL has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: L-1 has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: L-1 has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: L1075 has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: L1075 has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: L-1-1 has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: L-1-1 has no Hoare annotation [2018-11-14 17:19:14,039 WARN L170 areAnnotationChecker]: L1712 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L1712 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L-1-1 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L-1-1 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L1115 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L1115 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L1032 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L1032 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L1051 has no Hoare annotation [2018-11-14 17:19:14,040 WARN L170 areAnnotationChecker]: L1051 has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: L1049-2 has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: ULTIMATE.initEXIT has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: ULTIMATE.startFINAL has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: L1075-1 has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: #Ultimate.C_memcpyFINAL has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: L1712-1 has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: #Ultimate.meminitFINAL has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: L1115-2 has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: L1034 has no Hoare annotation [2018-11-14 17:19:14,041 WARN L170 areAnnotationChecker]: L1034 has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: ssl3_get_server_methodFINAL has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: L1051-1 has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: SSLv3_server_methodFINAL has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: mainFINAL has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: #Ultimate.C_memcpyEXIT has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: sslv3_base_methodFINAL has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: #Ultimate.meminitEXIT has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: L1121 has no Hoare annotation [2018-11-14 17:19:14,042 WARN L170 areAnnotationChecker]: L1121 has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: L1034-1 has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: L1053 has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: L1053 has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: SSLv3_server_methodEXIT has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: mainEXIT has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: L1053-1 has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: sslv3_base_methodEXIT has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: L1122 has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: L1122 has no Hoare annotation [2018-11-14 17:19:14,043 WARN L170 areAnnotationChecker]: L1121-1 has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: L1130 has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: L1130 has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: ssl3_acceptFINAL has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: L1136-3 has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: L1136-3 has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: ssl3_acceptEXIT has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: L1136-1 has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: L1136-1 has no Hoare annotation [2018-11-14 17:19:14,044 WARN L170 areAnnotationChecker]: L1692 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1137 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1696 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1696 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1139 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1139 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1696-2 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1140 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1142 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1142 has no Hoare annotation [2018-11-14 17:19:14,045 WARN L170 areAnnotationChecker]: L1249 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1145 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1145 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1254 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1254 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1148 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1148 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1254-2 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1151 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1151 has no Hoare annotation [2018-11-14 17:19:14,046 WARN L170 areAnnotationChecker]: L1259 has no Hoare annotation [2018-11-14 17:19:14,047 WARN L170 areAnnotationChecker]: L1259 has no Hoare annotation [2018-11-14 17:19:14,047 WARN L170 areAnnotationChecker]: L1154 has no Hoare annotation [2018-11-14 17:19:14,047 WARN L170 areAnnotationChecker]: L1154 has no Hoare annotation [2018-11-14 17:19:14,047 WARN L170 areAnnotationChecker]: L1265 has no Hoare annotation [2018-11-14 17:19:14,047 WARN L170 areAnnotationChecker]: L1265 has no Hoare annotation [2018-11-14 17:19:14,047 WARN L170 areAnnotationChecker]: L1158 has no Hoare annotation [2018-11-14 17:19:14,047 WARN L170 areAnnotationChecker]: L1157 has no Hoare annotation [2018-11-14 17:19:14,048 WARN L170 areAnnotationChecker]: L1157 has no Hoare annotation [2018-11-14 17:19:14,048 WARN L170 areAnnotationChecker]: L1267 has no Hoare annotation [2018-11-14 17:19:14,048 WARN L170 areAnnotationChecker]: L1267 has no Hoare annotation [2018-11-14 17:19:14,048 WARN L170 areAnnotationChecker]: L1265-2 has no Hoare annotation [2018-11-14 17:19:14,048 WARN L170 areAnnotationChecker]: L1265-2 has no Hoare annotation [2018-11-14 17:19:14,048 WARN L170 areAnnotationChecker]: L1308 has no Hoare annotation [2018-11-14 17:19:14,048 WARN L170 areAnnotationChecker]: L1308 has no Hoare annotation [2018-11-14 17:19:14,048 WARN L170 areAnnotationChecker]: L1160 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1160 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1273 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1273 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1290 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1290 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1623 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1161 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1163 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1163 has no Hoare annotation [2018-11-14 17:19:14,049 WARN L170 areAnnotationChecker]: L1291 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1291 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1661 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1661 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1170 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1166 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1166 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1662 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1662 has no Hoare annotation [2018-11-14 17:19:14,050 WARN L170 areAnnotationChecker]: L1661-1 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1325 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1325 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1169 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1169 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1663 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1663 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1325-2 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1325-2 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1172 has no Hoare annotation [2018-11-14 17:19:14,051 WARN L170 areAnnotationChecker]: L1172 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1665 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1665 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1663-2 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1663-2 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1176 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1175 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1175 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1674 has no Hoare annotation [2018-11-14 17:19:14,052 WARN L170 areAnnotationChecker]: L1674 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1342 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1342 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1178 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1178 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1342-2 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1342-2 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1182 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1181 has no Hoare annotation [2018-11-14 17:19:14,053 WARN L170 areAnnotationChecker]: L1181 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1352 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1352 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1361 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1361 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1184 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1184 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1352-2 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1361-2 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1365 has no Hoare annotation [2018-11-14 17:19:14,054 WARN L170 areAnnotationChecker]: L1365 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1188 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1187 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1187 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1377 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1377 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1190 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1190 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1377-2 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1194 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1193 has no Hoare annotation [2018-11-14 17:19:14,055 WARN L170 areAnnotationChecker]: L1193 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1382 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1382 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1423 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1423 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1196 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1196 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1399 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1385 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1385 has no Hoare annotation [2018-11-14 17:19:14,056 WARN L170 areAnnotationChecker]: L1424 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1424 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1200 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1199 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1199 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1401 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1401 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1388 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1388 has no Hoare annotation [2018-11-14 17:19:14,057 WARN L170 areAnnotationChecker]: L1425 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1425 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1433 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1465 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1465 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1202 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1202 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1388-1 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1389 has no Hoare annotation [2018-11-14 17:19:14,058 WARN L170 areAnnotationChecker]: L1389 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1434 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1434 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1203 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1203 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1205 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1205 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1392 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1392 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1435 has no Hoare annotation [2018-11-14 17:19:14,059 WARN L170 areAnnotationChecker]: L1435 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1443 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1478 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1478 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1475-1 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1209 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1208 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1208 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1393 has no Hoare annotation [2018-11-14 17:19:14,060 WARN L170 areAnnotationChecker]: L1393 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1446 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1446 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1493 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1493 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1211 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1211 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1393-2 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1393-2 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1498 has no Hoare annotation [2018-11-14 17:19:14,061 WARN L170 areAnnotationChecker]: L1498 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1215 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1214 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1214 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1502 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1502 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1514 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1514 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1217 has no Hoare annotation [2018-11-14 17:19:14,062 WARN L170 areAnnotationChecker]: L1217 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1221 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1220 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1220 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1525 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1525 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1223 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1223 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1227 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1226 has no Hoare annotation [2018-11-14 17:19:14,063 WARN L170 areAnnotationChecker]: L1226 has no Hoare annotation [2018-11-14 17:19:14,064 WARN L170 areAnnotationChecker]: L1536 has no Hoare annotation [2018-11-14 17:19:14,064 WARN L170 areAnnotationChecker]: L1536 has no Hoare annotation [2018-11-14 17:19:14,064 WARN L170 areAnnotationChecker]: L1229 has no Hoare annotation [2018-11-14 17:19:14,064 WARN L170 areAnnotationChecker]: L1229 has no Hoare annotation [2018-11-14 17:19:14,064 WARN L170 areAnnotationChecker]: L1541 has no Hoare annotation [2018-11-14 17:19:14,064 WARN L170 areAnnotationChecker]: L1541 has no Hoare annotation [2018-11-14 17:19:14,064 WARN L170 areAnnotationChecker]: L1233 has no Hoare annotation [2018-11-14 17:19:14,064 WARN L170 areAnnotationChecker]: L1232 has no Hoare annotation [2018-11-14 17:19:14,065 WARN L170 areAnnotationChecker]: L1232 has no Hoare annotation [2018-11-14 17:19:14,065 WARN L170 areAnnotationChecker]: L1541-2 has no Hoare annotation [2018-11-14 17:19:14,065 WARN L170 areAnnotationChecker]: L1551 has no Hoare annotation [2018-11-14 17:19:14,065 WARN L170 areAnnotationChecker]: L1551 has no Hoare annotation [2018-11-14 17:19:14,065 WARN L170 areAnnotationChecker]: L1235 has no Hoare annotation [2018-11-14 17:19:14,065 WARN L170 areAnnotationChecker]: L1235 has no Hoare annotation [2018-11-14 17:19:14,065 WARN L170 areAnnotationChecker]: L1558 has no Hoare annotation [2018-11-14 17:19:14,065 WARN L170 areAnnotationChecker]: L1558 has no Hoare annotation [2018-11-14 17:19:14,066 WARN L170 areAnnotationChecker]: L1239 has no Hoare annotation [2018-11-14 17:19:14,066 WARN L170 areAnnotationChecker]: L1238 has no Hoare annotation [2018-11-14 17:19:14,066 WARN L170 areAnnotationChecker]: L1238 has no Hoare annotation [2018-11-14 17:19:14,066 WARN L170 areAnnotationChecker]: L1561-2 has no Hoare annotation [2018-11-14 17:19:14,066 WARN L170 areAnnotationChecker]: L1561-2 has no Hoare annotation [2018-11-14 17:19:14,066 WARN L170 areAnnotationChecker]: L1561 has no Hoare annotation [2018-11-14 17:19:14,066 WARN L170 areAnnotationChecker]: L1561 has no Hoare annotation [2018-11-14 17:19:14,066 WARN L170 areAnnotationChecker]: L1584 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1584 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1241 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1241 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1574 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1574 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1585 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1585 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1589 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1589 has no Hoare annotation [2018-11-14 17:19:14,067 WARN L170 areAnnotationChecker]: L1242 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1245 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1595 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1595 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1605 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1605 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1595-2 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1609 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1609 has no Hoare annotation [2018-11-14 17:19:14,068 WARN L170 areAnnotationChecker]: L1605-1 has no Hoare annotation [2018-11-14 17:19:14,069 INFO L163 areAnnotationChecker]: CFG has 0 edges. 0 inductive. 0 not inductive. 0 times theorem prover too weak to decide inductivity. 0 times interpolants missing. [2018-11-14 17:19:14,072 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 14.11 05:19:14 BoogieIcfgContainer [2018-11-14 17:19:14,072 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2018-11-14 17:19:14,073 INFO L168 Benchmark]: Toolchain (without parser) took 53039.74 ms. Allocated memory was 1.5 GB in the beginning and 2.8 GB in the end (delta: 1.3 GB). Free memory was 1.4 GB in the beginning and 2.5 GB in the end (delta: -1.1 GB). Peak memory consumption was 191.3 MB. Max. memory is 7.1 GB. [2018-11-14 17:19:14,074 INFO L168 Benchmark]: CDTParser took 0.20 ms. Allocated memory is still 1.5 GB. Free memory is still 1.5 GB. There was no memory consumed. Max. memory is 7.1 GB. [2018-11-14 17:19:14,074 INFO L168 Benchmark]: CACSL2BoogieTranslator took 1458.19 ms. Allocated memory was 1.5 GB in the beginning and 2.3 GB in the end (delta: 726.1 MB). Free memory was 1.4 GB in the beginning and 2.1 GB in the end (delta: -690.6 MB). Peak memory consumption was 104.3 MB. Max. memory is 7.1 GB. [2018-11-14 17:19:14,075 INFO L168 Benchmark]: Boogie Preprocessor took 159.42 ms. Allocated memory is still 2.3 GB. Free memory was 2.1 GB in the beginning and 2.1 GB in the end (delta: 13.3 MB). Peak memory consumption was 13.3 MB. Max. memory is 7.1 GB. [2018-11-14 17:19:14,076 INFO L168 Benchmark]: RCFGBuilder took 3437.37 ms. Allocated memory is still 2.3 GB. Free memory was 2.1 GB in the beginning and 2.0 GB in the end (delta: 144.2 MB). Peak memory consumption was 144.2 MB. Max. memory is 7.1 GB. [2018-11-14 17:19:14,076 INFO L168 Benchmark]: TraceAbstraction took 47980.51 ms. Allocated memory was 2.3 GB in the beginning and 2.8 GB in the end (delta: 549.5 MB). Free memory was 2.0 GB in the beginning and 2.5 GB in the end (delta: -551.2 MB). There was no memory consumed. Max. memory is 7.1 GB. [2018-11-14 17:19:14,079 INFO L336 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - GenericResult: Assertions are enabled Assertions are enabled - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.20 ms. Allocated memory is still 1.5 GB. Free memory is still 1.5 GB. There was no memory consumed. Max. memory is 7.1 GB. * CACSL2BoogieTranslator took 1458.19 ms. Allocated memory was 1.5 GB in the beginning and 2.3 GB in the end (delta: 726.1 MB). Free memory was 1.4 GB in the beginning and 2.1 GB in the end (delta: -690.6 MB). Peak memory consumption was 104.3 MB. Max. memory is 7.1 GB. * Boogie Preprocessor took 159.42 ms. Allocated memory is still 2.3 GB. Free memory was 2.1 GB in the beginning and 2.1 GB in the end (delta: 13.3 MB). Peak memory consumption was 13.3 MB. Max. memory is 7.1 GB. * RCFGBuilder took 3437.37 ms. Allocated memory is still 2.3 GB. Free memory was 2.1 GB in the beginning and 2.0 GB in the end (delta: 144.2 MB). Peak memory consumption was 144.2 MB. Max. memory is 7.1 GB. * TraceAbstraction took 47980.51 ms. Allocated memory was 2.3 GB in the beginning and 2.8 GB in the end (delta: 549.5 MB). Free memory was 2.0 GB in the beginning and 2.5 GB in the end (delta: -551.2 MB). There was no memory consumed. Max. memory is 7.1 GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: IntegerLiteral 24586 could not be translated for associated CType STRUCT~~ssl_method_st?version~INT?ssl_new~*((*~SSL~0 ) : INT)?ssl_clear~*((*~SSL~0 ) : VOID)?ssl_free~*((*~SSL~0 ) : VOID)?ssl_accept~*((*~SSL~0 ) : INT)?ssl_connect~*((*~SSL~0 ) : INT)?ssl_read~*((*~SSL~0 *VOID INT ) : INT)?ssl_peek~*((*~SSL~0 *VOID INT ) : INT)?ssl_write~*((*~SSL~0 *VOID INT ) : INT)?ssl_shutdown~*((*~SSL~0 ) : INT)?ssl_renegotiate~*((*~SSL~0 ) : INT)?ssl_renegotiate_check~*((*~SSL~0 ) : INT)?ssl_ctrl~*((*~SSL~0 INT LONG *CHAR ) : LONG)?ssl_ctx_ctrl~*((*~SSL_CTX~0 INT LONG *CHAR ) : LONG)?get_cipher_by_char~*((*UCHAR ) : *~SSL_CIPHER~0)?put_cipher_by_char~*((*~SSL_CIPHER~0 *UCHAR ) : INT)?ssl_pending~*((*~SSL~0 ) : INT)?num_ciphers~*(() : INT)?get_cipher~*((UINT ) : *~SSL_CIPHER~0)?get_ssl_method~*((INT ) : *ssl_method_st)?get_timeout~*(() : LONG)?ssl3_enc~*ssl3_enc_method?ssl_version~*(() : INT)?ssl_callback_ctrl~*((*~SSL~0 INT *(() : VOID) ) : LONG)?ssl_ctx_callback_ctrl~*((*~SSL_CTX~0 INT *(() : VOID) ) : LONG)# - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: IntegerLiteral 24589 could not be translated for associated CType STRUCT~~ssl_method_st?version~INT?ssl_new~*((*~SSL~0 ) : INT)?ssl_clear~*((*~SSL~0 ) : VOID)?ssl_free~*((*~SSL~0 ) : VOID)?ssl_accept~*((*~SSL~0 ) : INT)?ssl_connect~*((*~SSL~0 ) : INT)?ssl_read~*((*~SSL~0 *VOID INT ) : INT)?ssl_peek~*((*~SSL~0 *VOID INT ) : INT)?ssl_write~*((*~SSL~0 *VOID INT ) : INT)?ssl_shutdown~*((*~SSL~0 ) : INT)?ssl_renegotiate~*((*~SSL~0 ) : INT)?ssl_renegotiate_check~*((*~SSL~0 ) : INT)?ssl_ctrl~*((*~SSL~0 INT LONG *CHAR ) : LONG)?ssl_ctx_ctrl~*((*~SSL_CTX~0 INT LONG *CHAR ) : LONG)?get_cipher_by_char~*((*UCHAR ) : *~SSL_CIPHER~0)?put_cipher_by_char~*((*~SSL_CIPHER~0 *UCHAR ) : INT)?ssl_pending~*((*~SSL~0 ) : INT)?num_ciphers~*(() : INT)?get_cipher~*((UINT ) : *~SSL_CIPHER~0)?get_ssl_method~*((INT ) : *ssl_method_st)?get_timeout~*(() : LONG)?ssl3_enc~*ssl3_enc_method?ssl_version~*(() : INT)?ssl_callback_ctrl~*((*~SSL~0 INT *(() : VOID) ) : LONG)?ssl_ctx_callback_ctrl~*((*~SSL_CTX~0 INT *(() : VOID) ) : LONG)# * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - UnprovableResult [Line: 1702]: Unable to prove that call of __VERIFIER_error() unreachable Unable to prove that call of __VERIFIER_error() unreachable Reason: overapproximation of bitwiseAnd at line 1121. Possible FailurePath: [L1042] static int init = 1; [L1043] FCALL static SSL_METHOD SSLv3_server_data ; VAL [\old(init)=24584, \old(SSLv3_server_data)=null, \old(SSLv3_server_data)=null, init=1, SSLv3_server_data={24587:0}] [L1065] SSL *s ; [L1066] int tmp ; [L1070] EXPR, FCALL malloc(sizeof(SSL)) [L1070] s = malloc(sizeof(SSL)) [L1071] EXPR, FCALL malloc(sizeof(struct ssl3_state_st)) [L1071] FCALL s->s3 = malloc(sizeof(struct ssl3_state_st)) [L1072] EXPR, FCALL malloc(sizeof(SSL_CTX)) [L1072] FCALL s->ctx = malloc(sizeof(SSL_CTX)) [L1073] EXPR, FCALL malloc(sizeof(SSL_SESSION)) [L1073] FCALL s->session = malloc(sizeof(SSL_SESSION)) [L1074] FCALL s->state = 8464 VAL [init=1, malloc(sizeof(SSL))={24578:0}, malloc(sizeof(SSL_CTX))={24585:0}, malloc(sizeof(SSL_SESSION))={24580:0}, malloc(sizeof(struct ssl3_state_st))={24583:0}, s={24578:0}, SSLv3_server_data={24587:0}] [L1075] CALL ssl3_accept(s) VAL [init=1, s={24578:0}, SSLv3_server_data={24587:0}] [L1081] BUF_MEM *buf ; [L1082] unsigned long l ; [L1083] unsigned long Time ; [L1084] unsigned long tmp ; [L1085] void (*cb)() ; [L1086] long num1 ; [L1087] int ret ; [L1088] int new_state ; [L1089] int state ; [L1090] int skip ; [L1091] int got_new_session ; [L1092] int tmp___1 = __VERIFIER_nondet_int() ; [L1093] int tmp___2 = __VERIFIER_nondet_int() ; [L1094] int tmp___3 = __VERIFIER_nondet_int() ; [L1095] int tmp___4 = __VERIFIER_nondet_int() ; [L1096] int tmp___5 = __VERIFIER_nondet_int() ; [L1097] int tmp___6 = __VERIFIER_nondet_int() ; [L1098] int tmp___7 ; [L1099] long tmp___8 = __VERIFIER_nondet_long() ; [L1100] int tmp___9 = __VERIFIER_nondet_int() ; [L1101] int tmp___10 = __VERIFIER_nondet_int() ; [L1102] int blastFlag ; [L1106] blastFlag = 0 [L1107] FCALL s->hit=__VERIFIER_nondet_int () [L1108] FCALL s->state = 8464 [L1109] tmp = __VERIFIER_nondet_int() [L1110] Time = tmp [L1111] cb = (void (*)())((void *)0) [L1112] ret = -1 [L1113] skip = 0 [L1114] got_new_session = 0 [L1115] EXPR, FCALL s->info_callback VAL [={0:0}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->info_callback={2:-1}, skip=0, SSLv3_server_data={24587:0}, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1115] COND TRUE (unsigned long )s->info_callback != (unsigned long )((void *)0) [L1116] EXPR, FCALL s->info_callback [L1116] cb = s->info_callback [L1120] EXPR, FCALL s->in_handshake [L1120] FCALL s->in_handshake += 1 [L1121] COND FALSE !(tmp___1 & 12288) VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1130] EXPR, FCALL s->cert VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->cert={3:-2}, skip=0, SSLv3_server_data={24587:0}, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1130] COND FALSE !((unsigned long )s->cert == (unsigned long )((void *)0)) [L1136] COND TRUE 1 VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1138] EXPR, FCALL s->state [L1138] state = s->state [L1139] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1139] COND FALSE !(s->state == 12292) [L1142] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1142] COND FALSE !(s->state == 16384) [L1145] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1145] COND FALSE !(s->state == 8192) [L1148] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1148] COND FALSE !(s->state == 24576) [L1151] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1151] COND FALSE !(s->state == 8195) [L1154] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1154] COND FALSE !(s->state == 8480) [L1157] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1157] COND FALSE !(s->state == 8481) [L1160] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1160] COND FALSE !(s->state == 8482) [L1163] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=0, got_new_session=0, init=1, ret=-1, s={24578:0}, s={24578:0}, s->state=8464, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1163] COND TRUE s->state == 8464 [L1323] FCALL s->shutdown = 0 [L1324] ret = __VERIFIER_nondet_int() [L1325] COND TRUE blastFlag == 0 [L1326] blastFlag = 1 VAL [={2:-1}, blastFlag=1, got_new_session=0, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1330] COND FALSE !(ret <= 0) [L1335] got_new_session = 1 [L1336] FCALL s->state = 8496 [L1337] FCALL s->init_num = 0 VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1661] EXPR, FCALL s->s3 [L1661] EXPR, FCALL (s->s3)->tmp.reuse_message VAL [={2:-1}, (s->s3)->tmp.reuse_message=24579, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->s3={24583:0}, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1661] COND FALSE !(! (s->s3)->tmp.reuse_message) [L1690] skip = 0 VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1136] COND TRUE 1 VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8464, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1138] EXPR, FCALL s->state [L1138] state = s->state [L1139] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1139] COND FALSE !(s->state == 12292) [L1142] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1142] COND FALSE !(s->state == 16384) [L1145] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1145] COND FALSE !(s->state == 8192) [L1148] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1148] COND FALSE !(s->state == 24576) [L1151] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1151] COND FALSE !(s->state == 8195) [L1154] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1154] COND FALSE !(s->state == 8480) [L1157] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1157] COND FALSE !(s->state == 8481) [L1160] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1160] COND FALSE !(s->state == 8482) [L1163] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1163] COND FALSE !(s->state == 8464) [L1166] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1166] COND FALSE !(s->state == 8465) [L1169] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1169] COND FALSE !(s->state == 8466) [L1172] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=1, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8496, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1172] COND TRUE s->state == 8496 [L1341] ret = __VERIFIER_nondet_int() [L1342] COND TRUE blastFlag == 1 [L1343] blastFlag = 2 VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1347] COND FALSE !(ret <= 0) [L1352] FCALL s->hit VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->hit=1, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1352] COND TRUE s->hit [L1353] FCALL s->state = 8656 VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1357] FCALL s->init_num = 0 VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1661] EXPR, FCALL s->s3 [L1661] EXPR, FCALL (s->s3)->tmp.reuse_message VAL [={2:-1}, (s->s3)->tmp.reuse_message=24579, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->s3={24583:0}, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1661] COND FALSE !(! (s->s3)->tmp.reuse_message) [L1690] skip = 0 VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1136] COND TRUE 1 VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8496, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1138] EXPR, FCALL s->state [L1138] state = s->state [L1139] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1139] COND FALSE !(s->state == 12292) [L1142] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1142] COND FALSE !(s->state == 16384) [L1145] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1145] COND FALSE !(s->state == 8192) [L1148] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1148] COND FALSE !(s->state == 24576) [L1151] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1151] COND FALSE !(s->state == 8195) [L1154] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1154] COND FALSE !(s->state == 8480) [L1157] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1157] COND FALSE !(s->state == 8481) [L1160] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1160] COND FALSE !(s->state == 8482) [L1163] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1163] COND FALSE !(s->state == 8464) [L1166] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1166] COND FALSE !(s->state == 8465) [L1169] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1169] COND FALSE !(s->state == 8466) [L1172] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1172] COND FALSE !(s->state == 8496) [L1175] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1175] COND FALSE !(s->state == 8497) [L1178] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1178] COND FALSE !(s->state == 8512) [L1181] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1181] COND FALSE !(s->state == 8513) [L1184] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1184] COND FALSE !(s->state == 8528) [L1187] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1187] COND FALSE !(s->state == 8529) [L1190] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1190] COND FALSE !(s->state == 8544) [L1193] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1193] COND FALSE !(s->state == 8545) [L1196] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1196] COND FALSE !(s->state == 8560) [L1199] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1199] COND FALSE !(s->state == 8561) [L1202] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1202] COND FALSE !(s->state == 8448) [L1205] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1205] COND FALSE !(s->state == 8576) [L1208] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1208] COND FALSE !(s->state == 8577) [L1211] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1211] COND FALSE !(s->state == 8592) [L1214] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1214] COND FALSE !(s->state == 8593) [L1217] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1217] COND FALSE !(s->state == 8608) [L1220] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1220] COND FALSE !(s->state == 8609) [L1223] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1223] COND FALSE !(s->state == 8640) [L1226] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1226] COND FALSE !(s->state == 8641) [L1229] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=2, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8656, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1229] COND TRUE s->state == 8656 [L1550] EXPR, FCALL s->session [L1550] EXPR, FCALL s->s3 [L1550] EXPR, FCALL (s->s3)->tmp.new_cipher [L1550] FCALL (s->session)->cipher = (s->s3)->tmp.new_cipher [L1551] COND FALSE !(! tmp___9) [L1557] ret = __VERIFIER_nondet_int() [L1558] COND TRUE blastFlag == 2 [L1559] blastFlag = 4 VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1567] COND FALSE !(ret <= 0) [L1572] FCALL s->state = 8672 [L1573] FCALL s->init_num = 0 VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1574] COND FALSE !(! tmp___10) VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1661] EXPR, FCALL s->s3 [L1661] EXPR, FCALL (s->s3)->tmp.reuse_message VAL [={2:-1}, (s->s3)->tmp.reuse_message=24579, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->s3={24583:0}, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1661] COND FALSE !(! (s->s3)->tmp.reuse_message) [L1690] skip = 0 VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1136] COND TRUE 1 VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8656, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1138] EXPR, FCALL s->state [L1138] state = s->state [L1139] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1139] COND FALSE !(s->state == 12292) [L1142] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1142] COND FALSE !(s->state == 16384) [L1145] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1145] COND FALSE !(s->state == 8192) [L1148] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1148] COND FALSE !(s->state == 24576) [L1151] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1151] COND FALSE !(s->state == 8195) [L1154] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1154] COND FALSE !(s->state == 8480) [L1157] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1157] COND FALSE !(s->state == 8481) [L1160] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1160] COND FALSE !(s->state == 8482) [L1163] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1163] COND FALSE !(s->state == 8464) [L1166] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1166] COND FALSE !(s->state == 8465) [L1169] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1169] COND FALSE !(s->state == 8466) [L1172] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1172] COND FALSE !(s->state == 8496) [L1175] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1175] COND FALSE !(s->state == 8497) [L1178] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1178] COND FALSE !(s->state == 8512) [L1181] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1181] COND FALSE !(s->state == 8513) [L1184] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1184] COND FALSE !(s->state == 8528) [L1187] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1187] COND FALSE !(s->state == 8529) [L1190] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1190] COND FALSE !(s->state == 8544) [L1193] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1193] COND FALSE !(s->state == 8545) [L1196] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1196] COND FALSE !(s->state == 8560) [L1199] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1199] COND FALSE !(s->state == 8561) [L1202] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1202] COND FALSE !(s->state == 8448) [L1205] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1205] COND FALSE !(s->state == 8576) [L1208] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1208] COND FALSE !(s->state == 8577) [L1211] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1211] COND FALSE !(s->state == 8592) [L1214] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1214] COND FALSE !(s->state == 8593) [L1217] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1217] COND FALSE !(s->state == 8608) [L1220] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1220] COND FALSE !(s->state == 8609) [L1223] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1223] COND FALSE !(s->state == 8640) [L1226] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1226] COND FALSE !(s->state == 8641) [L1229] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1229] COND FALSE !(s->state == 8656) [L1232] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1232] COND FALSE !(s->state == 8657) [L1235] EXPR, FCALL s->state VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=1, s={24578:0}, s={24578:0}, s->state=8672, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1235] COND TRUE s->state == 8672 [L1583] ret = __VERIFIER_nondet_int() [L1584] COND TRUE blastFlag == 4 VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=0, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] [L1702] __VERIFIER_error() VAL [={2:-1}, blastFlag=4, got_new_session=1, init=1, ret=0, s={24578:0}, s={24578:0}, skip=0, SSLv3_server_data={24587:0}, state=8672, Time=0, tmp=0, tmp___1=0, tmp___10=1, tmp___2=0, tmp___3=0, tmp___4=0, tmp___5=0, tmp___6=0, tmp___8=0, tmp___9=1] - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 183 locations, 1 error locations. UNSAFE Result, 47.8s OverallTime, 22 OverallIterations, 4 TraceHistogramMax, 34.4s AutomataDifference, 0.0s DeadEndRemovalTime, 0.0s HoareAnnotationTime, HoareTripleCheckerStatistics: 4152 SDtfs, 841 SDslu, 6047 SDs, 0 SdLazy, 2934 SolverSat, 123 SolverUnsat, 0 SolverUnknown, 0 SolverNotchecked, 4.5s Time, PredicateUnifierStatistics: 0 DeclaredPredicates, 132 GetRequests, 42 SyntacticMatches, 30 SemanticMatches, 60 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 3.7s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=535occurred in iteration=21, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s AbstIntTime, 0 AbstIntIterations, 0 AbstIntStrong, NaN AbsIntWeakeningRatio, NaN AbsIntAvgWeakeningVarsNumRemoved, NaN AbsIntAvgWeakenedConjuncts, 0.0s DumpTime, AutomataMinimizationStatistics: 1.9s AutomataMinimizationTime, 21 MinimizatonAttempts, 312 StatesRemovedByMinimization, 18 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TraceCheckStatistics: 0.0s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 7.7s InterpolantComputationTime, 1759 NumberOfCodeBlocks, 1759 NumberOfCodeBlocksAsserted, 22 NumberOfCheckSat, 1603 ConstructedInterpolants, 0 QuantifiedInterpolants, 355518 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 21 InterpolantComputations, 21 PerfectInterpolantSequences, 419/419 InterpolantCoveringCapability, InvariantSynthesisStatistics: No data available, InterpolantConsolidationStatistics: No data available, ReuseStatistics: No data available RESULT: Ultimate could not prove your program: unable to determine feasibility of some traces Received shutdown request...